Lucene search
+L

7 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2014-0222

Malware in sbrugna...

6.5CVSS6.6AI score0.00776EPSS
Exploits0References3
NVD
NVD
added 2020/01/02 8:15 p.m.23 views

CVE-2014-0169

In JBoss EAP 6 a security domain is configured to use a cache that is shared between all applications that are in the security domain. This could allow an authenticated user in one application to access protected resources in another application without proper authorization. Although this is an...

6.5CVSS6.3AI score0.00776EPSS
Exploits0References2
Prion
Prion
added 2020/01/02 8:15 p.m.23 views

Sql injection

In JBoss EAP 6 a security domain is configured to use a cache that is shared between all applications that are in the security domain. This could allow an authenticated user in one application to access protected resources in another application without proper authorization. Although this is an...

4CVSS6.8AI score0.00776EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2020/01/02 7:9 p.m.99 views

CVE-2014-0169

CVE-2014-0169 affects JBoss EAP 6: a security domain uses a cache shared across all applications in the domain, enabling an authenticated user from one application to access resources in another without proper authorization. Root cause cited as lack of clear documentation on cache isolation betwe...

6.5CVSS6.3AI score0.00776EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2020/01/02 7:9 p.m.30 views

CVE-2014-0169

In JBoss EAP 6 a security domain is configured to use a cache that is shared between all applications that are in the security domain. This could allow an authenticated user in one application to access protected resources in another application without proper authorization. Although this is an...

6.3AI score0.00776EPSS
Exploits0References2
Veracode
Veracode
added 2019/01/15 8:57 a.m.32 views

Information Disclosure

jboss-as-web is vulnerable to information disclosure attacks. The vulnerability exists as the security audit functionality in Red Hat JBoss Enterprise Application Platform EAP 6.x before 6.2.1 logs request parameters in plaintext, which might allow local users to obtain passwords by reading the l...

1.9CVSS8.4AI score0.00346EPSS
Exploits1References6Affected Software1
Tenable Nessus
Tenable Nessus
added 2014/04/01 12:0 a.m.39 views

RHEL 5 : Red Hat JBoss Enterprise Application Platform 6.2.2 update (Moderate) (RHSA-2014:0343)

The remote Redhat Enterprise Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2014:0343 advisory. - tomcat: multiple content-length header poisoning flaws CVE-2013-4286 - PicketBox/JBossSX: Unauthorized access to and modification of...

5.8CVSS6.7AI score0.16833EPSS
Exploits2References24
Rows per page
Query Builder