Jboss Enterprise Application Platform@6 Security Vulnerabilities and Issues — Jboss Enterprise Application Platform@6 CVE List

Lucene search

RedhatJboss Enterprise Application Platform6

3 matches found

CVE•added 2018/02/28 8:29 p.m.•345 views

CVE-2018-1304

The URL pattern of "" (the empty string) which exactly maps to the context root was not correctly handled in Apache Tomcat 9.0.0.M1 to 9.0.4, 8.5.0 to 8.5.27, 8.0.0.RC1 to 8.0.49 and 7.0.0 to 7.0.84 when used as part of a security constraint definition. This caused the constraint to be ignored. It ...

5.9CVSS6.7AI score0.03002EPSS

CVE•added 2023/12/18 2:15 p.m.•106 views

CVE-2023-3629

A flaw was found in Infinispan's REST, Cache retrieval endpoints do not properly evaluate the necessary admin permissions for the operation. This issue could allow an authenticated user to access information outside of their intended permissions.

6.5CVSS5.3AI score0.00102EPSS

CVE•added 2023/12/18 2:15 p.m.•105 views

CVE-2023-3628

A flaw was found in Infinispan's REST. Bulk read endpoints do not properly evaluate user permissions for the operation. This issue could allow an authenticated user to access information outside of their intended permissions.

6.5CVSS6.4AI score0.00089EPSS