Jboss Enterprise Portal Platform@6.0.0 Security Vulnerabilities and Issues — Jboss Enterprise Portal Platform@6.0.0 CVE List

Lucene search

RedhatJboss Enterprise Portal Platform6.0.0

2 matches found

CVE•added 2013/10/28 9:55 p.m.•171 views

CVE-2013-2186

The DiskFileItem class in Apache Commons FileUpload, as used in Red Hat JBoss BRMS 5.3.1; JBoss Portal 4.3 CP07, 5.2.2, and 6.0.0; and Red Hat JBoss Web Server 1.0.2 allows remote attackers to write to arbitrary files via a NULL byte in a file name in a serialized instance.

7.5CVSS7.8AI score0.90172EPSS

CVE•added 2014/01/19 6:2 p.m.•138 views

CVE-2013-2185

The readObject method in the DiskFileItem class in Apache Tomcat and JBoss Web, as used in Red Hat JBoss Enterprise Application Platform 6.1.0 and Red Hat JBoss Portal 6.0.0, allows remote attackers to write to arbitrary files via a NULL byte in a file name in a serialized instance, a similar issue...

7.5CVSS8.2AI score0.90172EPSS