Jboss Enterprise Soa Platform Security Vulnerabilities and Issues — Jboss Enterprise Soa Platform CVE List

Lucene search

RedhatJboss Enterprise Soa Platform

3 matches found

CVE•added 2010/12/30 9:0 p.m.•58 views

CVE-2010-3708

The serialization implementation in JBoss Drools in Red Hat JBoss Enterprise Application Platform (aka JBoss EAP or JBEAP) 4.3 before 4.3.0.CP09 and JBoss Enterprise SOA Platform 4.2 and 4.3 supports the embedding of class files, which allows remote attackers to execute arbitrary code via a crafted...

7.5CVSS7.5AI score0.02416EPSS

CVE•added 2010/08/10 12:23 p.m.•36 views

CVE-2010-2493

The default configuration of the deployment descriptor (aka web.xml) in picketlink-sts.war in (1) the security_saml quickstart, (2) the webservice_proxy_security quickstart, (3) the web-console application, (4) the http-invoker application, (5) the gpd-deployer application, (6) the jbpm-console app...

5CVSS6.8AI score0.00108EPSS

CVE•added 2010/08/10 12:23 p.m.•33 views

CVE-2010-2474

JBoss Enterprise Service Bus (ESB) before 4.7 CP02 in JBoss Enterprise SOA Platform before 5.0.2 does not properly consider the security domain with which a service is secured, which might allow remote attackers to gain privileges by executing a service.

3.5CVSS7.1AI score0.00251EPSS