Jboss Enterprise Web Server Security Vulnerabilities and Issues — Jboss Enterprise Web Server CVE List

Lucene search

RedhatJboss Enterprise Web Server

3 matches found

CVE•added 2017/09/19 1:29 p.m.•1436 views

CVE-2017-12615

When running Apache Tomcat 7.0.0 to 7.0.79 on Windows with HTTP PUTs enabled (e.g. via setting the readonly initialisation parameter of the Default to false) it was possible to upload a JSP file to the server via a specially crafted request. This JSP could then be requested and any code it containe...

8.1CVSS7.4AI score0.9436EPSS

CVE•added 2017/09/25 9:29 p.m.•70 views

CVE-2015-5183

Console: HTTPOnly and Secure attributes not set on cookies in Red Hat AMQ.

7.5CVSS8.3AI score0.00396EPSS

CVE•added 2017/09/25 9:29 p.m.•61 views

CVE-2015-5184

Console: CORS headers set to allow all in Red Hat AMQ.

7.5CVSS8AI score0.00289EPSS