Jboss Seam 2 Framework@2.2.1 Security Vulnerabilities and Issues — Jboss Seam 2 Framework@2.2.1 CVE List

Lucene search

RedhatJboss Seam 2 Framework2.2.1

4 matches found

CVE•added 2014/01/23 12:55 a.m.•123 views

CVE-2013-6447

Multiple XML External Entity (XXE) vulnerabilities in the (1) ExecutionHandler, (2) PollHandler, and (3) SubscriptionHandler classes in JBoss Seam Remoting in JBoss Seam 2 framework 2.3.1 and earlier, as used in JBoss Web Framework Kit, allow remote attackers to read arbitrary files and possibly ha...

5CVSS7.1AI score0.0137EPSS

CVE•added 2011/07/27 2:42 a.m.•67 views

CVE-2011-1484

jboss-seam.jar in the JBoss Seam 2 framework 2.2.x and earlier, as distributed in Red Hat JBoss Enterprise SOA Platform 4.3.0.CP04 and 5.1.0 and JBoss Enterprise Application Platform (aka JBoss EAP or JBEAP) 4.3.0.CP09 and 5.1.0, does not properly restrict use of Expression Language (EL) statements...

6.8CVSS7.3AI score0.01195EPSS

CVE•added 2011/07/27 2:55 a.m.•60 views

CVE-2011-2196

jboss-seam.jar in the JBoss Seam 2 framework 2.2.x and earlier, as distributed in Red Hat JBoss Enterprise SOA Platform 4.3.0.CP05 and 5.1.0; JBoss Enterprise Application Platform (aka JBoss EAP or JBEAP) 4.3.0, 4.3.0.CP09, and 5.1.1; and JBoss Enterprise Web Platform 5.1.1, does not properly restr...

6.8CVSS7.4AI score0.01215EPSS

CVE•added 2014/01/23 12:55 a.m.•47 views

CVE-2013-6448

The InterfaceGenerator handler in JBoss Seam Remoting in JBoss Seam 2 framework 2.3.1 and earlier, as used in JBoss Web Framework Kit, allows remote attackers to bypass the WebRemote annotation restriction and obtain information about arbitrary classes and methods on the server classpath via unspec...

5CVSS6.8AI score0.00262EPSS