Lucene search
Veracode Vulnerability DatabaseVERACODE:20243HistoryMay 16, 2019 - 4:05 a.m.
Cross-site Scripting (XSS)
2019-05-1604:05:02
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8
0.001 Low
EPSS
Percentile
44.7%
Red Hat JBoss Enterprise Application Platform is vulnerable to cross-site scripting (XSS) attacks in JBoss Management Console, which allows user with roles that can create objects to inject arbitrary scripts to perform attack.
References
access.redhat.com/documentation/en-US/JBoss_Enterprise_Application_Platform/6.4/index.html
access.redhat.com/errata/RHSA-2019:1159
access.redhat.com/security/updates/classification/#moderate
bugzilla.redhat.com/show_bug.cgi?id=1613428
bugzilla.redhat.com/show_bug.cgi?id=1630924
bugzilla.redhat.com/show_bug.cgi?id=1630928
bugzilla.redhat.com/show_bug.cgi?id=1631773
bugzilla.redhat.com/show_bug.cgi?id=1643557
bugzilla.redhat.com/show_bug.cgi?id=1675264
bugzilla.redhat.com/show_bug.cgi?id=1691431
Related
prion
prion
Cross site scripting
2019-03-27 13:29:00
nvd
nvd
CVE-2018-10934
2019-03-27 13:29:00
cve
cve
CVE-2018-10934
2019-03-27 13:29:00
redhatcve
redhatcve
CVE-2018-10934
2018-08-16 00:24:30
cvelist
cvelist
CVE-2018-10934
2019-03-27 12:20:07
nessus
nessus
RHEL 7 : Red Hat JBoss Enterprise Application Platform 7.1.6 for RHEL 7 (RHSA-2019:0365)
2019-02-20 00:00:00
RHEL 6 : Red Hat JBoss Enterprise Application Platform 7.1.6 on RHEL 6 (RHSA-2019:0364)
2019-02-20 00:00:00
RHEL 7 : JBoss EAP (RHSA-2019:1161)
2019-05-14 00:00:00
redhat
redhat