CPE-2DB4EA96-9565-4E65-983C-FE71383B7FF2 Detail

CPE Details

Red Hat Integration Service Registry

Vendor

redhat

Product

integration_service_registry

Version

Created

2021-05-25
14h51 +00:00

Modified

2021-08-19
15h06 +00:00

Official links

CPE NVD

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Notifications manage

List of Notifications

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Parameters

You can specify a title that will be retrieved in the alerts that will be sent out.

CPE ID

Planning

Month

Next run calculation

Day

Weekday

Hour

Minute

Creation date

Last execution

Next execution

Functionality requiring a connection

This feature, which allows you to receive alerts, is only active when you are logged into your account.

CPE Name: cpe:2.3:a:redhat:integration_service_registry:-:::::::*

Informations

Vendor

redhat

Product

integration_service_registry

Version

Related CVE

Open and find in CVE List

CVE ID	Published	Description	Score	Severity
CVE-2023-44487	2023-10-10 00h00 +00:00	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.	7.5	High
CVE-2023-4853	2023-09-20 09h47 +00:00	A flaw was found in Quarkus where HTTP security policies are not sanitizing certain character permutations correctly when accepting requests, resulting in incorrect evaluation of permissions. This issue could allow an attacker to bypass the security policy altogether, resulting in unauthorized endpoint access and possibly a denial of service.	8.1	High
CVE-2023-1108	2023-09-14 14h48 +00:00	A flaw was found in undertow. This issue makes achieving a denial of service possible due to an unexpected handshake status updated in SslConduit, where the loop never terminates.	7.5	High
CVE-2022-41862	2023-03-03 00h00 +00:00	In PostgreSQL, a modified, unauthenticated server can send an unterminated string during the establishment of Kerberos transport encryption. In certain conditions a server can cause a libpq client to over-read and report an error message containing uninitialized bytes.	3.7	Low
CVE-2022-4492	2023-02-23 00h00 +00:00	The undertow client is not checking the server identity presented by the server certificate in https connections. This is a compulsory step (at least it should be performed by default) in https and in http/2. I would add it to any TLS client protocol.	7.5	High
CVE-2022-1278	2022-09-13 11h38 +00:00	A flaw was found in WildFly, where an attacker can see deployment names, endpoints, and any other data the trace payload may contain.	7.5	High
CVE-2021-3536	2021-05-20 10h15 +00:00	A flaw was found in Wildfly in versions before 23.0.2.Final while creating a new role in domain mode via the admin console, it is possible to add a payload in the name field, leading to XSS. This affects Confidentiality and Integrity.	4.8	Medium

Red Hat Integration Service Registry

CPE Details

CPE Name: cpe:2.3:a:redhat:integration_service_registry:-:*:*:*:*:*:*:*

Informations

Vendor

Product

Version

Related CVE

CPE Name: cpe:2.3:a:redhat:integration_service_registry:-:::::::*