Red Hat JBoss Enterprise Application Platform Text-only Advisories

CPE Details

Red Hat JBoss Enterprise Application Platform Text-only Advisories
redhat
jboss_enterprise_application_platform_text-only_advisories
-
2020-12-04
17h49 +00:00
2020-12-04
17h49 +00:00
CPE NVD
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:a:redhat:jboss_enterprise_application_platform_text-only_advisories:-:*:*:*:*:*:*:*

Informations

Vendor

redhat

Product

jboss_enterprise_application_platform_text-only_advisories

Version

-

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2023-3223 2023-09-27 13h54 +00:00 A flaw was found in undertow. Servlets annotated with @MultipartConfig may cause an OutOfMemoryError due to large multipart content. This may allow unauthorized users to cause remote Denial of Service (DoS) attack. If the server uses fileSizeThreshold to limit the file size, it's possible to bypass the limit by setting the file name in the request to null.
7.5
Haute
CVE-2011-2487 2020-03-11 14h45 +00:00 The implementations of PKCS#1 v1.5 key transport mechanism for XMLEncryption in JBossWS and Apache WSS4J before 1.6.5 is susceptible to a Bleichenbacher attack.
5.9
Moyen
CVE-2020-7238 2020-01-27 15h43 +00:00 Netty 4.1.43.Final allows HTTP Request Smuggling because it mishandles Transfer-Encoding whitespace (such as a [space]Transfer-Encoding:chunked line) and a later Content-Length header. This issue exists because of an incomplete fix for CVE-2019-16869.
7.5
Haute