The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of Red Hat JBoss Enterprise Application Platform

Simple Logging Facade for Java: code execution via EventData XML Deserialisation
An attacker can use a vulnerability via EventData XML Deserialisation of Simple Logging Facade for Java, in order to run code...
1548909, cpuoct2020, CVE-2018-8088, FEDORA-2018-a4353f97db, FEDORA-2018-a46b358764, openSUSE-SU-2018:1625-1, RHSA-2018:0582-01, RHSA-2018:0592-01, RHSA-2018:0627-01, RHSA-2018:0628-01, RHSA-2018:0629-01, RHSA-2018:0630-01, RHSA-2018:1247-01, RHSA-2018:1248-01, RHSA-2018:1249-01, RHSA-2018:1251-01, RHSA-2018:1447-01, RHSA-2018:1448-01, RHSA-2018:1449-01, RHSA-2018:1450-01, RHSA-2018:1451-01, RHSA-2018:1575-01, RHSA-2018:2419-01, RHSA-2018:2420-01, RHSA-2018:2669-01, RHSA-2018:2930-01, SUSE-SU-2018:1744-1, VIGILANCE-VUL-25650, ZOOKEEPER-2952
Undertow: privilege escalation via Digest Authentication URI
An attacker can bypass restrictions via Digest Authentication URI of Undertow, in order to escalate his privileges...
CVE-2017-12196, RHSA-2018:0478-01, RHSA-2018:0479-01, RHSA-2018:0480-01, RHSA-2018:0481-01, VIGILANCE-VUL-25532
Red Hat JBoss EAP 5: denial of service via Remote JMX Deserialization
An attacker can generate a fatal error via Remote JMX Deserialization of Red Hat JBoss EAP 5, in order to trigger a denial of service...
1404528, CVE-2016-9585, VIGILANCE-VUL-25523
Apache CXF: denial of service via JAX-WS/JAX-RS
An attacker can generate a fatal error via JAX-WS/JAX-RS of Apache CXF, in order to trigger a denial of service...
2013597, 7043863, 7048591, CVE-2017-12624, ibm10715641, ibm10738249, RHSA-2018:2423-01, RHSA-2018:2424-01, RHSA-2018:2425-01, VIGILANCE-VUL-25511
Apache Tomcat: privilege escalation
An attacker can bypass restrictions of Apache Tomcat, in order to escalate his privileges...
bulletinapr2018, cpuapr2019, cpujul2019, cpuoct2018, CVE-2018-1304, CVE-2018-1305, DLA-1301-1, DLA-1400-1, DLA-1400-2, DLA-1450-1, DSA-4281-1, FEDORA-2018-50f0da5d38, FEDORA-2018-a233dae4ab, HPESBUX04015, ibm10719117, openSUSE-SU-2018:0852-1, RHSA-2018:0465-01, RHSA-2018:0466-01, RHSA-2018:1447-01, RHSA-2018:1448-01, RHSA-2018:1449-01, RHSA-2018:1450-01, RHSA-2018:1451-01, RHSA-2019:2205-01, SUSE-SU-2018:1847-1, SUSE-SU-2018:3261-1, SUSE-SU-2018:3388-1, USN-3665-1, VIGILANCE-VUL-25358
Red Hat JBoss Enterprise Application Platform: denial of service
An attacker can generate a fatal error of Red Hat JBoss Enterprise Application Platform, in order to trigger a denial of service...
CVE-2017-12174, CVE-2018-1041, JSA10993, RHSA-2018:0268-01, RHSA-2018:0269-01, RHSA-2018:0270-01, RHSA-2018:0271-01, RHSA-2018:0275-01, RHSA-2018:0478-01, RHSA-2018:0479-01, RHSA-2018:0480-01, RHSA-2018:0481-01, VIGILANCE-VUL-25217
Red Hat JBoss Enterprise Application Platform: directory traversal
An attacker can traverse directories of Red Hat JBoss Enterprise Application Platform, in order to read a file outside the service root path...
1534343, CVE-2018-1048, RHSA-2018:0478-01, RHSA-2018:0479-01, RHSA-2018:0480-01, RHSA-2018:0481-01, VIGILANCE-VUL-25152
WildFly: directory traversal
An attacker can traverse directories of WildFly, in order to read a file outside the service root path...
CVE-2018-1047, RHSA-2018:1247-01, RHSA-2018:1248-01, RHSA-2018:1249-01, RHSA-2018:1251-01, VIGILANCE-VUL-25151, WFLY-9620
Red Hat JBoss EAP: privilege escalation via Init Script File Handling
An attacker can bypass restrictions via Init Script File Handling of Red Hat JBoss EAP, in order to escalate his privileges...
CVE-2017-12189, RHSA-2018:0002-01, RHSA-2018:0003-01, RHSA-2018:0004-01, RHSA-2018:0005-01, VIGILANCE-VUL-24932
Red Hat JBoss EAP: information disclosure via Properties Files
An attacker can bypass access restrictions to data via Properties Files of Red Hat JBoss EAP, in order to obtain sensitive information...
CVE-2017-12167, RHSA-2017:3454-01, RHSA-2017:3455-01, RHSA-2017:3456-01, RHSA-2017:3458-01, RHSA-2018:0002-01, RHSA-2018:0003-01, RHSA-2018:0004-01, RHSA-2018:0005-01, VIGILANCE-VUL-24770
Our database contains other pages. You can request a free trial to read them.

Display information about Red Hat JBoss Enterprise Application Platform: