Vulnerabilities > Kaazing

DATE CVE VULNERABILITY TITLE RISK
2018-04-12 CVE-2017-6910 Information Exposure vulnerability in Kaazing Gateway
The HTTP and WebSocket engine components in the server in Kaazing Gateway before 4.5.3 hotfix-1, Gateway - JMS Edition before 4.0.5 hotfix-15, 4.0.6 before hotfix-4, 4.0.7, 4.0.9 before hotfix-19, 4.4.x before 4.4.2 hotfix-1, 4.5.x before 4.5.3 hotfix-1, and Gateway Community and Enterprise Editions before 5.6.0 allow remote attackers to bypass intended access restrictions and obtain sensitive information via vectors related to HTTP request handling.
network
low complexity
kaazing CWE-200
5.0
2018-04-12 CVE-2014-6309 Information Exposure vulnerability in Kaazing Gateway 4.0.2/4.0.3/4.0.4
The HTTP and WebSocket engine components in the server in Kaazing Gateway 4.0.2, 4.0.3, and 4.0.4 and Gateway - JMS Edition 4.0.2, 4.0.3, and 4.0.4 allow remote attackers to obtain sensitive information via vectors related to HTTP request handling.
network
low complexity
kaazing CWE-200
5.0