Vulnerabilities > Redhat > Jboss Enterprise Application Platform > 6

DATE	CVE	VULNERABILITY TITLE	RISK
2023-12-18	CVE-2023-3628	A flaw was found in Infinispan's REST. network low complexity redhat infinispan	6.5
2023-12-18	CVE-2023-3629	A flaw was found in Infinispan's REST, Cache retrieval endpoints do not properly evaluate the necessary admin permissions for the operation. network low complexity redhat infinispan	6.5
2021-03-23	CVE-2019-19343	Improper Resource Shutdown or Release vulnerability in multiple products A flaw was found in Undertow when using Remoting as shipped in Red Hat Jboss EAP before version 7.2.4. network low complexity redhat netapp CWE-404	5.0
2020-01-23	CVE-2019-14885	Information Exposure Through Log Files vulnerability in Redhat products A flaw was found in the JBoss EAP Vault system in all versions before 7.2.6.GA. network low complexity redhat CWE-532	4.3
2018-09-10	CVE-2016-7061	Information Exposure vulnerability in Redhat Jboss Enterprise Application Platform An information disclosure vulnerability was found in JBoss Enterprise Application Platform before 7.0.4. network low complexity redhat CWE-200	6.5
2018-02-28	CVE-2018-1304	The URL pattern of "" (the empty string) which exactly maps to the context root was not correctly handled in Apache Tomcat 9.0.0.M1 to 9.0.4, 8.5.0 to 8.5.27, 8.0.0.RC1 to 8.0.49 and 7.0.0 to 7.0.84 when used as part of a security constraint definition. network high complexity apache redhat debian canonical oracle	5.9

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.