Vulnerabilities > Redhat > Jboss Portal > 6.2.0
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2020-01-02 | CVE-2014-0245 | Race Condition vulnerability in Redhat Jboss Portal 6.2.0 It was found that the implementation of the GTNSubjectCreatingInterceptor class in gatein-wsrp was not thread safe. | 4.3 |
2015-08-11 | CVE-2015-5176 | Code vulnerability in Redhat Jboss Portal 6.2.0 The PortletRequestDispatcher in PortletBridge, as used in Red Hat JBoss Portal 6.2.0, does not properly enforce the security constraints of servlets, which allows remote attackers to gain access to resources via a request that asks to render a non-JSF resource. | 5.8 |