Vulnerabilities > Redhat > Jboss Portal > Medium

DATE CVE VULNERABILITY TITLE RISK
2020-03-11 CVE-2011-2487 Use of a Broken or Risky Cryptographic Algorithm vulnerability in multiple products
The implementations of PKCS#1 v1.5 key transport mechanism for XMLEncryption in JBossWS and Apache WSS4J before 1.6.5 is susceptible to a Bleichenbacher attack.
network
high complexity
apache redhat CWE-327
5.9
5.9
2020-01-02 CVE-2014-0245 Race Condition vulnerability in Redhat Jboss Portal 6.2.0
It was found that the implementation of the GTNSubjectCreatingInterceptor class in gatein-wsrp was not thread safe.
network
high complexity
redhat CWE-362
5.9
5.9
2019-12-11 CVE-2013-6495 Cross-site Scripting vulnerability in Redhat products
JBossWeb Bayeux has reflected XSS
network
low complexity
redhat CWE-79
6.1
6.1