CVE-2014-0248
- EPSS 2.35%
- Veröffentlicht 07.07.2014 14:55:03
- Zuletzt bearbeitet 12.04.2025 10:46:40
org.jboss.seam.web.AuthenticationFilter in Red Hat JBoss Web Framework Kit 2.5.0, JBoss Enterprise Application Platform (JBEAP) 5.2.0, and JBoss Enterprise Web Platform (JBEWP) 5.2.0 allows remote attackers to execute arbitrary code via a crafted aut...
CVE-2014-0149
- EPSS 0.26%
- Veröffentlicht 05.05.2014 17:06:05
- Zuletzt bearbeitet 12.04.2025 10:46:40
Multiple cross-site scripting (XSS) vulnerabilities in Red Hat JBoss Web Framework Kit 2.5.0 allow remote attackers to inject arbitrary web script or HTML via a (1) parameter or (2) id name.
CVE-2014-0086
- EPSS 0.64%
- Veröffentlicht 31.03.2014 14:58:19
- Zuletzt bearbeitet 12.04.2025 10:46:40
The doFilter function in webapp/PushHandlerFilter.java in JBoss RichFaces 4.3.4, 4.3.5, and 5.x allows remote attackers to cause a denial of service (memory consumption and out-of-memory error) via a large number of malformed atmosphere push requests...
CVE-2013-2165
- EPSS 25.71%
- Veröffentlicht 23.07.2013 11:03:11
- Zuletzt bearbeitet 11.04.2025 00:51:21
ResourceBuilderImpl.java in the RichFaces 3.x through 5.x implementation in Red Hat JBoss Web Framework Kit before 2.3.0, Red Hat JBoss Web Platform through 5.2.0, Red Hat JBoss Enterprise Application Platform through 4.3.0 CP10 and 5.x through 5.2.0...