eap7-istack-commons-runtime vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the eap7-istack-commons-runtime package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free

Vulnerability	Vulnerable Version
H Cross-site Scripting (XSS)	<0:3.0.10-1.redhat_00001.1.el7eap
H Improper Input Validation	<0:3.0.10-1.redhat_00001.1.el7eap
H Improperly Implemented Security Check for Standard	<0:3.0.7-2.redhat_00001.1.el7eap
H Race Condition	<0:3.0.7-2.redhat_00001.1.el7eap
H Allocation of Resources Without Limits or Throttling	<0:3.0.10-1.redhat_00001.1.el7eap
H Improper Input Validation	<0:3.0.10-1.redhat_00001.1.el7eap
H Incorrect Authorization	<0:3.0.10-1.redhat_00001.1.el7eap
H Privilege Context Switching Error	<0:3.0.10-1.redhat_00001.1.el7eap
H Resource Exhaustion	<0:3.0.10-1.redhat_00001.1.el7eap
H Cross-site Scripting (XSS)	<0:3.0.10-1.redhat_00001.1.el7eap
H Insufficiently Protected Credentials	<0:3.0.10-1.redhat_00001.1.el7eap
H Directory Traversal	<0:3.0.10-1.redhat_00001.1.el7eap
H Directory Traversal	<0:3.0.10-1.redhat_00001.1.el7eap
H Selection of Less-Secure Algorithm During Negotiation ('Algorithm Downgrade')	<0:3.0.10-1.redhat_00001.1.el7eap
H Improper Authorization	<0:3.0.10-1.redhat_00001.1.el7eap
H XML External Entity (XXE) Injection	<0:3.0.10-1.redhat_00001.1.el7eap
H Information Exposure	<0:3.0.7-2.redhat_00001.1.el7eap
H Out-of-bounds Read	<0:3.0.10-1.redhat_00001.1.el7eap
H Resource Exhaustion	<0:3.0.10-1.redhat_00001.1.el7eap
M Information Exposure	<0:3.0.5-2.redhat_1.1.el7eap
H HTTP Request Smuggling	<0:3.0.10-1.redhat_00001.1.el7eap
H HTTP Request Smuggling	<0:3.0.10-1.redhat_00001.1.el7eap
H HTTP Request Smuggling	<0:3.0.10-1.redhat_00001.1.el7eap
H HTTP Request Smuggling	<0:3.0.10-1.redhat_00001.1.el7eap
H Cross-site Request Forgery (CSRF)	<0:3.0.7-2.redhat_00001.1.el7eap
H Deserialization of Untrusted Data	<0:3.0.7-2.redhat_00001.1.el7eap
H Deserialization of Untrusted Data	<0:3.0.7-2.redhat_00001.1.el7eap
H Deserialization of Untrusted Data	<0:3.0.7-2.redhat_00001.1.el7eap
H Deserialization of Untrusted Data	<0:3.0.7-2.redhat_00001.1.el7eap
H Improper Input Validation	<0:3.0.10-1.redhat_00001.1.el7eap
H Deserialization of Untrusted Data	<0:3.0.10-1.redhat_00001.1.el7eap
H Deserialization of Untrusted Data	<0:3.0.10-1.redhat_00001.1.el7eap
H Deserialization of Untrusted Data	<0:3.0.10-1.redhat_00001.1.el7eap
H Deserialization of Untrusted Data	<0:3.0.10-1.redhat_00001.1.el7eap
H Deserialization of Untrusted Data	<0:3.0.10-1.redhat_00001.1.el7eap

Vulnerability

Vulnerable Version

Cross-site Scripting (XSS)

<0:3.0.10-1.redhat_00001.1.el7eap

Improper Input Validation

<0:3.0.10-1.redhat_00001.1.el7eap

Improperly Implemented Security Check for Standard

<0:3.0.7-2.redhat_00001.1.el7eap

Race Condition

<0:3.0.7-2.redhat_00001.1.el7eap

Allocation of Resources Without Limits or Throttling

<0:3.0.10-1.redhat_00001.1.el7eap