Homepage

eap7-jboss-marshalling vulnerabilities

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the eap7-jboss-marshalling package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free
VulnerabilityVulnerable Version
  • H
Resource Exhaustion

<0:2.0.14-1.SP1_redhat_00001.1.el7eap
  • H
Improper Initialization

<0:2.0.14-1.SP1_redhat_00001.1.el7eap
  • H
Resource Exhaustion

<0:2.0.14-1.SP1_redhat_00001.1.el7eap
  • H
Deserialization of Untrusted Data

<0:2.0.14-1.SP1_redhat_00001.1.el7eap
  • H
Directory Traversal

<0:2.0.14-1.SP1_redhat_00001.1.el7eap
  • H
Files or Directories Accessible to External Parties

<0:2.0.14-1.SP1_redhat_00001.1.el7eap
  • H
Improper Validation of Syntactic Correctness of Input

<0:2.0.14-1.SP1_redhat_00001.1.el7eap
  • H
Allocation of Resources Without Limits or Throttling

<0:2.0.14-1.SP1_redhat_00001.1.el7eap
  • H
Information Exposure

<0:2.0.13-2.SP1_redhat_00001.1.el7eap
  • H
Uncontrolled Memory Allocation

<0:2.0.13-2.SP1_redhat_00001.1.el7eap
  • H
Allocation of Resources Without Limits or Throttling

<0:2.0.13-2.SP1_redhat_00001.1.el7eap
  • H
Inefficient Regular Expression Complexity

<0:2.0.13-2.SP1_redhat_00001.1.el7eap
  • H
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')

<0:2.0.13-2.SP1_redhat_00001.1.el7eap
  • H
Information Exposure

<0:2.0.13-2.SP1_redhat_00001.1.el7eap
  • H
Information Exposure Through Log Files

<0:2.0.9-1.Final_redhat_00001.1.el7eap
  • H
Deserialization of Untrusted Data

<0:2.0.9-1.Final_redhat_00001.1.el7eap
  • M
Cross-site Scripting (XSS)

<0:2.0.7-2.Final_redhat_00001.1.el7eap
  • M
Cross-site Scripting (XSS)

<0:2.0.7-2.Final_redhat_00001.1.el7eap
  • H
Memory Leak

<0:2.0.10-1.Final_redhat_00001.1.el7eap
  • M
Cleartext Transmission of Sensitive Information

<0:2.0.6-1.Final_redhat_00001.1.ep7.el7
  • H
HTTP Request Smuggling

<0:2.0.2-1.Final_redhat_1.1.ep7.el7
  • H
Incorrect Permission Assignment for Critical Resource

<0:2.0.2-1.Final_redhat_1.1.ep7.el7
  • H
HTTP Request Smuggling

<0:2.0.2-1.Final_redhat_1.1.ep7.el7
  • H
Information Exposure

<0:2.0.2-1.Final_redhat_1.1.ep7.el7
  • H
Improper Input Validation

<0:2.0.4-1.Final_redhat_1.1.ep7.el7
  • H
Out-of-Bounds

<0:2.0.2-1.Final_redhat_1.1.ep7.el7
  • H
Loop with Unreachable Exit Condition ('Infinite Loop')

<0:2.0.2-1.Final_redhat_1.1.ep7.el7
  • H
HTTP Request Smuggling

<0:2.0.2-1.Final_redhat_1.1.ep7.el7
  • H
Access Restriction Bypass

<0:2.0.2-1.Final_redhat_1.1.ep7.el7
  • H
Resource Exhaustion

<0:2.0.13-2.SP1_redhat_00001.1.el7eap
  • M
Information Exposure Through Log Files

<0:2.0.7-2.Final_redhat_00001.1.el7eap
  • H
Resource Exhaustion

<0:2.0.2-1.Final_redhat_1.1.ep7.el7
  • M
Improper Input Validation

<0:2.0.5-1.Final_redhat_1.1.ep7.el7
  • H
Deserialization of Untrusted Data

<0:2.0.2-1.Final_redhat_1.1.ep7.el7
  • H
Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection')

<0:2.0.2-1.Final_redhat_1.1.ep7.el7
  • H
Improper Input Validation

<0:2.0.2-1.Final_redhat_1.1.ep7.el7
  • H
Improper Access Control

<0:2.0.2-1.Final_redhat_1.1.ep7.el7
  • H
Resource Exhaustion

<0:2.0.2-1.Final_redhat_1.1.ep7.el7
  • H
Information Exposure

<0:2.0.2-1.Final_redhat_1.1.ep7.el7
  • H
Directory Traversal

<0:2.0.2-1.Final_redhat_1.1.ep7.el7
  • H
Missing Authorization

<0:2.0.9-1.Final_redhat_00001.1.el7eap
  • M
Information Exposure

<0:2.0.6-2.Final_redhat_00001.1.el7eap
  • H
SQL Injection

<0:2.0.10-1.Final_redhat_00001.1.el7eap
  • M
HTTP Request Smuggling

<0:2.0.11-1.Final_redhat_00001.1.el7eap
  • M
Information Exposure

<0:2.0.11-1.Final_redhat_00001.1.el7eap
  • H
HTTP Response Splitting

<0:2.0.2-1.Final_redhat_1.1.ep7.el7
  • H
HTTP Response Splitting

<0:2.0.4-1.Final_redhat_1.1.ep7.el7
  • H
Deserialization of Untrusted Data

<0:2.0.4-1.Final_redhat_1.1.ep7.el7
  • H
Deserialization of Untrusted Data

<0:2.0.9-1.Final_redhat_00001.1.el7eap
  • H
Deserialization of Untrusted Data

<0:2.0.9-1.Final_redhat_00001.1.el7eap
  • H
Deserialization of Untrusted Data

<0:2.0.9-1.Final_redhat_00001.1.el7eap
  • H
XML External Entity (XXE) Injection

<0:2.0.10-1.Final_redhat_00001.1.el7eap
  • M
Arbitrary Command Injection

<0:2.0.11-1.Final_redhat_00001.1.el7eap
  • H
Deserialization of Untrusted Data

<0:2.0.9-1.Final_redhat_00001.1.el7eap
  • M
Resource Exhaustion

<0:2.0.5-1.Final_redhat_1.1.ep7.el7