eap7-jbossws-cxf vulnerabilities

Known vulnerabilities in the eap7-jbossws-cxf package. This does not include vulnerabilities belonging to this package’s dependencies.

Vulnerability	Vulnerable Version
H Excessive Platform Resource Consumption within a Loop	<0:5.4.12-1.Final_redhat_00001.1.el7eap
H Allocation of Resources Without Limits or Throttling	<0:5.4.12-1.Final_redhat_00001.1.el7eap
H Resource Exhaustion	<0:5.4.12-1.Final_redhat_00001.1.el7eap
H Cross-site Scripting (XSS)	<0:5.4.12-1.Final_redhat_00001.1.el7eap
H Integer Coercion Error	<0:5.4.12-1.Final_redhat_00001.1.el7eap
H Resource Exhaustion	<0:5.4.9-1.Final_redhat_00001.1.el7eap
H Improper Initialization	<0:5.4.9-1.Final_redhat_00001.1.el7eap
H Resource Exhaustion	<0:5.4.9-1.Final_redhat_00001.1.el7eap
H Deserialization of Untrusted Data	<0:5.4.9-1.Final_redhat_00001.1.el7eap
H Directory Traversal	<0:5.4.9-1.Final_redhat_00001.1.el7eap
H Files or Directories Accessible to External Parties	<0:5.4.9-1.Final_redhat_00001.1.el7eap
H Improper Validation of Syntactic Correctness of Input	<0:5.4.9-1.Final_redhat_00001.1.el7eap
H Allocation of Resources Without Limits or Throttling	<0:5.4.9-1.Final_redhat_00001.1.el7eap
H Information Exposure Through Server Error Message	<0:5.4.8-1.Final_redhat_00001.1.el7eap
M Cleartext Transmission of Sensitive Information	<0:5.1.11-1.Final_redhat_00001.1.ep7.el7
H Directory Traversal	<0:5.1.10-1.Final_redhat_1.1.ep7.el7
H Insufficient Verification of Data Authenticity	<0:5.1.10-1.Final_redhat_1.1.ep7.el7
H HTTP Request Smuggling	<0:5.1.9-2.Final_redhat_1.1.ep7.el7
H Incorrect Permission Assignment for Critical Resource	<0:5.1.9-2.Final_redhat_1.1.ep7.el7
H HTTP Request Smuggling	<0:5.1.9-2.Final_redhat_1.1.ep7.el7
H Information Exposure	<0:5.1.9-2.Final_redhat_1.1.ep7.el7
H Out-of-Bounds	<0:5.1.9-2.Final_redhat_1.1.ep7.el7
H Loop with Unreachable Exit Condition ('Infinite Loop')	<0:5.1.9-2.Final_redhat_1.1.ep7.el7
H HTTP Request Smuggling	<0:5.1.9-2.Final_redhat_1.1.ep7.el7
H Access Restriction Bypass	<0:5.1.9-2.Final_redhat_1.1.ep7.el7
H Loop with Unreachable Exit Condition ('Infinite Loop')	<0:5.4.8-1.Final_redhat_00001.1.el7eap
H Deserialization of Untrusted Data	<0:5.1.10-1.Final_redhat_1.1.ep7.el7
H Improper Authentication	<0:5.1.10-1.Final_redhat_1.1.ep7.el7
H Resource Exhaustion	<0:5.1.9-2.Final_redhat_1.1.ep7.el7
H Deserialization of Untrusted Data	<0:5.1.10-1.Final_redhat_1.1.ep7.el7
H Deserialization of Untrusted Data	<0:5.1.9-2.Final_redhat_1.1.ep7.el7
H Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection')	<0:5.1.9-2.Final_redhat_1.1.ep7.el7
H Improper Input Validation	<0:5.1.9-2.Final_redhat_1.1.ep7.el7
H Improper Input Validation	<0:5.1.10-1.Final_redhat_1.1.ep7.el7
H Improper Access Control	<0:5.1.9-2.Final_redhat_1.1.ep7.el7
H Resource Exhaustion	<0:5.1.9-2.Final_redhat_1.1.ep7.el7
H Information Exposure	<0:5.1.9-2.Final_redhat_1.1.ep7.el7
H Directory Traversal	<0:5.1.9-2.Final_redhat_1.1.ep7.el7
H Deserialization of Untrusted Data	<0:5.1.10-1.Final_redhat_1.1.ep7.el7
M Information Exposure	<0:5.2.4-1.Final_redhat_00001.1.el7eap
H Information Exposure	<0:5.4.8-1.Final_redhat_00001.1.el7eap
H Uncontrolled Recursion	<0:5.4.8-1.Final_redhat_00001.1.el7eap
H Incomplete Blacklist	<0:5.1.10-1.Final_redhat_1.1.ep7.el7
H Creation of Temporary File With Insecure Permissions	<0:5.4.8-1.Final_redhat_00001.1.el7eap
H Out-of-bounds Write	<0:5.4.8-1.Final_redhat_00001.1.el7eap
H Improper Input Validation	<0:5.4.8-1.Final_redhat_00001.1.el7eap
H Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection')	<0:5.4.8-1.Final_redhat_00001.1.el7eap
H Out-of-bounds Write	<0:5.4.8-1.Final_redhat_00001.1.el7eap
M Improper Input Validation	<0:5.1.8-1.Final_redhat_1.1.ep7.el7
H HTTP Response Splitting	<0:5.1.9-2.Final_redhat_1.1.ep7.el7
H CVE-2015-0254	<0:5.1.5-1.Final_redhat_1.1.ep7.el7

Vulnerability

Vulnerable Version

Excessive Platform Resource Consumption within a Loop