wss4j vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the wss4j package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Vulnerability	Vulnerable Version
M Improper Cleanup on Thrown Exception	<0:1.6.17-2.SP1_redhat_1.1.ep6.el7
M Improper Access Control	<0:1.6.17-2.SP1_redhat_1.1.ep6.el7
M Incorrect Authorization	<0:1.6.17-2.SP1_redhat_1.1.ep6.el7
M Incorrect Authorization	<0:1.6.17-2.SP1_redhat_1.1.ep6.el7
H Improper Verification of Cryptographic Signature	<0:1.6.16-2.redhat_3.1.ep6.el7
L Incorrect Privilege Assignment	<0:1.6.15-2.redhat_1.1.ep6.el7
H Improper Validation of Certificate with Host Mismatch	<0:1.6.16-2.redhat_3.1.ep6.el7
H CVE-2015-0254	<0:1.6.19-3.redhat_2.1.ep6.el7
H Improper Validation of Certificate with Host Mismatch	<0:1.6.16-2.redhat_3.1.ep6.el7
M Improper Input Validation	<0:1.6.16-1.redhat_2.1.ep6.el7
M XML External Entity (XXE) Injection	<0:1.6.17-2.SP1_redhat_1.1.ep6.el7