eap7-codemodel vulnerabilities

Known vulnerabilities in the eap7-codemodel package. This does not include vulnerabilities belonging to this package’s dependencies.

Vulnerability	Vulnerable Version
H Cross-site Scripting (XSS)	<0:2.3.3-4.b02_redhat_00001.1.el7eap
H Improper Input Validation	<0:2.3.3-4.b02_redhat_00001.1.el7eap
H Allocation of Resources Without Limits or Throttling	<0:2.3.3-4.b02_redhat_00001.1.el7eap
H Improper Input Validation	<0:2.3.3-4.b02_redhat_00001.1.el7eap
H Incorrect Authorization	<0:2.3.3-4.b02_redhat_00001.1.el7eap
H Privilege Context Switching Error	<0:2.3.3-4.b02_redhat_00001.1.el7eap
H Resource Exhaustion	<0:2.3.3-4.b02_redhat_00001.1.el7eap
H Cross-site Scripting (XSS)	<0:2.3.3-4.b02_redhat_00001.1.el7eap
H Insufficiently Protected Credentials	<0:2.3.3-4.b02_redhat_00001.1.el7eap
H Directory Traversal	<0:2.3.3-4.b02_redhat_00001.1.el7eap
H Directory Traversal	<0:2.3.3-4.b02_redhat_00001.1.el7eap
H Selection of Less-Secure Algorithm During Negotiation ('Algorithm Downgrade')	<0:2.3.3-4.b02_redhat_00001.1.el7eap
H HTTP Request Smuggling	<0:2.2.11-10.redhat_4.1.ep7.el7
H Incorrect Permission Assignment for Critical Resource	<0:2.2.11-10.redhat_4.1.ep7.el7
H HTTP Request Smuggling	<0:2.2.11-10.redhat_4.1.ep7.el7
H Information Exposure	<0:2.2.11-10.redhat_4.1.ep7.el7
H Out-of-Bounds	<0:2.2.11-10.redhat_4.1.ep7.el7
H Loop with Unreachable Exit Condition ('Infinite Loop')	<0:2.2.11-10.redhat_4.1.ep7.el7
H HTTP Request Smuggling	<0:2.2.11-10.redhat_4.1.ep7.el7
H Access Restriction Bypass	<0:2.2.11-10.redhat_4.1.ep7.el7
H Improper Authorization	<0:2.3.3-4.b02_redhat_00001.1.el7eap
H XML External Entity (XXE) Injection	<0:2.3.3-4.b02_redhat_00001.1.el7eap
H Resource Exhaustion	<0:2.2.11-10.redhat_4.1.ep7.el7
H Out-of-bounds Read	<0:2.3.3-4.b02_redhat_00001.1.el7eap
H Deserialization of Untrusted Data	<0:2.2.11-10.redhat_4.1.ep7.el7
H Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection')	<0:2.2.11-10.redhat_4.1.ep7.el7
H Improper Input Validation	<0:2.2.11-10.redhat_4.1.ep7.el7
H Improper Access Control	<0:2.2.11-10.redhat_4.1.ep7.el7
H Resource Exhaustion	<0:2.2.11-10.redhat_4.1.ep7.el7
H Information Exposure	<0:2.2.11-10.redhat_4.1.ep7.el7
H Directory Traversal	<0:2.2.11-10.redhat_4.1.ep7.el7
H Resource Exhaustion	<0:2.3.3-4.b02_redhat_00001.1.el7eap
M Information Exposure	<0:2.3.1-6.redhat_00001.1.el7eap
H HTTP Request Smuggling	<0:2.3.3-4.b02_redhat_00001.1.el7eap
H HTTP Request Smuggling	<0:2.3.3-4.b02_redhat_00001.1.el7eap
H HTTP Request Smuggling	<0:2.3.3-4.b02_redhat_00001.1.el7eap
H HTTP Request Smuggling	<0:2.3.3-4.b02_redhat_00001.1.el7eap
H HTTP Response Splitting	<0:2.2.11-10.redhat_4.1.ep7.el7
H Improper Input Validation	<0:2.3.3-4.b02_redhat_00001.1.el7eap
H Deserialization of Untrusted Data	<0:2.3.3-4.b02_redhat_00001.1.el7eap
H Deserialization of Untrusted Data	<0:2.3.3-4.b02_redhat_00001.1.el7eap
H Deserialization of Untrusted Data	<0:2.3.3-4.b02_redhat_00001.1.el7eap
H Deserialization of Untrusted Data	<0:2.3.3-4.b02_redhat_00001.1.el7eap
H Deserialization of Untrusted Data	<0:2.3.3-4.b02_redhat_00001.1.el7eap

Vulnerability

Vulnerable Version

Cross-site Scripting (XSS)