Homepage

eap7-picketlink-idm-simple-schema vulnerabilities

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the eap7-picketlink-idm-simple-schema package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free
VulnerabilityVulnerable Version
  • H
Improperly Implemented Security Check for Standard

<0:2.5.5-16.SP12_redhat_4.1.el7eap
  • H
Race Condition

<0:2.5.5-16.SP12_redhat_4.1.el7eap
  • H
Information Exposure Through Log Files

<0:2.5.5-20.SP12_redhat_00007.1.el7eap
  • H
Deserialization of Untrusted Data

<0:2.5.5-20.SP12_redhat_00007.1.el7eap
  • M
Cross-site Scripting (XSS)

<0:2.5.5-17.SP12_redhat_00005.1.el7eap
  • M
Cross-site Scripting (XSS)

<0:2.5.5-17.SP12_redhat_00005.1.el7eap
  • H
Information Exposure Through Server Error Message

<0:2.5.5-22.SP12_redhat_00012.1.el7eap
  • M
Cleartext Transmission of Sensitive Information

<0:2.5.5-14.SP12_redhat_2.1.ep7.el7
  • H
Improper Input Validation

<0:2.5.5-13.SP12_redhat_1.1.ep7.el7
  • H
Directory Traversal

<0:2.5.5-10.SP9_redhat_1.1.ep7.el7
  • H
Insufficient Verification of Data Authenticity

<0:2.5.5-10.SP9_redhat_1.1.ep7.el7
  • H
Improper Input Validation

<0:2.5.5-11.SP10_redhat_1.1.ep7.el7
  • H
Information Exposure

<0:2.5.5-9.SP8_redhat_1.1.ep7.el7
  • M
Loop with Unreachable Exit Condition ('Infinite Loop')

<0:2.5.5-8.SP7_redhat_2.1.ep7.el7
  • M
HTTP Request Smuggling

<0:2.5.5-8.SP7_redhat_2.1.ep7.el7
  • H
Access Restriction Bypass

<0:2.5.5-3.SP3_redhat_1.1.ep7.el7
  • H
Loop with Unreachable Exit Condition ('Infinite Loop')

<0:2.5.5-22.SP12_redhat_00012.1.el7eap
  • M
Information Exposure

<0:2.5.5-15.SP12_redhat_3.1.ep7.el7
  • M
Information Exposure Through Log Files

<0:2.5.5-17.SP12_redhat_00005.1.el7eap
  • H
Uncaught Exception

<0:2.5.5-13.SP12_redhat_1.1.ep7.el7
  • H
Directory Traversal

<0:2.5.5-13.SP12_redhat_1.1.ep7.el7
  • H
Missing Required Cryptographic Step

<0:2.5.5-13.SP12_redhat_1.1.ep7.el7
  • H
Covert Timing Channel

<0:2.5.5-9.SP8_redhat_1.1.ep7.el7
  • H
Deserialization of Untrusted Data

<0:2.5.5-10.SP9_redhat_1.1.ep7.el7
  • H
Improper Authentication

<0:2.5.5-10.SP9_redhat_1.1.ep7.el7
  • H
Resource Exhaustion

<0:2.5.5-6.SP6_redhat_1.1.ep7.el7
  • M
Improper Input Validation

<0:2.5.5-12.SP11_redhat_1.1.ep7.el7
  • H
Deserialization of Untrusted Data

<0:2.5.5-10.SP9_redhat_1.1.ep7.el7
  • H
Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection')

<0:2.5.5-9.SP8_redhat_1.1.ep7.el7
  • M
Cross-site Scripting (XSS)

<0:2.5.5-15.SP12_redhat_3.1.ep7.el7
  • H
Improper Input Validation

<0:2.5.5-10.SP9_redhat_1.1.ep7.el7
  • H
Improper Access Control

<0:2.5.5-6.SP6_redhat_1.1.ep7.el7
  • M
Resource Exhaustion

<0:2.5.5-4.SP4_redhat_1.1.ep7.el7
  • M
Information Exposure

<0:2.5.5-4.SP4_redhat_1.1.ep7.el7
  • M
Directory Traversal

<0:2.5.5-8.SP7_redhat_2.1.ep7.el7
  • H
Missing Authorization

<0:2.5.5-20.SP12_redhat_00007.1.el7eap
  • H
Authentication Bypass

<0:2.5.5-20.SP12_redhat_00009.1.el7eap
  • H
Improper Access Control

<0:2.5.5-20.SP12_redhat_00009.1.el7eap
  • H
Deserialization of Untrusted Data

<0:2.5.5-10.SP9_redhat_1.1.ep7.el7
  • M
Information Exposure

<0:2.5.5-15.SP12_redhat_2.1.el7eap
  • H
Information Exposure

<0:2.5.5-22.SP12_redhat_00012.1.el7eap
  • H
Uncontrolled Recursion

<0:2.5.5-22.SP12_redhat_00012.1.el7eap
  • H
Incomplete Blacklist

<0:2.5.5-10.SP9_redhat_1.1.ep7.el7
  • H
Creation of Temporary File With Insecure Permissions

<0:2.5.5-22.SP12_redhat_00012.1.el7eap
  • H
Out-of-bounds Write

<0:2.5.5-22.SP12_redhat_00012.1.el7eap
  • H
Improper Input Validation

<0:2.5.5-22.SP12_redhat_00012.1.el7eap
  • H
Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection')

<0:2.5.5-22.SP12_redhat_00012.1.el7eap
  • H
Out-of-bounds Write

<0:2.5.5-22.SP12_redhat_00012.1.el7eap
  • M
Improper Input Validation

<0:2.5.5-8.SP7_redhat_2.1.ep7.el7
  • H
HTTP Response Splitting

<0:2.5.5-3.SP3_redhat_1.1.ep7.el7
  • H
Cross-site Request Forgery (CSRF)

<0:2.5.5-16.SP12_redhat_4.1.el7eap
  • H
Deserialization of Untrusted Data

<0:2.5.5-16.SP12_redhat_4.1.el7eap
  • H
Deserialization of Untrusted Data

<0:2.5.5-16.SP12_redhat_4.1.el7eap
  • H
Deserialization of Untrusted Data

<0:2.5.5-16.SP12_redhat_4.1.el7eap
  • H
Deserialization of Untrusted Data

<0:2.5.5-16.SP12_redhat_4.1.el7eap
  • H
HTTP Response Splitting

<0:2.5.5-11.SP10_redhat_1.1.ep7.el7
  • H
CVE-2015-0254

<0:2.5.5-3.SP3_redhat_1.1.ep7.el7
  • H
Deserialization of Untrusted Data

<0:2.5.5-11.SP10_redhat_1.1.ep7.el7
  • H
Resource Exhaustion

<0:2.5.5-20.SP12_redhat_00009.1.el7eap
  • H
Resource Exhaustion

<0:2.5.5-20.SP12_redhat_00009.1.el7eap
  • H
Resource Exhaustion

<0:2.5.5-20.SP12_redhat_00009.1.el7eap
  • H
Resource Exhaustion

<0:2.5.5-20.SP12_redhat_00009.1.el7eap
  • H
Deserialization of Untrusted Data

<0:2.5.5-20.SP12_redhat_00007.1.el7eap
  • M
Arbitrary Argument Injection

<0:2.5.5-15.SP12_redhat_3.1.ep7.el7
  • H
Out-of-Bounds

<0:2.5.5-13.SP12_redhat_1.1.ep7.el7
  • H
Deserialization of Untrusted Data

<0:2.5.5-9.SP8_redhat_1.1.ep7.el7
  • H
Deserialization of Untrusted Data

<0:2.5.5-20.SP12_redhat_00007.1.el7eap
  • H
Deserialization of Untrusted Data

<0:2.5.5-20.SP12_redhat_00007.1.el7eap
  • H
Deserialization of Untrusted Data

<0:2.5.5-20.SP12_redhat_00007.1.el7eap
  • M
Resource Exhaustion

<0:2.5.5-12.SP11_redhat_1.1.ep7.el7