Homepage

eap7-resteasy-multipart-provider vulnerabilities

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the eap7-resteasy-multipart-provider package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free
VulnerabilityVulnerable Version
  • M
Link Following

<0:3.15.9-1.Final_redhat_00001.1.el7eap
  • M
Information Exposure Through Log Files

<0:3.15.9-1.Final_redhat_00001.1.el7eap
  • H
Information Exposure

<0:3.15.8-1.Final_redhat_00001.1.el7eap
  • H
Uncontrolled Memory Allocation

<0:3.15.8-1.Final_redhat_00001.1.el7eap
  • H
Allocation of Resources Without Limits or Throttling

<0:3.15.8-1.Final_redhat_00001.1.el7eap
  • H
Inefficient Regular Expression Complexity

<0:3.15.8-1.Final_redhat_00001.1.el7eap
  • H
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')

<0:3.15.8-1.Final_redhat_00001.1.el7eap
  • H
Information Exposure

<0:3.15.8-1.Final_redhat_00001.1.el7eap
  • H
Cross-site Scripting (XSS)

<0:3.11.2-3.Final_redhat_00002.1.el7eap
  • H
Improperly Implemented Security Check for Standard

<0:3.6.1-4.SP3_redhat_00001.1.el7eap
  • H
Race Condition

<0:3.6.1-4.SP3_redhat_00001.1.el7eap
  • H
Allocation of Resources Without Limits or Throttling

<0:3.11.2-3.Final_redhat_00002.1.el7eap
  • H
Improper Input Validation

<0:3.11.2-3.Final_redhat_00002.1.el7eap
  • H
Improper Access Control

<0:3.6.1-9.SP8_redhat_00001.1.el7eap
  • H
Incorrect Authorization

<0:3.11.2-3.Final_redhat_00002.1.el7eap
  • H
Privilege Context Switching Error

<0:3.11.2-3.Final_redhat_00002.1.el7eap
  • H
Resource Exhaustion

<0:3.11.2-3.Final_redhat_00002.1.el7eap
  • H
Cross-site Scripting (XSS)

<0:3.11.2-3.Final_redhat_00002.1.el7eap
  • H
Insufficiently Protected Credentials

<0:3.11.2-3.Final_redhat_00002.1.el7eap
  • M
Cross-site Scripting (XSS)

<0:3.6.1-5.SP5_redhat_00001.1.el7eap
  • M
Cross-site Scripting (XSS)

<0:3.6.1-5.SP5_redhat_00001.1.el7eap
  • H
Information Exposure Through Server Error Message

<0:3.15.5-1.Final_redhat_00001.1.el7eap
  • M
Information Exposure

<0:3.11.5-1.Final_redhat_00001.1.el7eap
  • M
Files or Directories Accessible to External Parties

<0:3.11.5-1.Final_redhat_00001.1.el7eap
  • H
Directory Traversal

<0:3.6.1-10.SP9_redhat_00001.1.el7eap
  • H
Improper Authorization

<0:3.6.1-10.SP9_redhat_00001.1.el7eap
  • H
Deserialization of Untrusted Data

<0:3.6.1-10.SP9_redhat_00001.1.el7eap
  • H
Exposed Dangerous Method or Function

<0:3.6.1-10.SP9_redhat_00001.1.el7eap
  • H
Session Fixation

<0:3.6.1-10.SP9_redhat_00001.1.el7eap
  • H
HTTP Request Smuggling

<0:3.6.1-10.SP9_redhat_00001.1.el7eap
  • H
Memory Leak

<0:3.11.3-1.Final_redhat_00001.1.el7eap
  • H
Memory Leak

<0:3.11.3-1.Final_redhat_00001.1.el7eap
  • H
Information Exposure

<0:3.11.3-1.Final_redhat_00001.1.el7eap
  • H
Directory Traversal

<0:3.11.2-3.Final_redhat_00002.1.el7eap
  • H
Selection of Less-Secure Algorithm During Negotiation ('Algorithm Downgrade')

<0:3.11.2-3.Final_redhat_00002.1.el7eap
  • H
Improper Input Validation

<0:3.0.26-1.Final_redhat_1.1.ep7.el7
  • H
CVE-2017-12189

<0:3.0.19-7.SP5_redhat_1.1.ep7.el7
  • H
Directory Traversal

<0:3.0.25-1.Final_redhat_1.1.ep7.el7
  • H
Insufficient Verification of Data Authenticity

<0:3.0.19-7.SP5_redhat_1.1.ep7.el7
  • H
HTTP Request Smuggling

<0:3.0.24-1.Final_redhat_1.1.ep7.el7
  • H
Incorrect Permission Assignment for Critical Resource

<0:3.0.24-1.Final_redhat_1.1.ep7.el7
  • H
HTTP Request Smuggling

<0:3.0.24-1.Final_redhat_1.1.ep7.el7
  • H
Information Exposure

<0:3.0.24-1.Final_redhat_1.1.ep7.el7
  • H
Out-of-Bounds

<0:3.0.24-1.Final_redhat_1.1.ep7.el7
  • H
Loop with Unreachable Exit Condition ('Infinite Loop')

<0:3.0.24-1.Final_redhat_1.1.ep7.el7
  • H
HTTP Request Smuggling

<0:3.0.24-1.Final_redhat_1.1.ep7.el7
  • H
Access Restriction Bypass

<0:3.0.24-1.Final_redhat_1.1.ep7.el7
  • H
Resource Exhaustion

<0:3.15.8-1.Final_redhat_00001.1.el7eap
  • H
Loop with Unreachable Exit Condition ('Infinite Loop')

<0:3.15.5-1.Final_redhat_00001.1.el7eap
  • M
Resource Exhaustion

<0:3.11.5-1.Final_redhat_00001.1.el7eap
  • H
Resource Exhaustion

<0:3.11.3-1.Final_redhat_00001.1.el7eap
  • H
Improper Authorization

<0:3.11.2-3.Final_redhat_00002.1.el7eap
  • M
Resource Exhaustion

<0:3.15.2-1.Final_redhat_00001.1.el7eap
  • H
Improper Input Validation

<0:3.6.1-10.SP9_redhat_00001.1.el7eap
  • H
XML External Entity (XXE) Injection

<0:3.11.2-3.Final_redhat_00002.1.el7eap
  • H
SQL Injection

<0:3.6.1-10.SP9_redhat_00001.1.el7eap
  • H
Information Exposure

<0:3.6.1-4.SP3_redhat_00001.1.el7eap
  • M
Information Exposure Through Log Files

<0:3.6.1-5.SP5_redhat_00001.1.el7eap
  • H
Uncaught Exception

<0:3.0.26-1.Final_redhat_1.1.ep7.el7
  • H
Directory Traversal

<0:3.0.26-1.Final_redhat_1.1.ep7.el7
  • H
Missing Required Cryptographic Step

<0:3.0.26-1.Final_redhat_1.1.ep7.el7
  • H
Deserialization of Untrusted Data

<0:3.0.25-1.Final_redhat_1.1.ep7.el7
  • H
Improper Authentication

<0:3.0.25-1.Final_redhat_1.1.ep7.el7
  • H
Resource Exhaustion

<0:3.0.24-1.Final_redhat_1.1.ep7.el7
  • H
Out-of-bounds Read

<0:3.11.2-3.Final_redhat_00002.1.el7eap
  • H
Deserialization of Untrusted Data

<0:3.0.25-1.Final_redhat_1.1.ep7.el7
  • H
Deserialization of Untrusted Data

<0:3.0.24-1.Final_redhat_1.1.ep7.el7
  • H
Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection')

<0:3.0.24-1.Final_redhat_1.1.ep7.el7
  • H
Improper Input Validation

<0:3.0.24-1.Final_redhat_1.1.ep7.el7
  • H
Improper Input Validation

<0:3.0.25-1.Final_redhat_1.1.ep7.el7
  • H
Improper Access Control

<0:3.0.24-1.Final_redhat_1.1.ep7.el7
  • H
Resource Exhaustion

<0:3.0.24-1.Final_redhat_1.1.ep7.el7
  • H
Information Exposure

<0:3.0.24-1.Final_redhat_1.1.ep7.el7
  • H
Directory Traversal

<0:3.0.24-1.Final_redhat_1.1.ep7.el7
  • H
Authentication Bypass

<0:3.6.1-7.SP7_redhat_00001.1.el7eap
  • H
Improper Access Control

<0:3.6.1-7.SP7_redhat_00001.1.el7eap
  • M
Information Exposure

<0:3.11.5-1.Final_redhat_00001.1.el7eap
  • H
Arbitrary Code Injection

<0:3.6.1-10.SP9_redhat_00001.1.el7eap
  • H
Deserialization of Untrusted Data

<0:3.0.25-1.Final_redhat_1.1.ep7.el7
  • H
Resource Exhaustion

<0:3.11.2-3.Final_redhat_00002.1.el7eap
  • M
Information Exposure

<0:3.6.1-3.SP2_redhat_00001.1.el7eap
  • H
Information Exposure

<0:3.15.5-1.Final_redhat_00001.1.el7eap
  • H
HTTP Request Smuggling

<0:3.11.2-3.Final_redhat_00002.1.el7eap
  • H
Improper Resource Shutdown or Release

<0:3.6.1-10.SP9_redhat_00001.1.el7eap
  • H
Resource Exhaustion

<0:3.6.1-10.SP9_redhat_00001.1.el7eap
  • M
HTTP Request Smuggling

<0:3.11.4-1.Final_redhat_00001.1.el7eap
  • M
Information Exposure

<0:3.11.4-1.Final_redhat_00001.1.el7eap
  • H
Uncontrolled Recursion

<0:3.15.5-1.Final_redhat_00001.1.el7eap
  • H
Incomplete Blacklist

<0:3.0.25-1.Final_redhat_1.1.ep7.el7
  • H
Creation of Temporary File With Insecure Permissions

<0:3.15.5-1.Final_redhat_00001.1.el7eap
  • H
Out-of-bounds Write

<0:3.15.5-1.Final_redhat_00001.1.el7eap
  • H
Improper Input Validation

<0:3.15.5-1.Final_redhat_00001.1.el7eap
  • H
Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection')

<0:3.15.5-1.Final_redhat_00001.1.el7eap
  • H
Out-of-bounds Write

<0:3.15.5-1.Final_redhat_00001.1.el7eap
  • M
Improper Input Validation

<0:3.0.19-5.SP3_redhat_1.1.ep7.el7
  • H
HTTP Response Splitting

<0:3.0.24-1.Final_redhat_1.1.ep7.el7
  • H
Cross-site Request Forgery (CSRF)

<0:3.6.1-4.SP3_redhat_00001.1.el7eap
  • H
Deserialization of Untrusted Data

<0:3.6.1-4.SP3_redhat_00001.1.el7eap
  • H
Deserialization of Untrusted Data

<0:3.6.1-4.SP3_redhat_00001.1.el7eap
  • H
Deserialization of Untrusted Data

<0:3.6.1-4.SP3_redhat_00001.1.el7eap
  • H
Deserialization of Untrusted Data

<0:3.6.1-4.SP3_redhat_00001.1.el7eap
  • M
Resource Exhaustion

<0:3.11.5-1.Final_redhat_00001.1.el7eap
  • H
CVE-2015-0254

<0:3.0.18-1.Final_redhat_1.1.ep7.el7
  • H
Static Code Injection

<0:3.6.1-10.SP9_redhat_00001.1.el7eap
  • H
Static Code Injection

<0:3.6.1-10.SP9_redhat_00001.1.el7eap
  • H
Improper Input Validation

<0:3.6.1-10.SP9_redhat_00001.1.el7eap
  • H
XML External Entity (XXE) Injection

<0:3.6.1-10.SP9_redhat_00001.1.el7eap
  • H
Resource Exhaustion

<0:3.6.1-7.SP7_redhat_00001.1.el7eap
  • H
Resource Exhaustion

<0:3.6.1-7.SP7_redhat_00001.1.el7eap
  • H
Resource Exhaustion

<0:3.6.1-7.SP7_redhat_00001.1.el7eap
  • H
Resource Exhaustion

<0:3.6.1-7.SP7_redhat_00001.1.el7eap
  • H
Out-of-Bounds

<0:3.0.26-1.Final_redhat_1.1.ep7.el7
  • H
Improper Neutralization of Special Elements

<0:3.0.19-7.SP5_redhat_1.1.ep7.el7
  • H
CVE-2016-6346

<0:3.0.19-7.SP5_redhat_1.1.ep7.el7
  • M
Information Exposure

<0:3.11.5-1.Final_redhat_00001.1.el7eap
  • H
Deserialization of Untrusted Data

<0:3.6.1-10.SP9_redhat_00001.1.el7eap
  • H
Deserialization of Untrusted Data

<0:3.6.1-10.SP9_redhat_00001.1.el7eap
  • H
Deserialization of Untrusted Data

<0:3.6.1-10.SP9_redhat_00001.1.el7eap
  • H
Deserialization of Untrusted Data

<0:3.6.1-10.SP9_redhat_00001.1.el7eap
  • H
Information Exposure

<0:3.11.3-1.Final_redhat_00001.1.el7eap
  • H
Improper Input Validation

<0:3.11.3-1.Final_redhat_00001.1.el7eap
  • M
Arbitrary Command Injection

<0:3.11.4-1.Final_redhat_00001.1.el7eap