Homepage

eap7-weld-core-jsf vulnerabilities

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the eap7-weld-core-jsf package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free
VulnerabilityVulnerable Version
  • H
Resource Exhaustion

<0:3.1.10-2.Final_redhat_00001.1.el7eap
  • H
Improper Initialization

<0:3.1.10-2.Final_redhat_00001.1.el7eap
  • H
Resource Exhaustion

<0:3.1.10-2.Final_redhat_00001.1.el7eap
  • H
Deserialization of Untrusted Data

<0:3.1.10-2.Final_redhat_00001.1.el7eap
  • H
Directory Traversal

<0:3.1.10-2.Final_redhat_00001.1.el7eap
  • H
Files or Directories Accessible to External Parties

<0:3.1.10-2.Final_redhat_00001.1.el7eap
  • H
Improper Validation of Syntactic Correctness of Input

<0:3.1.10-2.Final_redhat_00001.1.el7eap
  • H
Allocation of Resources Without Limits or Throttling

<0:3.1.10-2.Final_redhat_00001.1.el7eap
  • H
Cross-site Scripting (XSS)

<0:3.1.4-1.Final_redhat_00001.1.el7eap
  • H
Resource Exhaustion

<0:3.0.6-3.Final_redhat_00003.1.el7eap
  • H
Information Exposure Through Log Files

<0:3.0.6-2.Final_redhat_00002.1.el7eap
  • H
Deserialization of Untrusted Data

<0:3.0.6-2.Final_redhat_00002.1.el7eap
  • H
Allocation of Resources Without Limits or Throttling

<0:3.1.4-1.Final_redhat_00001.1.el7eap
  • H
Improper Input Validation

<0:3.1.4-1.Final_redhat_00001.1.el7eap
  • H
Incorrect Authorization

<0:3.1.4-1.Final_redhat_00001.1.el7eap
  • H
Privilege Context Switching Error

<0:3.1.4-1.Final_redhat_00001.1.el7eap
  • H
Resource Exhaustion

<0:3.1.4-1.Final_redhat_00001.1.el7eap
  • H
Cross-site Scripting (XSS)

<0:3.1.4-1.Final_redhat_00001.1.el7eap
  • H
Insufficiently Protected Credentials

<0:3.1.4-1.Final_redhat_00001.1.el7eap
  • M
Cross-site Scripting (XSS)

<0:3.0.6-1.Final_redhat_00001.1.el7eap
  • M
Cross-site Scripting (XSS)

<0:3.0.6-1.Final_redhat_00001.1.el7eap
  • H
Directory Traversal

<0:3.0.6-4.Final_redhat_00004.1.el7eap
  • H
Improper Authorization

<0:3.0.6-4.Final_redhat_00004.1.el7eap
  • H
Deserialization of Untrusted Data

<0:3.0.6-4.Final_redhat_00004.1.el7eap
  • H
Exposed Dangerous Method or Function

<0:3.0.6-4.Final_redhat_00004.1.el7eap
  • H
Session Fixation

<0:3.0.6-4.Final_redhat_00004.1.el7eap
  • H
HTTP Request Smuggling

<0:3.0.6-4.Final_redhat_00004.1.el7eap
  • H
Directory Traversal

<0:3.1.4-1.Final_redhat_00001.1.el7eap
  • H
Selection of Less-Secure Algorithm During Negotiation ('Algorithm Downgrade')

<0:3.1.4-1.Final_redhat_00001.1.el7eap
  • H
HTTP Request Smuggling

<0:2.4.3-1.Final_redhat_1.1.ep7.el7
  • H
Incorrect Permission Assignment for Critical Resource

<0:2.4.3-1.Final_redhat_1.1.ep7.el7
  • H
HTTP Request Smuggling

<0:2.4.3-1.Final_redhat_1.1.ep7.el7
  • H
Information Exposure

<0:2.4.3-1.Final_redhat_1.1.ep7.el7
  • H
Improper Input Validation

<0:2.4.7-1.Final_redhat_1.1.ep7.el7
  • H
Out-of-Bounds

<0:2.4.3-1.Final_redhat_1.1.ep7.el7
  • H
Loop with Unreachable Exit Condition ('Infinite Loop')

<0:2.4.3-1.Final_redhat_1.1.ep7.el7
  • H
HTTP Request Smuggling

<0:2.4.3-1.Final_redhat_1.1.ep7.el7
  • H
Access Restriction Bypass

<0:2.4.3-1.Final_redhat_1.1.ep7.el7
  • H
Improper Authorization

<0:3.1.4-1.Final_redhat_00001.1.el7eap
  • H
Improper Input Validation

<0:3.0.6-4.Final_redhat_00004.1.el7eap
  • H
Cross-site Scripting (XSS)

<0:3.0.6-3.Final_redhat_00003.1.el7eap
  • H
XML External Entity (XXE) Injection

<0:3.1.4-1.Final_redhat_00001.1.el7eap
  • H
SQL Injection

<0:3.0.6-4.Final_redhat_00004.1.el7eap
  • M
Information Exposure Through Log Files

<0:3.0.6-1.Final_redhat_00001.1.el7eap
  • H
Resource Exhaustion

<0:2.4.3-1.Final_redhat_1.1.ep7.el7
  • H
Out-of-bounds Read

<0:3.1.4-1.Final_redhat_00001.1.el7eap
  • H
Deserialization of Untrusted Data

<0:2.4.3-1.Final_redhat_1.1.ep7.el7
  • H
Information Exposure Through Log Files

<0:3.0.6-3.Final_redhat_00003.1.el7eap
  • H
Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection')

<0:2.4.3-1.Final_redhat_1.1.ep7.el7
  • H
Improper Input Validation

<0:2.4.3-1.Final_redhat_1.1.ep7.el7
  • H
Improper Access Control

<0:2.4.3-1.Final_redhat_1.1.ep7.el7
  • H
Resource Exhaustion

<0:2.4.3-1.Final_redhat_1.1.ep7.el7
  • H
Information Exposure

<0:2.4.3-1.Final_redhat_1.1.ep7.el7
  • H
Directory Traversal

<0:2.4.3-1.Final_redhat_1.1.ep7.el7
  • H
Missing Authorization

<0:3.0.6-2.Final_redhat_00002.1.el7eap
  • H
Arbitrary Code Injection

<0:3.0.6-4.Final_redhat_00004.1.el7eap
  • H
Resource Exhaustion

<0:3.1.4-1.Final_redhat_00001.1.el7eap
  • M
Information Exposure

<0:3.0.5-1.Final_redhat_00001.1.el7eap
  • H
HTTP Request Smuggling

<0:3.0.6-3.Final_redhat_00003.1.el7eap
  • H
HTTP Request Smuggling

<0:3.1.4-1.Final_redhat_00001.1.el7eap
  • H
Improper Resource Shutdown or Release

<0:3.0.6-4.Final_redhat_00004.1.el7eap
  • H
Resource Exhaustion

<0:3.0.6-4.Final_redhat_00004.1.el7eap
  • M
HTTP Request Smuggling

<0:3.1.6-1.Final_redhat_00001.1.el7eap
  • M
Information Exposure

<0:3.1.6-1.Final_redhat_00001.1.el7eap
  • H
HTTP Response Splitting

<0:2.4.3-1.Final_redhat_1.1.ep7.el7
  • H
HTTP Response Splitting

<0:2.4.7-1.Final_redhat_1.1.ep7.el7
  • H
Improper Input Validation

<0:3.0.6-3.Final_redhat_00003.1.el7eap
  • H
Static Code Injection

<0:3.0.6-4.Final_redhat_00004.1.el7eap
  • H
Deserialization of Untrusted Data

<0:3.0.6-3.Final_redhat_00003.1.el7eap
  • H
Deserialization of Untrusted Data

<0:3.0.6-3.Final_redhat_00003.1.el7eap
  • H
Deserialization of Untrusted Data

<0:3.0.6-3.Final_redhat_00003.1.el7eap
  • H
Static Code Injection

<0:3.0.6-4.Final_redhat_00004.1.el7eap
  • H
Deserialization of Untrusted Data

<0:3.0.6-3.Final_redhat_00003.1.el7eap
  • H
Improper Input Validation

<0:3.0.6-4.Final_redhat_00004.1.el7eap
  • H
XML External Entity (XXE) Injection

<0:3.0.6-4.Final_redhat_00004.1.el7eap
  • H
Deserialization of Untrusted Data

<0:2.4.7-1.Final_redhat_1.1.ep7.el7
  • H
Deserialization of Untrusted Data

<0:3.0.6-2.Final_redhat_00002.1.el7eap
  • H
Deserialization of Untrusted Data

<0:3.0.6-2.Final_redhat_00002.1.el7eap
  • H
Deserialization of Untrusted Data

<0:3.0.6-2.Final_redhat_00002.1.el7eap
  • H
Deserialization of Untrusted Data

<0:3.0.6-4.Final_redhat_00004.1.el7eap
  • H
Deserialization of Untrusted Data

<0:3.0.6-4.Final_redhat_00004.1.el7eap
  • H
Deserialization of Untrusted Data

<0:3.0.6-4.Final_redhat_00004.1.el7eap
  • H
Deserialization of Untrusted Data

<0:3.0.6-4.Final_redhat_00004.1.el7eap
  • M
Arbitrary Command Injection

<0:3.1.6-1.Final_redhat_00001.1.el7eap
  • H
Deserialization of Untrusted Data

<0:3.0.6-3.Final_redhat_00003.1.el7eap
  • H
Deserialization of Untrusted Data

<0:3.0.6-3.Final_redhat_00003.1.el7eap
  • H
Deserialization of Untrusted Data

<0:3.0.6-3.Final_redhat_00003.1.el7eap
  • H
Deserialization of Untrusted Data

<0:3.0.6-2.Final_redhat_00002.1.el7eap