Homepage

eap7-wildfly vulnerabilities

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the eap7-wildfly package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free
VulnerabilityVulnerable Version
  • H
Excessive Platform Resource Consumption within a Loop

<0:7.4.19-1.GA_redhat_00002.1.el7eap
  • H
Allocation of Resources Without Limits or Throttling

<0:7.4.19-1.GA_redhat_00002.1.el7eap
  • H
Resource Exhaustion

<0:7.4.19-1.GA_redhat_00002.1.el7eap
  • H
Cross-site Scripting (XSS)

<0:7.4.19-1.GA_redhat_00002.1.el7eap
  • H
Integer Coercion Error

<0:7.4.19-1.GA_redhat_00002.1.el7eap
  • H
Race Condition

<0:7.4.18-1.GA_redhat_00003.1.el7eap
  • H
Deserialization of Untrusted Data

<0:7.1.7-2.GA_redhat_00002.1.ep7.el7
  • H
SQL Injection

<0:7.1.7-2.GA_redhat_00002.1.ep7.el7
  • H
Deserialization of Untrusted Data

<0:7.1.7-2.GA_redhat_00002.1.ep7.el7
  • H
Improper Input Validation

<0:7.1.7-2.GA_redhat_00002.1.ep7.el7
  • H
Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection')

<0:7.1.7-2.GA_redhat_00002.1.ep7.el7
  • H
Directory Traversal

<0:7.4.16-4.GA_redhat_00002.1.el7eap
  • H
Uncontrolled Recursion

<0:7.4.18-1.GA_redhat_00001.1.el7eap
  • H
Memory Leak

<0:7.4.18-1.GA_redhat_00001.1.el7eap
  • H
Loop with Unreachable Exit Condition ('Infinite Loop')

<0:7.4.18-1.GA_redhat_00001.1.el7eap
  • H
Information Exposure

<0:7.4.18-1.GA_redhat_00001.1.el7eap
  • H
Improper Input Validation

<0:7.4.18-1.GA_redhat_00001.1.el7eap
  • H
Allocation of Resources Without Limits or Throttling

<0:7.4.18-1.GA_redhat_00001.1.el7eap
  • H
Resource Exhaustion

<0:7.4.18-1.GA_redhat_00001.1.el7eap
  • H
Resource Exhaustion

<0:7.4.14-5.GA_redhat_00002.1.el7eap
  • H
Resource Exhaustion

<0:7.4.16-4.GA_redhat_00002.1.el7eap
  • H
Truncation of Security-relevant Information

<0:7.4.16-4.GA_redhat_00002.1.el7eap
  • H
HTTP Request Smuggling

<0:7.4.16-4.GA_redhat_00002.1.el7eap
  • H
Improper Input Validation

<0:7.4.16-4.GA_redhat_00002.1.el7eap
  • M
Link Following

<0:7.4.15-2.GA_redhat_00002.1.el7eap
  • M
Information Exposure Through Log Files

<0:7.4.15-2.GA_redhat_00002.1.el7eap
  • H
Improper Initialization

<0:7.4.14-5.GA_redhat_00002.1.el7eap
  • H
Deserialization of Untrusted Data

<0:7.4.14-5.GA_redhat_00002.1.el7eap
  • H
Directory Traversal

<0:7.4.14-5.GA_redhat_00002.1.el7eap
  • H
Files or Directories Accessible to External Parties

<0:7.4.14-5.GA_redhat_00002.1.el7eap
  • H
Improper Validation of Syntactic Correctness of Input

<0:7.4.14-5.GA_redhat_00002.1.el7eap
  • H
Allocation of Resources Without Limits or Throttling

<0:7.4.14-5.GA_redhat_00002.1.el7eap
  • H
Resource Exhaustion

<0:7.4.13-10.GA_redhat_00002.1.el7eap
  • H
Information Exposure

<0:7.4.13-8.GA_redhat_00001.1.el7eap
  • H
Uncontrolled Memory Allocation

<0:7.4.13-8.GA_redhat_00001.1.el7eap
  • H
Uncontrolled Memory Allocation

<0:7.4.12-3.GA_redhat_00003.1.el7eap
  • H
Allocation of Resources Without Limits or Throttling

<0:7.4.13-8.GA_redhat_00001.1.el7eap
  • H
Inefficient Regular Expression Complexity

<0:7.4.13-8.GA_redhat_00001.1.el7eap
  • H
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')

<0:7.4.13-8.GA_redhat_00001.1.el7eap
  • H
Information Exposure

<0:7.4.13-8.GA_redhat_00001.1.el7eap
  • H
Resource Exhaustion

<0:7.4.12-3.GA_redhat_00003.1.el7eap
  • H
Cross-site Scripting (XSS)

<0:7.3.1-5.GA_redhat_00003.1.el7eap
  • H
Improper Input Validation

<0:7.2.7-4.GA_redhat_00004.1.el7eap
  • H
Improperly Implemented Security Check for Standard

<0:7.2.1-6.GA_redhat_00004.1.el7eap
  • H
Race Condition

<0:7.2.1-6.GA_redhat_00004.1.el7eap
  • H
Resource Exhaustion

<0:7.1.7-2.GA_redhat_00002.1.ep7.el7
  • H
Information Exposure Through Log Files

<0:7.2.4-1.GA_redhat_00002.1.el7eap
  • H
Deserialization of Untrusted Data

<0:7.2.4-1.GA_redhat_00002.1.el7eap
  • H
Allocation of Resources Without Limits or Throttling

<0:7.3.1-5.GA_redhat_00003.1.el7eap
  • H
Improper Input Validation

<0:7.1.7-2.GA_redhat_00002.1.ep7.el7
  • H
Improper Access Control

<0:7.2.8-3.GA_redhat_00002.1.el7eap
  • H
Incorrect Authorization

<0:7.3.1-5.GA_redhat_00003.1.el7eap
  • H
Privilege Context Switching Error

<0:7.3.1-5.GA_redhat_00003.1.el7eap
  • H
Resource Exhaustion

<0:7.3.1-5.GA_redhat_00003.1.el7eap
  • H
Cross-site Scripting (XSS)

<0:7.3.1-5.GA_redhat_00003.1.el7eap
  • H
Insufficiently Protected Credentials

<0:7.3.1-5.GA_redhat_00003.1.el7eap
  • M
Cross-site Scripting (XSS)

<0:7.2.2-2.GA_redhat_00001.1.el7eap
  • M
Cross-site Scripting (XSS)

<0:7.2.2-2.GA_redhat_00001.1.el7eap
  • M
Information Exposure

<0:7.3.6-1.GA_redhat_00002.1.el7eap
  • M
HTTP Request Smuggling

<0:7.3.6-1.GA_redhat_00002.1.el7eap
  • M
Resource Exhaustion

<0:7.3.6-1.GA_redhat_00002.1.el7eap
  • H
Information Exposure Through Server Error Message

<0:7.4.10-6.GA_redhat_00002.1.el7eap
  • M
Deserialization of Untrusted Data

<0:7.4.5-3.GA_redhat_00001.1.el7eap
  • M
Information Exposure

<0:7.3.10-2.GA_redhat_00003.1.el7eap
  • M
Information Exposure

<0:7.3.3-4.GA_redhat_00004.1.el7eap
  • M
Improper Authentication

<0:7.3.3-4.GA_redhat_00004.1.el7eap
  • M
Files or Directories Accessible to External Parties

<0:7.3.10-2.GA_redhat_00003.1.el7eap
  • H
Information Exposure

<0:7.3.9-2.GA_redhat_00002.1.el7eap
  • H
Improper Input Validation

<0:7.3.9-2.GA_redhat_00002.1.el7eap
  • M
Cross-site Scripting (XSS)

<0:7.3.8-1.GA_redhat_00001.1.el7eap
  • H
Memory Leak

<0:7.3.4-3.GA_redhat_00003.1.el7eap
  • H
Directory Traversal

<0:7.2.9-4.GA_redhat_00003.1.el7eap
  • H
Improper Authorization

<0:7.3.2-4.GA_redhat_00002.1.el7eap
  • H
Deserialization of Untrusted Data

<0:7.3.2-4.GA_redhat_00002.1.el7eap
  • H
Exposed Dangerous Method or Function

<0:7.3.2-4.GA_redhat_00002.1.el7eap
  • H
Session Fixation

<0:7.3.2-4.GA_redhat_00002.1.el7eap
  • H
HTTP Request Smuggling

<0:7.3.2-4.GA_redhat_00002.1.el7eap
  • H
Memory Leak

<0:7.3.5-2.GA_redhat_00001.1.el7eap
  • H
Memory Leak

<0:7.3.5-2.GA_redhat_00001.1.el7eap
  • H
Information Exposure

<0:7.3.5-2.GA_redhat_00001.1.el7eap
  • H
Directory Traversal

<0:7.3.1-5.GA_redhat_00003.1.el7eap
  • H
Selection of Less-Secure Algorithm During Negotiation ('Algorithm Downgrade')

<0:7.3.1-5.GA_redhat_00003.1.el7eap
  • M
Cleartext Transmission of Sensitive Information

<0:7.1.5-4.GA_redhat_00002.1.ep7.el7
  • H
Improper Input Validation

<0:7.1.4-1.GA_redhat_1.1.ep7.el7
  • H
CVE-2017-12189

<0:7.0.9-4.GA_redhat_3.1.ep7.el7
  • H
Directory Traversal

<0:7.1.1-4.GA_redhat_2.1.ep7.el7
  • H
Insufficient Verification of Data Authenticity

<0:7.0.9-4.GA_redhat_3.1.ep7.el7
  • H
HTTP Request Smuggling

<0:7.1.0-64.GA_redhat_11.1.ep7.el7
  • H
Incorrect Permission Assignment for Critical Resource

<0:7.1.0-64.GA_redhat_11.1.ep7.el7
  • H
HTTP Request Smuggling

<0:7.1.0-64.GA_redhat_11.1.ep7.el7
  • H
Information Exposure

<0:7.1.0-64.GA_redhat_11.1.ep7.el7
  • H
Improper Input Validation

<0:7.1.2-1.GA_redhat_1.1.ep7.el7
  • H
Uncontrolled Recursion

<0:7.4.12-3.GA_redhat_00003.1.el7eap
  • H
Information Exposure

<0:7.0.8-4.GA_redhat_1.1.ep7.el7
  • H
Out-of-Bounds

<0:7.1.0-64.GA_redhat_11.1.ep7.el7
  • H
Loop with Unreachable Exit Condition ('Infinite Loop')

<0:7.1.0-64.GA_redhat_11.1.ep7.el7
  • H
HTTP Request Smuggling

<0:7.1.0-64.GA_redhat_11.1.ep7.el7
  • H
Access Restriction Bypass

<0:7.1.0-64.GA_redhat_11.1.ep7.el7
  • H
Resource Exhaustion

<0:7.4.13-8.GA_redhat_00001.1.el7eap
  • H
Loop with Unreachable Exit Condition ('Infinite Loop')

<0:7.4.10-6.GA_redhat_00002.1.el7eap
  • M
Resource Exhaustion

<0:7.3.10-2.GA_redhat_00003.1.el7eap
  • H
Race Condition

<0:7.3.9-2.GA_redhat_00002.1.el7eap
  • H
Resource Exhaustion

<0:7.3.5-2.GA_redhat_00001.1.el7eap
  • H
Improper Authorization

<0:7.1.7-2.GA_redhat_00002.1.ep7.el7
  • H
Memory Leak

<0:7.3.9-2.GA_redhat_00002.1.el7eap
  • M
Resource Exhaustion

<0:7.4.2-2.GA_redhat_00002.1.el7eap
  • H
Improper Input Validation

<0:7.3.2-4.GA_redhat_00002.1.el7eap
  • H
Cross-site Scripting (XSS)

<0:7.2.6-5.GA_redhat_00001.1.el7eap
  • H
XML External Entity (XXE) Injection

<0:7.3.1-5.GA_redhat_00003.1.el7eap
  • M
Improper Authentication

<0:7.3.6-1.GA_redhat_00002.1.el7eap
  • H
SQL Injection

<0:7.3.2-4.GA_redhat_00002.1.el7eap
  • M
Information Exposure

<0:7.1.6-4.GA_redhat_00002.1.ep7.el7
  • M
Information Exposure Through Log Files

<0:7.2.2-2.GA_redhat_00001.1.el7eap
  • H
Uncaught Exception

<0:7.1.3-4.GA_redhat_3.1.ep7.el7
  • H
Directory Traversal

<0:7.1.3-4.GA_redhat_3.1.ep7.el7
  • H
Missing Required Cryptographic Step

<0:7.1.4-1.GA_redhat_1.1.ep7.el7
  • H
Covert Timing Channel

<0:7.0.8-4.GA_redhat_1.1.ep7.el7
  • H
Deserialization of Untrusted Data

<0:7.1.1-4.GA_redhat_2.1.ep7.el7
  • H
Improper Authentication

<0:7.1.1-4.GA_redhat_2.1.ep7.el7
  • H
Resource Exhaustion

<0:7.1.0-64.GA_redhat_11.1.ep7.el7
  • H
Out-of-bounds Read

<0:7.3.1-5.GA_redhat_00003.1.el7eap
  • M
Improper Input Validation

<0:7.1.3-2.GA_redhat_2.1.ep7.el7
  • H
Deserialization of Untrusted Data

<0:7.1.1-4.GA_redhat_2.1.ep7.el7
  • H
Deserialization of Untrusted Data

<0:7.1.0-64.GA_redhat_11.1.ep7.el7
  • H
Information Exposure Through Log Files

<0:7.2.6-5.GA_redhat_00001.1.el7eap
  • H
Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection')

<0:7.1.0-64.GA_redhat_11.1.ep7.el7
  • M
Cross-site Scripting (XSS)

<0:7.1.6-4.GA_redhat_00002.1.ep7.el7
  • H
Improper Input Validation

<0:7.1.0-64.GA_redhat_11.1.ep7.el7
  • H
Improper Input Validation

<0:7.1.1-4.GA_redhat_2.1.ep7.el7
  • H
Improper Access Control

<0:7.1.0-64.GA_redhat_11.1.ep7.el7
  • H
Resource Exhaustion

<0:7.1.0-64.GA_redhat_11.1.ep7.el7
  • H
Information Exposure

<0:7.1.0-64.GA_redhat_11.1.ep7.el7
  • H
Directory Traversal

<0:7.1.0-64.GA_redhat_11.1.ep7.el7
  • H
Missing Authorization

<0:7.2.4-1.GA_redhat_00002.1.el7eap
  • H
Authentication Bypass

<0:7.2.5-4.GA_redhat_00002.1.el7eap
  • M
Improper Access Control

<0:7.2.4-2.SP1_redhat_00001.1.el7eap
  • M
Information Exposure

<0:7.3.10-2.GA_redhat_00003.1.el7eap
  • H
Arbitrary Code Injection

<0:7.3.2-4.GA_redhat_00002.1.el7eap
  • H
Deserialization of Untrusted Data

<0:7.1.1-4.GA_redhat_2.1.ep7.el7
  • H
Resource Exhaustion

<0:7.3.1-5.GA_redhat_00003.1.el7eap
  • M
Information Exposure

<0:7.2.0-31.GA_redhat_00005.1.el7eap
  • M
Resource Exhaustion

<0:7.4.5-3.GA_redhat_00001.1.el7eap
  • M
Unchecked Return Value

<0:7.4.5-3.GA_redhat_00001.1.el7eap
  • M
Incorrect Authorization

<0:7.4.5-3.GA_redhat_00001.1.el7eap
  • M
Memory Leak

<0:7.4.5-3.GA_redhat_00001.1.el7eap
  • M
Allocation of Resources Without Limits or Throttling

<0:7.4.5-3.GA_redhat_00001.1.el7eap
  • M
Deserialization of Untrusted Data

<0:7.4.5-3.GA_redhat_00001.1.el7eap
  • H
Information Exposure

<0:7.4.10-6.GA_redhat_00002.1.el7eap
  • H
SQL Injection

<0:7.3.4-3.GA_redhat_00003.1.el7eap
  • M
Improper Input Validation

<0:7.3.3-4.GA_redhat_00004.1.el7eap
  • H
HTTP Request Smuggling

<0:7.2.7-4.GA_redhat_00004.1.el7eap
  • H
HTTP Request Smuggling

<0:7.1.7-2.GA_redhat_00002.1.ep7.el7
  • H
HTTP Request Smuggling

<0:7.1.7-2.GA_redhat_00002.1.ep7.el7
  • H
HTTP Request Smuggling

<0:7.1.7-2.GA_redhat_00002.1.ep7.el7
  • H
HTTP Request Smuggling

<0:7.3.1-5.GA_redhat_00003.1.el7eap
  • H
Improper Resource Shutdown or Release

<0:7.3.2-4.GA_redhat_00002.1.el7eap
  • H
Resource Exhaustion

<0:7.3.2-4.GA_redhat_00002.1.el7eap
  • M
HTTP Request Smuggling

<0:7.3.8-1.GA_redhat_00001.1.el7eap
  • H
HTTP Request Smuggling

<0:7.4.1-2.GA_redhat_00003.1.el7eap
  • M
Information Exposure

<0:7.3.7-1.GA_redhat_00002.1.el7eap
  • H
Uncontrolled Recursion

<0:7.4.10-6.GA_redhat_00002.1.el7eap
  • H
Out-of-Bounds

<0:7.3.2-4.GA_redhat_00002.1.el7eap
  • M
Resource Exhaustion

<0:7.3.3-4.GA_redhat_00004.1.el7eap
  • M
HTTP Request Smuggling

<0:7.4.5-3.GA_redhat_00001.1.el7eap
  • M
Resource Exhaustion

<0:7.4.5-3.GA_redhat_00001.1.el7eap
  • M
Resource Exhaustion

<0:7.4.5-3.GA_redhat_00001.1.el7eap
  • H
Incomplete Blacklist

<0:7.1.1-4.GA_redhat_2.1.ep7.el7
  • H
Creation of Temporary File With Insecure Permissions

<0:7.4.10-6.GA_redhat_00002.1.el7eap
  • H
Out-of-bounds Write

<0:7.4.10-6.GA_redhat_00002.1.el7eap
  • H
Improper Input Validation

<0:7.4.10-6.GA_redhat_00002.1.el7eap
  • H
Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection')

<0:7.4.10-6.GA_redhat_00002.1.el7eap
  • H
Out-of-bounds Write

<0:7.4.10-6.GA_redhat_00002.1.el7eap
  • M
Directory Traversal

<0:7.4.5-3.GA_redhat_00001.1.el7eap
  • M
Resource Exhaustion

<0:7.4.5-3.GA_redhat_00001.1.el7eap
  • M
Improper Handling of Insufficient Permissions or Privileges

<0:7.4.5-3.GA_redhat_00001.1.el7eap
  • M
Loop with Unreachable Exit Condition ('Infinite Loop')

<0:7.4.5-3.GA_redhat_00001.1.el7eap
  • M
Loop with Unreachable Exit Condition ('Infinite Loop')

<0:7.4.5-3.GA_redhat_00001.1.el7eap
  • M
Improper Input Validation

<0:7.0.6-4.GA_redhat_2.1.ep7.el7
  • H
HTTP Response Splitting

<0:7.1.0-64.GA_redhat_11.1.ep7.el7
  • H
Cross-site Request Forgery (CSRF)

<0:7.2.1-6.GA_redhat_00004.1.el7eap
  • H
Deserialization of Untrusted Data

<0:7.2.1-6.GA_redhat_00004.1.el7eap
  • H
Deserialization of Untrusted Data

<0:7.2.1-6.GA_redhat_00004.1.el7eap
  • H
Deserialization of Untrusted Data

<0:7.2.1-6.GA_redhat_00004.1.el7eap
  • H
Deserialization of Untrusted Data

<0:7.2.1-6.GA_redhat_00004.1.el7eap
  • H
HTTP Response Splitting

<0:7.1.2-1.GA_redhat_1.1.ep7.el7
  • M
Resource Exhaustion

<0:7.3.10-2.GA_redhat_00003.1.el7eap
  • H
CVE-2015-0254

<0:7.0.2-2.GA_redhat_1.1.ep7.el7
  • H
Improper Input Validation

<0:7.1.7-2.GA_redhat_00002.1.ep7.el7
  • H
Static Code Injection

<0:7.3.2-4.GA_redhat_00002.1.el7eap
  • H
Deserialization of Untrusted Data

<0:7.2.6-5.GA_redhat_00001.1.el7eap
  • H
Deserialization of Untrusted Data

<0:7.2.6-5.GA_redhat_00001.1.el7eap
  • H
Deserialization of Untrusted Data

<0:7.2.6-5.GA_redhat_00001.1.el7eap
  • H
Static Code Injection

<0:7.3.2-4.GA_redhat_00002.1.el7eap
  • H
Deserialization of Untrusted Data

<0:7.2.6-5.GA_redhat_00001.1.el7eap
  • H
Improper Input Validation

<0:7.2.9-4.GA_redhat_00003.1.el7eap
  • H
XML External Entity (XXE) Injection

<0:7.3.2-4.GA_redhat_00002.1.el7eap
  • H
Deserialization of Untrusted Data

<0:7.1.2-1.GA_redhat_1.1.ep7.el7
  • H
Resource Exhaustion

<0:7.2.5-4.GA_redhat_00002.1.el7eap
  • H
Resource Exhaustion

<0:7.2.5-4.GA_redhat_00002.1.el7eap
  • H
Resource Exhaustion

<0:7.2.5-4.GA_redhat_00002.1.el7eap
  • H
Resource Exhaustion

<0:7.2.5-4.GA_redhat_00002.1.el7eap
  • H
Deserialization of Untrusted Data

<0:7.2.4-1.GA_redhat_00002.1.el7eap
  • M
Arbitrary Argument Injection

<0:7.1.6-4.GA_redhat_00002.1.ep7.el7
  • H
Out-of-Bounds

<0:7.1.4-1.GA_redhat_1.1.ep7.el7
  • H
Deserialization of Untrusted Data

<0:7.0.8-4.GA_redhat_1.1.ep7.el7
  • H
Deserialization of Untrusted Data

<0:7.2.4-1.GA_redhat_00002.1.el7eap
  • H
Deserialization of Untrusted Data

<0:7.2.4-1.GA_redhat_00002.1.el7eap
  • H
Improper Neutralization of Special Elements

<0:7.0.9-4.GA_redhat_3.1.ep7.el7
  • H
Directory Traversal

<0:7.3.9-2.GA_redhat_00002.1.el7eap
  • H
CVE-2016-6346

<0:7.0.9-4.GA_redhat_3.1.ep7.el7
  • M
Information Exposure

<0:7.3.10-2.GA_redhat_00003.1.el7eap
  • H
Deserialization of Untrusted Data

<0:7.2.9-4.GA_redhat_00003.1.el7eap
  • H
Deserialization of Untrusted Data

<0:7.2.9-4.GA_redhat_00003.1.el7eap
  • H
Deserialization of Untrusted Data

<0:7.2.9-4.GA_redhat_00003.1.el7eap
  • M
Incorrect Default Permissions

<0:7.3.6-1.GA_redhat_00002.1.el7eap
  • H
Deserialization of Untrusted Data

<0:7.2.9-4.GA_redhat_00003.1.el7eap
  • H
Information Exposure

<0:7.3.5-2.GA_redhat_00001.1.el7eap
  • H
XML External Entity (XXE) Injection

<0:7.3.4-3.GA_redhat_00003.1.el7eap
  • H
Improper Input Validation

<0:7.3.5-2.GA_redhat_00001.1.el7eap
  • H
Arbitrary Command Injection

<0:7.4.1-2.GA_redhat_00003.1.el7eap
  • H
Deserialization of Untrusted Data

<0:7.2.6-5.GA_redhat_00001.1.el7eap
  • H
Deserialization of Untrusted Data

<0:7.2.6-5.GA_redhat_00001.1.el7eap
  • H
Deserialization of Untrusted Data

<0:7.2.6-5.GA_redhat_00001.1.el7eap
  • H
Deserialization of Untrusted Data

<0:7.2.4-1.GA_redhat_00002.1.el7eap
  • H
Deserialization of Untrusted Data

<0:7.1.7-2.GA_redhat_00002.1.ep7.el7
  • M
Resource Exhaustion

<0:7.1.3-2.GA_redhat_2.1.ep7.el7