eap7-wildfly-openssl-java vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the eap7-wildfly-openssl-java package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free

Vulnerability	Vulnerable Version
H Improper Input Validation	<0:1.0.9-2.SP03_redhat_00001.1.el7eap
H Memory Leak	<0:1.0.12-1.Final_redhat_00001.1.el7eap
H Selection of Less-Secure Algorithm During Negotiation ('Algorithm Downgrade')	<0:1.0.9-2.SP03_redhat_00001.1.el7eap
M Cleartext Transmission of Sensitive Information	<0:1.0.6-2.Final_redhat_2.1.ep7.el7
H HTTP Request Smuggling	<0:1.0.2-1.Final_redhat_1.1.ep7.el7
H Incorrect Permission Assignment for Critical Resource	<0:1.0.2-1.Final_redhat_1.1.ep7.el7
H HTTP Request Smuggling	<0:1.0.2-1.Final_redhat_1.1.ep7.el7
H Information Exposure	<0:1.0.2-1.Final_redhat_1.1.ep7.el7
H Out-of-Bounds	<0:1.0.2-1.Final_redhat_1.1.ep7.el7
H Loop with Unreachable Exit Condition ('Infinite Loop')	<0:1.0.2-1.Final_redhat_1.1.ep7.el7
H HTTP Request Smuggling	<0:1.0.2-1.Final_redhat_1.1.ep7.el7
H Access Restriction Bypass	<0:1.0.2-1.Final_redhat_1.1.ep7.el7
H Improper Authorization	<0:1.0.9-2.SP03_redhat_00001.1.el7eap
H Resource Exhaustion	<0:1.0.2-1.Final_redhat_1.1.ep7.el7
H Out-of-bounds Read	<0:1.0.9-2.SP03_redhat_00001.1.el7eap
M Improper Input Validation	<0:1.0.6-1.Final_redhat_1.1.ep7.el7
H Deserialization of Untrusted Data	<0:1.0.2-1.Final_redhat_1.1.ep7.el7
H Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection')	<0:1.0.2-1.Final_redhat_1.1.ep7.el7
H Improper Input Validation	<0:1.0.2-1.Final_redhat_1.1.ep7.el7
H Improper Access Control	<0:1.0.2-1.Final_redhat_1.1.ep7.el7
H Resource Exhaustion	<0:1.0.2-1.Final_redhat_1.1.ep7.el7
H Information Exposure	<0:1.0.2-1.Final_redhat_1.1.ep7.el7
H Directory Traversal	<0:1.0.2-1.Final_redhat_1.1.ep7.el7
H Authentication Bypass	<0:1.0.8-1.Final_redhat_00001.1.el7eap
H Improper Access Control	<0:1.0.8-1.Final_redhat_00001.1.el7eap
H Resource Exhaustion	<0:1.0.9-2.SP03_redhat_00001.1.el7eap
M Information Exposure	<0:1.0.6-3.Final_redhat_2.1.el7eap
H SQL Injection	<0:1.0.12-1.Final_redhat_00001.1.el7eap
H HTTP Request Smuggling	<0:1.0.9-2.SP03_redhat_00001.1.el7eap
H HTTP Request Smuggling	<0:1.0.9-2.SP03_redhat_00001.1.el7eap
H HTTP Request Smuggling	<0:1.0.9-2.SP03_redhat_00001.1.el7eap
H HTTP Response Splitting	<0:1.0.2-1.Final_redhat_1.1.ep7.el7
H Resource Exhaustion	<0:1.0.8-1.Final_redhat_00001.1.el7eap
H Resource Exhaustion	<0:1.0.8-1.Final_redhat_00001.1.el7eap
H Resource Exhaustion	<0:1.0.8-1.Final_redhat_00001.1.el7eap
H Resource Exhaustion	<0:1.0.8-1.Final_redhat_00001.1.el7eap
H XML External Entity (XXE) Injection	<0:1.0.12-1.Final_redhat_00001.1.el7eap
H Deserialization of Untrusted Data	<0:1.0.9-2.SP03_redhat_00001.1.el7eap
M Resource Exhaustion	<0:1.0.6-1.Final_redhat_1.1.ep7.el7

Vulnerability

Vulnerable Version

Improper Input Validation

<0:1.0.9-2.SP03_redhat_00001.1.el7eap

Memory Leak

<0:1.0.12-1.Final_redhat_00001.1.el7eap

Selection of Less-Secure Algorithm During Negotiation ('Algorithm Downgrade')

<0:1.0.9-2.SP03_redhat_00001.1.el7eap

Cleartext Transmission of Sensitive Information

<0:1.0.6-2.Final_redhat_2.1.ep7.el7

HTTP Request Smuggling

<0:1.0.2-1.Final_redhat_1.1.ep7.el7