eap7-wildfly-web-console-eap vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the eap7-wildfly-web-console-eap package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free

Vulnerability	Vulnerable Version
H Improper Input Validation	<0:2.9.18-1.Final_redhat_1.1.ep7.el7
H HTTP Request Smuggling	<0:2.9.15-2.Final_redhat_1.1.ep7.el7
H Incorrect Permission Assignment for Critical Resource	<0:2.9.15-2.Final_redhat_1.1.ep7.el7
H HTTP Request Smuggling	<0:2.9.15-2.Final_redhat_1.1.ep7.el7
H Information Exposure	<0:2.9.15-2.Final_redhat_1.1.ep7.el7
H Improper Input Validation	<0:2.9.16-2.Final_redhat_1.2.ep7.el7
H Out-of-Bounds	<0:2.9.15-2.Final_redhat_1.1.ep7.el7
H Loop with Unreachable Exit Condition ('Infinite Loop')	<0:2.9.15-2.Final_redhat_1.1.ep7.el7
H HTTP Request Smuggling	<0:2.9.15-2.Final_redhat_1.1.ep7.el7
H Access Restriction Bypass	<0:2.9.15-2.Final_redhat_1.1.ep7.el7
M Information Exposure	<0:2.9.19-1.Final_redhat_00001.1.ep7.el7
H Uncaught Exception	<0:2.9.18-1.Final_redhat_1.1.ep7.el7
H Directory Traversal	<0:2.9.18-1.Final_redhat_1.1.ep7.el7
H Missing Required Cryptographic Step	<0:2.9.18-1.Final_redhat_1.1.ep7.el7
H Resource Exhaustion	<0:2.9.15-2.Final_redhat_1.1.ep7.el7
M Improper Input Validation	<0:2.9.17-1.Final_redhat_1.1.ep7.el7
H Deserialization of Untrusted Data	<0:2.9.15-2.Final_redhat_1.1.ep7.el7
H Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection')	<0:2.9.15-2.Final_redhat_1.1.ep7.el7
M Cross-site Scripting (XSS)	<0:2.9.19-1.Final_redhat_00001.1.ep7.el7
H Improper Input Validation	<0:2.9.15-2.Final_redhat_1.1.ep7.el7
H Improper Access Control	<0:2.9.15-2.Final_redhat_1.1.ep7.el7
H Resource Exhaustion	<0:2.9.15-2.Final_redhat_1.1.ep7.el7
H Information Exposure	<0:2.9.15-2.Final_redhat_1.1.ep7.el7
H Directory Traversal	<0:2.9.15-2.Final_redhat_1.1.ep7.el7
H HTTP Response Splitting	<0:2.9.15-2.Final_redhat_1.1.ep7.el7
H HTTP Response Splitting	<0:2.9.16-2.Final_redhat_1.2.ep7.el7
H CVE-2015-0254	<0:2.8.27-1.Final_redhat_1.1.ep7.el7
H Deserialization of Untrusted Data	<0:2.9.16-2.Final_redhat_1.2.ep7.el7
M Arbitrary Argument Injection	<0:2.9.19-1.Final_redhat_00001.1.ep7.el7
H Out-of-Bounds	<0:2.9.18-1.Final_redhat_1.1.ep7.el7
M Resource Exhaustion	<0:2.9.17-1.Final_redhat_1.1.ep7.el7

Vulnerability

Vulnerable Version

Improper Input Validation

<0:2.9.18-1.Final_redhat_1.1.ep7.el7

HTTP Request Smuggling

<0:2.9.15-2.Final_redhat_1.1.ep7.el7

Incorrect Permission Assignment for Critical Resource

<0:2.9.15-2.Final_redhat_1.1.ep7.el7

HTTP Request Smuggling

<0:2.9.15-2.Final_redhat_1.1.ep7.el7

Information Exposure

<0:2.9.15-2.Final_redhat_1.1.ep7.el7