eap7-mod_cluster vulnerabilities

Known vulnerabilities in the eap7-mod_cluster package. This does not include vulnerabilities belonging to this package’s dependencies.

Vulnerability	Vulnerable Version
H Information Exposure	<0:1.4.5-1.Final_redhat_00001.1.el8eap
H Uncontrolled Memory Allocation	<0:1.4.5-1.Final_redhat_00001.1.el8eap
H Allocation of Resources Without Limits or Throttling	<0:1.4.5-1.Final_redhat_00001.1.el8eap
H Inefficient Regular Expression Complexity	<0:1.4.5-1.Final_redhat_00001.1.el8eap
H Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')	<0:1.4.5-1.Final_redhat_00001.1.el8eap
H Information Exposure	<0:1.4.5-1.Final_redhat_00001.1.el8eap
H Allocation of Resources Without Limits or Throttling	<0:1.4.1-1.Final_redhat_00001.1.el8eap
H Improper Input Validation	<0:1.4.1-1.Final_redhat_00001.1.el8eap
H Improper Access Control	<0:1.4.1-1.Final_redhat_00001.1.el8eap
H Incorrect Authorization	<0:1.4.1-1.Final_redhat_00001.1.el8eap
H Privilege Context Switching Error	<0:1.4.1-1.Final_redhat_00001.1.el8eap
H Resource Exhaustion	<0:1.4.1-1.Final_redhat_00001.1.el8eap
H Cross-site Scripting (XSS)	<0:1.4.1-1.Final_redhat_00001.1.el8eap
H Insufficiently Protected Credentials	<0:1.4.1-1.Final_redhat_00001.1.el8eap
H Resource Exhaustion	<0:1.4.5-1.Final_redhat_00001.1.el8eap
H Improper Authorization	<0:1.4.1-1.Final_redhat_00001.1.el8eap
H XML External Entity (XXE) Injection	<0:1.4.1-1.Final_redhat_00001.1.el8eap
H HTTP Request Smuggling	<0:1.4.1-1.Final_redhat_00001.1.el8eap
M HTTP Request Smuggling	<0:1.4.3-2.Final_redhat_00002.1.el8eap
M Information Exposure	<0:1.4.3-2.Final_redhat_00002.1.el8eap
M Arbitrary Command Injection	<0:1.4.3-2.Final_redhat_00002.1.el8eap

Vulnerability

Vulnerable Version

Information Exposure