jbcs-httpd24-openssl-static vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the jbcs-httpd24-openssl-static package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free

Vulnerability	Vulnerable Version
M Cross-site Scripting (XSS)	<1:1.1.1k-17.el8jbcs
M Missing Required Cryptographic Step	<1:1.1.1k-17.el8jbcs
M Missing Encryption of Sensitive Data	<1:1.1.1k-17.el8jbcs
M Information Exposure	<1:1.1.1k-17.el8jbcs
M Out-of-bounds Read	<1:1.1.1k-17.el8jbcs
H Resource Exhaustion	<1:1.1.1k-16.el8jbcs
H Information Exposure	<1:1.1.1k-16.el8jbcs
H External Control of File Name or Path	<1:1.1.1k-16.el8jbcs
H Out-of-Bounds	<1:1.1.1k-16.el8jbcs
H Excessive Iteration	<1:1.1.1k-16.el8jbcs
H Allocation of Resources Without Limits or Throttling	<1:1.1.1k-16.el8jbcs
H Resource Exhaustion	<1:1.1.1k-16.el8jbcs
H Resource Exhaustion	<1:1.1.1k-16.el8jbcs
H Improper Certificate Validation	<1:1.1.1k-16.el8jbcs
H Improper Certificate Validation	<1:1.1.1k-16.el8jbcs
H Resource Exhaustion	<1:1.1.1k-16.el8jbcs
H Special Element Injection	<1:1.1.1k-14.el8jbcs
H Directory Traversal	<1:1.1.1k-14.el8jbcs
H HTTP Response Splitting	<1:1.1.1k-14.el8jbcs
H Cleartext Transmission of Sensitive Information	<1:1.1.1k-14.el8jbcs
H Cleartext Transmission of Sensitive Information	<1:1.1.1k-14.el8jbcs
H Allocation of Resources Without Limits or Throttling	<1:1.1.1k-14.el8jbcs
H Integer Overflow or Wraparound	<1:1.1.1k-14.el8jbcs
H Incorrect Type Conversion or Cast	<1:1.1.1k-14.el8jbcs
H Use After Free	<1:1.1.1k-14.el8jbcs
H Double Free	<1:1.1.1k-14.el8jbcs
H Information Exposure	<1:1.1.1k-14.el8jbcs
H Out-of-bounds Read	<1:1.1.1k-14.el8jbcs
H Cleartext Transmission of Sensitive Information	<1:1.1.1k-14.el8jbcs
H Use After Free	<1:1.1.1k-14.el8jbcs
M Cleartext Transmission of Sensitive Information	<1:1.1.1k-13.el8jbcs
M Double Free	<1:1.1.1k-13.el8jbcs
M Expected Behavior Violation	<1:1.1.1k-13.el8jbcs
M Improper Validation of Syntactic Correctness of Input	<1:1.1.1k-13.el8jbcs
M Improper Enforcement of Message Integrity During Transmission in a Communication Channel	<1:1.1.1k-13.el8jbcs
M Allocation of Resources Without Limits or Throttling	<1:1.1.1k-13.el8jbcs
M Improper Preservation of Permissions	<1:1.1.1k-13.el8jbcs
M Arbitrary Command Injection	<1:1.1.1k-13.el8jbcs
M Insufficient Verification of Data Authenticity	<1:1.1.1k-13.el8jbcs
M Allocation of Resources Without Limits or Throttling	<1:1.1.1k-13.el8jbcs
M Integer Overflow or Wraparound	<1:1.1.1k-13.el8jbcs
M Integer Overflow or Wraparound	<1:1.1.1k-13.el8jbcs
M HTTP Request Smuggling	<1:1.1.1k-13.el8jbcs
M Loop with Unreachable Exit Condition ('Infinite Loop')	<1:1.1.1k-13.el8jbcs
M Arbitrary Command Injection	<1:1.1.1k-13.el8jbcs
M Integer Overflow or Wraparound	<1:1.1.1k-13.el8jbcs
H HTTP Request Smuggling	<1:1.1.1g-11.el8jbcs
M Integer Overflow or Wraparound	<1:1.1.1k-13.el8jbcs
H Loop with Unreachable Exit Condition ('Infinite Loop')	<1:1.1.1g-11.el8jbcs
H Use After Free	<1:1.1.1g-11.el8jbcs
H Authentication Bypass	<1:1.1.1g-6.el8jbcs
H Use After Free	<1:1.1.1g-6.el8jbcs
H Information Exposure	<1:1.1.1g-6.el8jbcs
M NULL Pointer Dereference	<1:1.1.1g-8.el8jbcs
M Information Exposure	<1:1.1.1g-8.el8jbcs
M NULL Pointer Dereference	<1:1.1.1g-8.el8jbcs
M Out-of-bounds Read	<1:1.1.1g-8.el8jbcs
H Improper Certificate Validation	<1:1.1.1g-6.el8jbcs
H Resource Exhaustion	<1:1.1.1g-11.el8jbcs
H NULL Pointer Dereference	<1:1.1.1g-11.el8jbcs
H Out-of-bounds Write	<1:1.1.1g-11.el8jbcs
H Use After Free	<1:1.1.1g-11.el8jbcs
H Use After Free	<1:1.1.1g-11.el8jbcs
H Uncontrolled Recursion	<1:1.1.1g-6.el8jbcs
H Information Exposure	<1:1.1.1g-6.el8jbcs
M Improper Input Validation	<1:1.1.1g-8.el8jbcs
M Integer Overflow or Wraparound	<1:1.1.1g-8.el8jbcs
M Out-of-Bounds	<1:1.1.1g-8.el8jbcs
M NULL Pointer Dereference	<1:1.1.1g-8.el8jbcs
M NULL Pointer Dereference	<1:1.1.1g-8.el8jbcs
H Information Exposure	<1:1.1.1g-6.el8jbcs
M Out-of-Bounds	<1:1.1.1g-8.el8jbcs
M Integer Overflow or Wraparound	<1:1.1.1g-8.el8jbcs
M Out-of-bounds Read	<1:1.1.1g-8.el8jbcs
M Improper Authentication	<1:1.1.1g-8.el8jbcs

Vulnerability

Vulnerable Version

Cross-site Scripting (XSS)

<1:1.1.1k-17.el8jbcs

Missing Required Cryptographic Step

<1:1.1.1k-17.el8jbcs

Missing Encryption of Sensitive Data

<1:1.1.1k-17.el8jbcs

Information Exposure

<1:1.1.1k-17.el8jbcs

Out-of-bounds Read

<1:1.1.1k-17.el8jbcs