eap7-wildfly-elytron-tool vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the eap7-wildfly-elytron-tool package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free

Vulnerability	Vulnerable Version
H Directory Traversal	<0:1.15.22-1.Final_redhat_00001.1.el9eap
H Server-Side Request Forgery (SSRF)	<0:1.15.23-2.Final_redhat_00001.1.el9eap
H Server-Side Request Forgery (SSRF)	<0:1.15.23-2.Final_redhat_00001.1.el9eap
H Cross-site Scripting (XSS)	<0:1.15.23-2.Final_redhat_00001.1.el9eap
H Resource Exhaustion	<0:1.15.22-1.Final_redhat_00001.1.el9eap
H Truncation of Security-relevant Information	<0:1.15.22-1.Final_redhat_00001.1.el9eap
H HTTP Request Smuggling	<0:1.15.22-1.Final_redhat_00001.1.el9eap
H Improper Input Validation	<0:1.15.22-1.Final_redhat_00001.1.el9eap
M Link Following	<0:1.15.21-1.Final_redhat_00001.1.el9eap
M Information Exposure Through Log Files	<0:1.15.21-1.Final_redhat_00001.1.el9eap
H Information Exposure	<0:1.15.20-1.Final_redhat_00001.1.el9eap
H Uncontrolled Memory Allocation	<0:1.15.20-1.Final_redhat_00001.1.el9eap
H Allocation of Resources Without Limits or Throttling	<0:1.15.20-1.Final_redhat_00001.1.el9eap
H Inefficient Regular Expression Complexity	<0:1.15.20-1.Final_redhat_00001.1.el9eap
H Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')	<0:1.15.20-1.Final_redhat_00001.1.el9eap
H Information Exposure	<0:1.15.20-1.Final_redhat_00001.1.el9eap
H Information Exposure	<0:1.15.16-1.Final_redhat_00001.1.el9eap
H Resource Exhaustion	<0:1.15.16-1.Final_redhat_00001.1.el9eap
H Resource Exhaustion	<0:1.15.20-1.Final_redhat_00001.1.el9eap
H Server-Side Request Forgery (SSRF)	<0:1.15.16-1.Final_redhat_00001.1.el9eap
H Deserialization of Untrusted Data	<0:1.15.16-1.Final_redhat_00001.1.el9eap
M Deserialization of Untrusted Data	<0:1.15.13-1.Final_redhat_00001.1.el9eap
M Creation of Temporary File With Insecure Permissions	<0:1.15.13-1.Final_redhat_00001.1.el9eap
H Out-of-bounds Write	<0:1.15.16-1.Final_redhat_00001.1.el9eap
H Stack-based Buffer Overflow	<0:1.15.16-1.Final_redhat_00001.1.el9eap
H Resource Exhaustion	<0:1.15.16-1.Final_redhat_00001.1.el9eap
H Deserialization of Untrusted Data	<0:1.15.16-1.Final_redhat_00001.1.el9eap
H Deserialization of Untrusted Data	<0:1.15.16-1.Final_redhat_00001.1.el9eap
H Out-of-bounds Write	<0:1.15.16-1.Final_redhat_00001.1.el9eap
M Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')	<0:1.15.13-1.Final_redhat_00001.1.el9eap
H Cross-site Scripting (XSS)	<0:1.15.16-1.Final_redhat_00001.1.el9eap
H Cross-site Scripting (XSS)	<0:1.15.16-1.Final_redhat_00001.1.el9eap
H Cross-site Scripting (XSS)	<0:1.15.16-1.Final_redhat_00001.1.el9eap
H Cross-site Scripting (XSS)	<0:1.15.16-1.Final_redhat_00001.1.el9eap
H Cross-site Scripting (XSS)	<0:1.15.16-1.Final_redhat_00001.1.el9eap
H Cross-site Scripting (XSS)	<0:1.15.16-1.Final_redhat_00001.1.el9eap
H Cross-site Scripting (XSS)	<0:1.15.16-1.Final_redhat_00001.1.el9eap
H Cross-site Scripting (XSS)	<0:1.15.16-1.Final_redhat_00001.1.el9eap
H Cross-site Scripting (XSS)	<0:1.15.16-1.Final_redhat_00001.1.el9eap

Vulnerability

Vulnerable Version

Directory Traversal

<0:1.15.22-1.Final_redhat_00001.1.el9eap

Server-Side Request Forgery (SSRF)

<0:1.15.23-2.Final_redhat_00001.1.el9eap

Server-Side Request Forgery (SSRF)

<0:1.15.23-2.Final_redhat_00001.1.el9eap

Cross-site Scripting (XSS)

<0:1.15.23-2.Final_redhat_00001.1.el9eap

Resource Exhaustion

<0:1.15.22-1.Final_redhat_00001.1.el9eap