Lucene search
GoogleOSV:GHSA-57Q5-X8JF-G7H8HistoryMay 13, 2022 - 1:47 a.m.
Inconsistent Interpretation of HTTP Requests in Red Hat JBoss EAP
2022-05-1301:47:01
Google
osv.dev
14
red hat
jboss eap
http requests
vulnerability
server-side
cache poisoning
cors
jax-rs
moderate impact
EPSS
0.007
Percentile
79.6%
Red Hat JBoss EAP version 3.0.7.Final until 3.0.25.Final, 3.5.0.CR1, and 4.0.0.Beta1 is vulnerable to a server-side cache poisoning or CORS requests in the JAX-RS component resulting in a moderate impact.
References
access.redhat.com/errata/RHSA-2018:0002
access.redhat.com/errata/RHSA-2018:0003
access.redhat.com/errata/RHSA-2018:0004
access.redhat.com/errata/RHSA-2018:0005
access.redhat.com/errata/RHSA-2018:0478
access.redhat.com/errata/RHSA-2018:0479
access.redhat.com/errata/RHSA-2018:0480
access.redhat.com/errata/RHSA-2018:0481
issues.jboss.org/browse/RESTEASY-1704
nvd.nist.gov/vuln/detail/CVE-2017-7561
Related
debiancve
debiancve
CVE-2017-7561
2017-09-13 17:29:00
prion
prion
Design/Logic Flaw
2017-09-13 17:29:00
cvelist
cvelist
CVE-2017-7561
2017-08-22 00:00:00
github
github
Inconsistent Interpretation of HTTP Requests in Red Hat JBoss EAP
2022-05-13 01:47:01
ubuntucve
ubuntucve
CVE-2017-7561
2017-09-13 00:00:00
cve
cve
CVE-2017-7561
2017-09-13 17:29:00
veracode
veracode
Cache Poisoning
2017-08-23 03:18:41
redhatcve
redhatcve
CVE-2017-7561
2019-10-26 00:44:28
nvd
nvd
CVE-2017-7561
2017-09-13 17:29:00
redhat
redhat
(RHSA-2018:0003) Important: Red Hat JBoss Enterprise Application Platform 7.0.9 security update
2018-01-03 10:19:39
(RHSA-2018:0004) Important: Red Hat JBoss Enterprise Application Platform 7.0.9 security update on RHEL 7
2018-01-03 10:20:14
(RHSA-2018:0005) Important: eap7-jboss-ec2-eap security update
2018-01-03 10:33:56
nessus
nessus
RHEL 6 : JBoss Enterprise Application Platform 7.1.1 on RHEL 6 (Important) (RHSA-2018:0479)
2018-03-14 00:00:00
RHEL 6 : Red Hat JBoss Enterprise Application Platform 7.0.9 security update on RHEL 6 (Important) (RHSA-2018:0002)
2018-01-04 00:00:00
RHEL 6 / 7 : eap7-jboss-ec2-eap (RHSA-2018:0005)
2018-01-04 00:00:00