Lucene search

Veracode Vulnerability DatabaseVERACODE:25956

HistoryJul 25, 2020 - 4:15 a.m.

Denial Of Service (DoS)

2020-07-2504:15:40

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

denial of service

jboss-ejb-client

sessionopeninvocations

software vulnerability

EPSS

0.001

Percentile

29.8%

JSON

jboss-ejb-client is vulnerable to denial of service. The EJB SessionOpenInvocations may not be removed properly after a response is received, potentially allowing an attacker to cause a denial of service condition.

References

access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/7.2/

access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/7.2/html-single/installation_guide/

access.redhat.com/errata/RHSA-2020:3141

access.redhat.com/errata/RHSA-2020:3142

access.redhat.com/errata/RHSA-2020:3143

access.redhat.com/errata/RHSA-2020:3144

access.redhat.com/errata/RHSA-2020:3461

access.redhat.com/errata/RHSA-2020:3462

access.redhat.com/errata/RHSA-2020:3463

access.redhat.com/errata/RHSA-2020:3464

access.redhat.com/errata/RHSA-2020:3501

access.redhat.com/errata/RHSA-2020:3539

access.redhat.com/errata/RHSA-2020:3637

access.redhat.com/errata/RHSA-2020:3638

access.redhat.com/errata/RHSA-2020:3639

access.redhat.com/errata/RHSA-2020:3642

access.redhat.com/errata/RHSA-2020:3817

access.redhat.com/security/cve/CVE-2020-14307

access.redhat.com/security/updates/classification/#important

bugzilla.redhat.com/show_bug.cgi?id=1851327

bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-14307

EPSS

0.001

Percentile

29.8%

JSON

Related for VERACODE:25956