Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jboss remoting vulnerabilities and exploits
(subscribe to this query)
5.9
CVSSv3
CVE-2020-35510
A flaw was found in jboss-remoting in versions prior to 5.0.20.SP1-redhat-00001. A malicious attacker could cause threads to hold up forever in the EJB server by writing a sequence of bytes corresponding to the expected messages of a successful EJB client request, but omitting th...
Redhat Jboss-remoting
Redhat Jboss-remoting 5.0.20
7.5
CVSSv3
CVE-2019-19343
A flaw was found in Undertow when using Remoting as shipped in Red Hat Jboss EAP before version 7.2.4. A memory leak in HttpOpenListener due to holding remote connections indefinitely may lead to denial of service. Versions before undertow 2.0.25.SP1 and jboss-remoting 5.0.14.SP1...
Redhat Jboss-remoting 5.0.14
Redhat Jboss-remoting
Redhat Undertow 2.0.25
Redhat Undertow
Redhat Jboss Enterprise Application Platform
Netapp Active Iq Unified Manager -
NA
CVE-2013-6448
The InterfaceGenerator handler in JBoss Seam Remoting in JBoss Seam 2 framework 2.3.1 and previous versions, as used in JBoss Web Framework Kit, allows remote malicious users to bypass the WebRemote annotation restriction and obtain information about arbitrary classes and methods...
Redhat Jboss Seam 2 Framework 2.3.1
Redhat Jboss Seam 2 Framework
Redhat Jboss Seam 2 Framework 2.3.0
Redhat Jboss Seam 2 Framework 2.0.2
Redhat Jboss Seam 2 Framework 2.0.3
Redhat Jboss Seam 2 Framework 2.1.0
Redhat Jboss Seam 2 Framework 2.2.1
Redhat Jboss Seam 2 Framework 2.0.0
Redhat Jboss Seam 2 Framework 2.1.1
Redhat Jboss Seam 2 Framework 2.1.2
Redhat Jboss Seam 2 Framework 2.0.1
Redhat Jboss Seam 2 Framework 2.2.0
Redhat Jboss Seam 2 Framework 2.2.2
NA
CVE-2013-6447
Multiple XML External Entity (XXE) vulnerabilities in the (1) ExecutionHandler, (2) PollHandler, and (3) SubscriptionHandler classes in JBoss Seam Remoting in JBoss Seam 2 framework 2.3.1 and previous versions, as used in JBoss Web Framework Kit, allow remote malicious users to r...
Redhat Jboss Seam 2 Framework 2.3.0
Redhat Jboss Seam 2 Framework 2.0.0
Redhat Jboss Seam 2 Framework 2.1.0
Redhat Jboss Seam 2 Framework 2.1.1
Redhat Jboss Seam 2 Framework 2.3.1
Redhat Jboss Seam 2 Framework 2.0.1
Redhat Jboss Seam 2 Framework 2.0.2
Redhat Jboss Seam 2 Framework 2.2.0
Redhat Jboss Seam 2 Framework 2.2.1
Redhat Jboss Seam 2 Framework
Redhat Jboss Seam 2 Framework 2.0.3
Redhat Jboss Seam 2 Framework 2.1.2
Redhat Jboss Seam 2 Framework 2.2.2
NA
CVE-2014-3518
jmx-remoting.sar in JBoss Remoting, as used in Red Hat JBoss Enterprise Application Platform (JEAP) 5.2.0, Red Hat JBoss BRMS 5.3.1, Red Hat JBoss Portal Platform 5.2.2, and Red Hat JBoss SOA Platform 5.3.1, does not properly implement the JSR 160 specification, which allows remo...
Redhat Jboss Enterprise Application Platform 5.2.0
Redhat Jboss Enterprise Portal Platform 5.2.2
Redhat Jboss Enterprise Soa Platform 5.3.1
Redhat Jboss Enterprise Brms Platform 5.3.1
NA
CVE-2010-3862
The org.jboss.remoting.transport.bisocket.BisocketServerInvoker$SecondaryServerSocketThread.run method in JBoss Remoting 2.2.x prior to 2.2.3.SP4 and 2.5.x prior to 2.5.3.SP2 in Red Hat JBoss Enterprise Application Platform (aka JBoss EAP or JBEAP) 4.3 up to and including 4.3.0.C...
Redhat Jboss Remoting 2.2.2
Redhat Jboss Remoting 2.2.3
Redhat Jboss Remoting 2.2.0
Redhat Jboss Enterprise Application Platform 4.3.0
Redhat Jboss Enterprise Application Platform 5.1.0
Redhat Jboss Enterprise Web Platform 5.1.0
NA
CVE-2010-4265
The org.jboss.remoting.transport.bisocket.BisocketServerInvoker$SecondaryServerSocketThread.run method in JBoss Remoting 2.2.x prior to 2.2.3.SP4 and 2.5.x prior to 2.5.3.SP2 in Red Hat JBoss Enterprise Application Platform (aka JBoss EAP or JBEAP) 4.3 up to and including 4.3.0.C...
Redhat Jboss Remoting 2.2.0
Redhat Jboss Remoting 2.2.2
Redhat Jboss Remoting 2.2.3
Redhat Jboss Enterprise Application Platform 4.3.0
Redhat Jboss Enterprise Application Platform 5.1.0
Redhat Jboss Enterprise Web Platform 5.1.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
encryption
CVE-2024-4331
CVE-2024-26925
arbitrary code
CVE-2006-4304
CVE-2024-25458
CVE-2024-27077
reflected XSS
CVE-2024-4059
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started