ResourceBuilderImpl.java in the RichFaces 3.x up to and including 5.x implementation in Red Hat JBoss Web Framework Kit prior to 2.3.0, Red Hat JBoss Web Platform up to and including 5.2.0, Red Hat JBoss Enterprise Application Platform up to and including 4.3.0 CP10 and 5.x up to and including 5.2.0, Red Hat JBoss BRMS up to and including 5.3.1, Red Hat JBoss SOA Platform up to and including 4.3.0 CP05 and 5.x up to and including 5.3.1, Red Hat JBoss Portal up to and including 4.3 CP07 and 5.x up to and including 5.2.2, and Red Hat JBoss Operations Network up to and including 2.4.2 and 3.x up to and including 3.1.2 does not restrict the classes for which deserialization methods can be called, which allows remote malicious users to execute arbitrary code via crafted serialized data.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
redhat jboss operations network 3.0 |
||
redhat richfaces 4.5.0 |
||
redhat richfaces 3.3.0 |
||
redhat jboss operations network 3.1 |
||
redhat jboss enterprise web platform 5.2.0 |
||
redhat jboss enterprise portal platform 4.3.0 |
||
redhat jboss enterprise soa platform 4.3.0 |
||
redhat jboss web framework kit 2.0.0 |
||
redhat jboss enterprise portal platform 5.2.2 |
||
redhat jboss enterprise application platform 4.3.0 |
||
redhat jboss enterprise soa platform 5.2.0 |
||
redhat jboss enterprise soa platform 4.2.0 |
||
redhat jboss enterprise portal platform 5.0.0 |
||
redhat jboss enterprise application platform 5.1.2 |
||
redhat richfaces 3.2.2 |
||
redhat jboss enterprise soa platform 5.0.2 |
||
redhat jboss enterprise soa platform 5.0.1 |
||
redhat jboss operations network 3.0.1 |
||
redhat jboss enterprise web platform 5.1.2 |
||
redhat richfaces 5.0.0 |
||
redhat jboss enterprise portal platform 5.1.1 |
||
redhat jboss web framework kit 1.0.0 |
||
redhat jboss enterprise portal platform 5.1.0 |
||
redhat jboss enterprise brms platform 5.3.1 |
||
redhat jboss operations network 3.1.2 |
||
redhat richfaces 3.3.3 |
||
redhat jboss operations network 2.4.2 |
||
redhat jboss operations network 2.3.1 |
||
redhat jboss web framework kit 1.2.0 |
||
redhat jboss operations network 2.4 |
||
redhat richfaces 3.1.4 |
||
redhat richfaces 4.2.3 |
||
redhat jboss enterprise portal platform 5.2.1 |
||
redhat jboss operations network 2.0.1 |
||
redhat jboss enterprise application platform 5.1.1 |
||
redhat richfaces 4.2.2 |
||
redhat jboss enterprise soa platform 5.1.0 |
||
redhat jboss operations network 1.0.0 |
||
redhat richfaces 4.1.0 |
||
redhat richfaces 3.1.5 |
||
redhat jboss enterprise application platform 5.0.1 |
||
redhat richfaces 3.1.1 |
||
redhat jboss web framework kit |
||
redhat richfaces 3.2.1 |
||
redhat jboss operations network 2.1.0 |
||
redhat jboss operations network 2.3 |
||
redhat jboss enterprise web platform 5.1.0 |
||
redhat richfaces 3.3.2 |
||
redhat jboss web framework kit 1.1.0 |
||
redhat richfaces 3.1.6 |
||
redhat richfaces 3.3.1 |
||
redhat jboss enterprise brms platform 5.3.0 |
||
redhat jboss enterprise brms platform 5.0.0 |
||
redhat richfaces 4.2.0 |
||
redhat jboss enterprise portal platform 5.2.0 |
||
redhat jboss enterprise soa platform 5.1.1 |
||
redhat richfaces 4.0.0 |
||
redhat jboss enterprise application platform 5.1.0 |
||
redhat jboss enterprise brms platform 5.0.2 |
||
redhat jboss enterprise application platform 5.2.0 |
||
redhat jboss operations network 2.0.0 |
||
redhat richfaces 4.3.1 |
||
redhat richfaces 3.2.0 |
||
redhat richfaces 3.1.3 |
||
redhat jboss operations network 3.1.1 |
||
redhat richfaces 4.3.0 |
||
redhat jboss enterprise brms platform 5.1.0 |
||
redhat jboss operations network 2.2 |
||
redhat jboss operations network 2.4.1 |
||
redhat jboss enterprise web platform 5.1.1 |
||
redhat jboss web framework kit 2.1.0 |
||
redhat richfaces 3.1.0 |
||
redhat jboss enterprise soa platform 5.3.0 |
||
redhat richfaces 3.1.2 |
||
redhat richfaces 4.2.1 |
||
redhat jboss enterprise brms platform 5.0.1 |
||
redhat jboss enterprise soa platform 5.0.0 |
||
redhat jboss enterprise application platform 5.0.0 |
||
redhat jboss enterprise portal platform 5.0.1 |
||
redhat jboss enterprise brms platform 5.2.0 |
||
redhat jboss enterprise soa platform 5.3.1 |