Redhat » Jboss Enterprise Application Platform » 4.2 cp01 : Security Vulnerabilities, CVEs, (Overflow)
The Web Console in Red Hat Enterprise Application Platform (EAP) before 6.4.4 and WildFly (formerly JBoss Application Server) allows remote attackers to cause a denial of service (memory consumption) via a large request header.
Max CVSS
5.0
EPSS Score
2.22%
Published
2015-10-27
Updated
2023-02-13
JBoss Web, as used in Red Hat JBoss Communications Platform before 5.1.3, Enterprise Web Platform before 5.1.2, Enterprise Application Platform before 5.1.2, and other products, allows remote attackers to cause a denial of service (infinite loop) via vectors related to a crafted UTF-8 and a "surrogate pair character" that is "at the boundary of an internal buffer."
Max CVSS
5.0
EPSS Score
2.28%
Published
2014-02-10
Updated
2014-03-06
2 vulnerabilities found