Vulnerabilities (CVE)

Filtered by vendor Redhat Subscribe

Filtered by product Jboss Wildfly Application Server

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2018-1047	1 Redhat	3 Enterprise Linux Server, Jboss Enterprise Application Platform, Jboss Wildfly Application Server	2019-10-09	2.1 LOW	5.5 MEDIUM
A flaw was found in Wildfly 9.x. A path traversal vulnerability through the org.wildfly.extension.undertow.deployment.ServletResourceManager.getResource method could lead to information disclosure of arbitrary local files.
CVE-2016-4993	1 Redhat	3 Enterprise Linux, Jboss Enterprise Application Platform, Jboss Wildfly Application Server	2017-12-15	4.3 MEDIUM	6.1 MEDIUM
CRLF injection vulnerability in the Undertow web server in WildFly 10.0.0, as used in Red Hat JBoss Enterprise Application Platform (EAP) 7.x before 7.0.2, allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors.