Known Vulnerabilities for Jboss Enterprise Portal Platform by Redhat
Listed below are 10 of the newest known vulnerabilities associated with "Jboss Enterprise Portal Platform" by "Redhat".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2015-3244 | The Portlet Bridge for JavaServer Faces in Red Hat JBoss Portal 6.2.0, when used in portlets with the default resource servin... | 4.9 - MEDIUM | 2015-07-16 | 2016-11-28 |
| CVE-2014-7852 | Cross-site scripting (XSS) vulnerability in JBoss RichFaces, as used in JBoss Portal 6.1.1, allows remote attackers to inject... | 4.3 - MEDIUM | 2014-12-11 | 2017-01-03 |
| CVE-2014-3518 | jmx-remoting.sar in JBoss Remoting, as used in Red Hat JBoss Enterprise Application Platform (JEAP) 5.2.0, Red Hat JBoss BRMS... | 6.8 - MEDIUM | 2014-07-22 | 2014-07-23 |
| CVE-2013-4424 | Multiple cross-site scripting (XSS) vulnerabilities in the GateIn Portal component in Red Hat JBoss Portal 6.1.0 allow remote... | 4.3 - MEDIUM | 2013-12-23 | 2013-12-27 |
| CVE-2013-2186 | The DiskFileItem class in Apache Commons FileUpload, as used in Red Hat JBoss BRMS 5.3.1; JBoss Portal 4.3 CP07, 5.2.2, and 6... | 7.5 - HIGH | 2013-10-28 | 2018-01-09 |
| CVE-2013-2185 | ** DISPUTED ** The readObject method in the DiskFileItem class in Apache Tomcat and JBoss Web, as used in Red Hat JBoss Enter... | 7.5 - HIGH | 2014-01-19 | 2023-11-07 |
| CVE-2013-2165 | ResourceBuilderImpl.java in the RichFaces 3.x through 5.x implementation in Red Hat JBoss Web Framework Kit before 2.3.0, Red... | 7.5 - HIGH | 2013-07-23 | 2023-02-13 |
| CVE-2013-2102 | The default configuration of Red Hat JBoss Portal before 6.1.0 enables the JGroups diagnostics service with no authentication... | 3.3 - LOW | 2013-10-28 | 2013-10-30 |
| CVE-2013-0315 | The GateIn Portal export/import gadget in JBoss Enterprise Portal Platform 5.2.2 allows remote attackers to read arbitrary fi... | 5 - MEDIUM | 2013-04-12 | 2013-04-15 |
| CVE-2013-0314 | The GateIn Portal export/import gadget in JBoss Enterprise Portal Platform 5.2.2 does not properly check authentication when ... | 7.5 - HIGH | 2013-04-12 | 2013-04-15 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Redhat | Jboss Enterprise Portal Platform | 6.2.0 | All | All | All |
| Application | Redhat | Jboss Enterprise Portal Platform | 6.1.0 | All | All | All |
| Application | Redhat | Jboss Enterprise Portal Platform | 6.0.0 | All | All | All |
| Application | Redhat | Jboss Enterprise Portal Platform | 5.2.2 | All | All | All |
| Application | Redhat | Jboss Enterprise Portal Platform | 5.2.1 | All | All | All |
| Application | Redhat | Jboss Enterprise Portal Platform | 5.2.0 | All | All | All |
| Application | Redhat | Jboss Enterprise Portal Platform | 5.1.1 | All | All | All |
| Application | Redhat | Jboss Enterprise Portal Platform | 5.1.0 | All | All | All |
| Application | Redhat | Jboss Enterprise Portal Platform | 5.0.1 | All | All | All |
| Application | Redhat | Jboss Enterprise Portal Platform | 5.0.0 | All | All | All |
| Application | Redhat | Jboss Enterprise Portal Platform | 4.3.0 | All | All | All |
| Application | Redhat | Jboss Enterprise Portal Platform | 4.3.0 | cp03 | All | All |
| Application | Redhat | Jboss Enterprise Portal Platform | 4.3.0 | cp04 | All | All |
| Application | Redhat | Jboss Enterprise Portal Platform | 4.3.0 | cp05 | All | All |
| Application | Redhat | Jboss Enterprise Portal Platform | 4.3.0 | cp06 | All | All |
| Application | Redhat | Jboss Enterprise Portal Platform | 4.3.0 | cp07 | All | All |