Known Vulnerabilities for Jboss Web Framework Kit by Redhat

Listed below are 4 of the newest known vulnerabilities associated with "Jboss Web Framework Kit" by "Redhat".

These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.

Data on known vulnerable versions is also displayed based on information from known CPEs

Known Vulnerabilities

CVE	Shortened Description	Severity	Publish Date	Last Modified
CVE-2014-0248	org.jboss.seam.web.AuthenticationFilter in Red Hat JBoss Web Framework Kit 2.5.0, JBoss Enterprise Application Platform (JBEA...	6.8 - MEDIUM	2014-07-07	2023-02-13
CVE-2014-0149	Multiple cross-site scripting (XSS) vulnerabilities in Red Hat JBoss Web Framework Kit 2.5.0 allow remote attackers to inject...	4.3 - MEDIUM	2014-05-05	2014-05-06
CVE-2014-0086	The doFilter function in webapp/PushHandlerFilter.java in JBoss RichFaces 4.3.4, 4.3.5, and 5.x allows remote attackers to ca...	4.3 - MEDIUM	2014-03-31	2017-12-16
CVE-2013-2165	ResourceBuilderImpl.java in the RichFaces 3.x through 5.x implementation in Red Hat JBoss Web Framework Kit before 2.3.0, Red...	7.5 - HIGH	2013-07-23	2023-02-13

Known Affected Configurations (CPE V2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Application	Redhat	Jboss Web Framework Kit	2.5.0	All	All	All
Application	Redhat	Jboss Web Framework Kit	2.4.0	All	All	All
Application	Redhat	Jboss Web Framework Kit	2.2.0	All	All	All
Application	Redhat	Jboss Web Framework Kit	2.1.0	All	All	All
Application	Redhat	Jboss Web Framework Kit	2.0.0	All	All	All
Application	Redhat	Jboss Web Framework Kit	1.2.0	All	All	All
Application	Redhat	Jboss Web Framework Kit	1.1.0	All	All	All
Application	Redhat	Jboss Web Framework Kit	1.0.0	All	All	All