Fuse Esb Enterprise CVEs and Security Vulnerabilities

Search

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (26 CVEs found)

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2013-4221	2 Redhat, Restlet	6 Fuse Esb Enterprise, Fuse Management Console, Fuse Mq Enterprise and 3 more	2025-04-11	N/A
The default configuration of the ObjectRepresentation class in Restlet before 2.1.4 deserializes objects from untrusted sources using the Java XMLDecoder, which allows remote attackers to execute arbitrary Java code via crafted XML.
CVE-2013-4271	2 Redhat, Restlet	6 Fuse Esb Enterprise, Fuse Management Console, Fuse Mq Enterprise and 3 more	2025-04-11	N/A
The default configuration of the ObjectRepresentation class in Restlet before 2.1.4 deserializes objects from untrusted sources, which allows remote attackers to execute arbitrary Java code via a serialized object, a different vulnerability than CVE-2013-4221.
CVE-2013-4330	2 Apache, Redhat	10 Camel, Fuse Esb Enterprise, Fuse Management Console and 7 more	2025-04-11	N/A
Apache Camel before 2.9.7, 2.10.0 before 2.10.7, 2.11.0 before 2.11.2, and 2.12.0 allows remote attackers to execute arbitrary simple language expressions by including "$simple{}" in a CamelFileName message header to a (1) FILE or (2) FTP producer.
CVE-2013-1821	2 Redhat, Ruby-lang	5 Enterprise Linux, Fuse Esb Enterprise, Jboss Enterprise Soa Platform and 2 more	2025-04-11	N/A
lib/rexml/text.rb in the REXML parser in Ruby before 1.9.3-p392 allows remote attackers to cause a denial of service (memory consumption and crash) via crafted text nodes in an XML document, aka an XML Entity Expansion (XEE) attack.
CVE-2013-6440	3 Internet2, Redhat, Shibboleth	10 Opensaml, Fuse Esb Enterprise, Fuse Management Console and 7 more	2025-04-11	N/A
The (1) BasicParserPool, (2) StaticBasicParserPool, (3) XML Decrypter, and (4) SAML Decrypter in Shibboleth OpenSAML-Java before 2.6.1 set the expandEntityReferences property to true, which allows remote attackers to conduct XML external entity (XXE) attacks via a crafted XML DOCTYPE declaration.
CVE-2013-2160	2 Apache, Redhat	4 Cxf, Fuse Esb Enterprise, Jboss Enterprise Portal Platform and 1 more	2025-04-11	N/A
The streaming XML parser in Apache CXF 2.5.x before 2.5.10, 2.6.x before 2.6.7, and 2.7.x before 2.7.4 allows remote attackers to cause a denial of service (CPU and memory consumption) via crafted XML with a large number of (1) elements, (2) attributes, (3) nested constructs, and possibly other vectors.

« first previous Page 2 of 2.