Filtered by vendor Redhat
Subscriptions
Filtered by product Jboss Business Rules Management System
Subscriptions
Total
3 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2010-3857 | 1 Redhat | 1 Jboss Business Rules Management System | 2024-08-07 | 6.1 Medium |
| JBoss BRMS before 5.1.0 has a XSS vulnerability via asset=UUID parameter. | ||||
| CVE-2011-2487 | 2 Apache, Redhat | 12 Cxf, Wss4j, Jboss Business Rules Management System and 9 more | 2024-08-06 | 5.9 Medium |
| The implementations of PKCS#1 v1.5 key transport mechanism for XMLEncryption in JBossWS and Apache WSS4J before 1.6.5 is susceptible to a Bleichenbacher attack. | ||||
| CVE-2016-8608 | 1 Redhat | 4 Jboss Bpm Suite, Jboss Bpms, Jboss Business Rules Management System and 1 more | 2024-08-06 | N/A |
| JBoss BRMS 6 and BPM Suite 6 are vulnerable to a stored XSS via business process editor. The flaw is due to an incomplete fix for CVE-2016-5398. Remote, authenticated attackers that have privileges to create business processes can store scripts in them, which are not properly sanitized before showing to other users, including admins. | ||||
Page 1 of 1.