CVE-2013-4286 - OpenCVE

Apache Tomcat before 6.0.39, 7.x before 7.0.47, and 8.x before 8.0.0-RC3, when an HTTP connector or AJP connector is used, does not properly handle certain inconsistent HTTP request headers, which allows remote attackers to trigger incorrect identification of a request's length and conduct request-smuggling attacks via (1) multiple Content-Length headers or (2) a Content-Length header and a "Transfer-Encoding: chunked" header. NOTE: this vulnerability exists because of an incomplete fix for CVE-2005-2090.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact None

AV:N/AC:M/Au:N/C:P/I:P/A:N

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Apache	Tomcat
Redhat	Enterprise Linux Jboss Bpms Jboss Brms Jboss Data Grid Jboss Data Virtualization Jboss Enterprise Application Platform Jboss Enterprise Portal Platform Jboss Enterprise Web Server Jboss Fuse Service Works Jboss Operations Network

Configuration 1 [-]

OR	cpe:2.3:a:apache:tomcat:7.0.0:::::::*
	cpe:2.3:a:apache:tomcat:7.0.0:beta::::::
	cpe:2.3:a:apache:tomcat:7.0.1:::::::*
	cpe:2.3:a:apache:tomcat:7.0.2:::::::*
	cpe:2.3:a:apache:tomcat:7.0.2:beta::::::
	cpe:2.3:a:apache:tomcat:7.0.3:::::::*
	cpe:2.3:a:apache:tomcat:7.0.4:::::::*
	cpe:2.3:a:apache:tomcat:7.0.4:beta::::::
	cpe:2.3:a:apache:tomcat:7.0.10:::::::*
	cpe:2.3:a:apache:tomcat:7.0.11:::::::*
	cpe:2.3:a:apache:tomcat:7.0.12:::::::*
	cpe:2.3:a:apache:tomcat:7.0.13:::::::*
	cpe:2.3:a:apache:tomcat:7.0.14:::::::*
	cpe:2.3:a:apache:tomcat:7.0.15:::::::*
	cpe:2.3:a:apache:tomcat:7.0.16:::::::*
	cpe:2.3:a:apache:tomcat:7.0.17:::::::*
	cpe:2.3:a:apache:tomcat:7.0.18:::::::*
	cpe:2.3:a:apache:tomcat:7.0.19:::::::*
	cpe:2.3:a:apache:tomcat:7.0.20:::::::*
	cpe:2.3:a:apache:tomcat:7.0.21:::::::*
	cpe:2.3:a:apache:tomcat:7.0.22:::::::*
	cpe:2.3:a:apache:tomcat:7.0.23:::::::*
	cpe:2.3:a:apache:tomcat:7.0.24:::::::*
	cpe:2.3:a:apache:tomcat:7.0.25:::::::*
	cpe:2.3:a:apache:tomcat:7.0.26:::::::*
	cpe:2.3:a:apache:tomcat:7.0.27:::::::*
	cpe:2.3:a:apache:tomcat:7.0.28:::::::*
	cpe:2.3:a:apache:tomcat:7.0.29:::::::*
	cpe:2.3:a:apache:tomcat:7.0.30:::::::*
	cpe:2.3:a:apache:tomcat:7.0.31:::::::*
	cpe:2.3:a:apache:tomcat:7.0.32:::::::*
	cpe:2.3:a:apache:tomcat:7.0.33:::::::*
	cpe:2.3:a:apache:tomcat:7.0.34:::::::*
	cpe:2.3:a:apache:tomcat:7.0.35:::::::*
	cpe:2.3:a:apache:tomcat:7.0.36:::::::*
	cpe:2.3:a:apache:tomcat:7.0.37:::::::*
	cpe:2.3:a:apache:tomcat:7.0.38:::::::*
	cpe:2.3:a:apache:tomcat:7.0.39:::::::*
	cpe:2.3:a:apache:tomcat:7.0.40:::::::*
	cpe:2.3:a:apache:tomcat:7.0.41:::::::*
	cpe:2.3:a:apache:tomcat:7.0.42:::::::*
	cpe:2.3:a:apache:tomcat:7.0.43:::::::*
	cpe:2.3:a:apache:tomcat:7.0.44:::::::*
	cpe:2.3:a:apache:tomcat:7.0.45:::::::*
	cpe:2.3:a:apache:tomcat:7.0.46:::::::*

Configuration 2 [-]

OR	cpe:2.3:a:apache:tomcat:8.0.0:rc1::::::
	cpe:2.3:a:apache:tomcat:8.0.0:rc2::::::

Configuration 3 [-]

OR	cpe:2.3:a:apache:tomcat::::::::
	cpe:2.3:a:apache:tomcat:1.1.3:::::::*
	cpe:2.3:a:apache:tomcat:3.0:::::::*
	cpe:2.3:a:apache:tomcat:3.1:::::::*
	cpe:2.3:a:apache:tomcat:3.1.1:::::::*
	cpe:2.3:a:apache:tomcat:3.2:::::::*
	cpe:2.3:a:apache:tomcat:3.2.1:::::::*
	cpe:2.3:a:apache:tomcat:3.2.2:::::::*
	cpe:2.3:a:apache:tomcat:3.2.2:beta2::::::
	cpe:2.3:a:apache:tomcat:3.2.3:::::::*
	cpe:2.3:a:apache:tomcat:3.2.4:::::::*
	cpe:2.3:a:apache:tomcat:3.3:::::::*
	cpe:2.3:a:apache:tomcat:3.3.1:::::::*
	cpe:2.3:a:apache:tomcat:3.3.1a:::::::*
	cpe:2.3:a:apache:tomcat:3.3.2:::::::*
	cpe:2.3:a:apache:tomcat:4:::::::*
	cpe:2.3:a:apache:tomcat:4.0.0:::::::*
	cpe:2.3:a:apache:tomcat:4.0.1:::::::*
	cpe:2.3:a:apache:tomcat:4.0.2:::::::*
	cpe:2.3:a:apache:tomcat:4.0.3:::::::*
	cpe:2.3:a:apache:tomcat:4.0.4:::::::*
	cpe:2.3:a:apache:tomcat:4.0.5:::::::*
	cpe:2.3:a:apache:tomcat:4.0.6:::::::*
	cpe:2.3:a:apache:tomcat:4.1.0:::::::*
	cpe:2.3:a:apache:tomcat:4.1.1:::::::*
	cpe:2.3:a:apache:tomcat:4.1.2:::::::*
	cpe:2.3:a:apache:tomcat:4.1.3:::::::*
	cpe:2.3:a:apache:tomcat:4.1.3:beta::::::
	cpe:2.3:a:apache:tomcat:4.1.9:beta::::::
	cpe:2.3:a:apache:tomcat:4.1.10:::::::*
	cpe:2.3:a:apache:tomcat:4.1.12:::::::*
	cpe:2.3:a:apache:tomcat:4.1.15:::::::*
	cpe:2.3:a:apache:tomcat:4.1.24:::::::*
	cpe:2.3:a:apache:tomcat:4.1.28:::::::*
	cpe:2.3:a:apache:tomcat:4.1.29:::::::*
	cpe:2.3:a:apache:tomcat:4.1.31:::::::*
	cpe:2.3:a:apache:tomcat:4.1.36:::::::*
	cpe:2.3:a:apache:tomcat:5:::::::*
	cpe:2.3:a:apache:tomcat:5.0.0:::::::*
	cpe:2.3:a:apache:tomcat:5.0.1:::::::*
	cpe:2.3:a:apache:tomcat:5.0.2:::::::*
	cpe:2.3:a:apache:tomcat:5.0.3:::::::*
	cpe:2.3:a:apache:tomcat:5.0.4:::::::*
	cpe:2.3:a:apache:tomcat:5.0.5:::::::*
	cpe:2.3:a:apache:tomcat:5.0.6:::::::*
	cpe:2.3:a:apache:tomcat:5.0.7:::::::*
	cpe:2.3:a:apache:tomcat:5.0.8:::::::*
	cpe:2.3:a:apache:tomcat:5.0.9:::::::*
	cpe:2.3:a:apache:tomcat:5.0.10:::::::*
	cpe:2.3:a:apache:tomcat:5.0.11:::::::*
	cpe:2.3:a:apache:tomcat:5.0.12:::::::*
	cpe:2.3:a:apache:tomcat:5.0.13:::::::*
	cpe:2.3:a:apache:tomcat:5.0.14:::::::*
	cpe:2.3:a:apache:tomcat:5.0.15:::::::*
	cpe:2.3:a:apache:tomcat:5.0.16:::::::*
	cpe:2.3:a:apache:tomcat:5.0.17:::::::*
	cpe:2.3:a:apache:tomcat:5.0.18:::::::*
	cpe:2.3:a:apache:tomcat:5.0.19:::::::*
	cpe:2.3:a:apache:tomcat:5.0.21:::::::*
	cpe:2.3:a:apache:tomcat:5.0.22:::::::*
	cpe:2.3:a:apache:tomcat:5.0.23:::::::*
	cpe:2.3:a:apache:tomcat:5.0.24:::::::*
	cpe:2.3:a:apache:tomcat:5.0.25:::::::*
	cpe:2.3:a:apache:tomcat:5.0.26:::::::*
cpe:2.3:a:apache:tomcat:5.0.27:::::::*
cpe:2.3:a:apache:tomcat:5.0.28:::::::*
cpe:2.3:a:apache:tomcat:5.0.29:::::::*
cpe:2.3:a:apache:tomcat:5.0.30:::::::*
cpe:2.3:a:apache:tomcat:5.5.0:::::::*
cpe:2.3:a:apache:tomcat:5.5.1:::::::*
cpe:2.3:a:apache:tomcat:5.5.2:::::::*
cpe:2.3:a:apache:tomcat:5.5.3:::::::*
cpe:2.3:a:apache:tomcat:5.5.4:::::::*
cpe:2.3:a:apache:tomcat:5.5.5:::::::*
cpe:2.3:a:apache:tomcat:5.5.6:::::::*
cpe:2.3:a:apache:tomcat:5.5.7:::::::*
cpe:2.3:a:apache:tomcat:5.5.8:::::::*
cpe:2.3:a:apache:tomcat:5.5.9:::::::*
cpe:2.3:a:apache:tomcat:5.5.10:::::::*
cpe:2.3:a:apache:tomcat:5.5.11:::::::*
cpe:2.3:a:apache:tomcat:5.5.12:::::::*
cpe:2.3:a:apache:tomcat:5.5.13:::::::*
cpe:2.3:a:apache:tomcat:5.5.14:::::::*
cpe:2.3:a:apache:tomcat:5.5.15:::::::*
cpe:2.3:a:apache:tomcat:5.5.16:::::::*
cpe:2.3:a:apache:tomcat:5.5.17:::::::*
cpe:2.3:a:apache:tomcat:5.5.18:::::::*
cpe:2.3:a:apache:tomcat:5.5.19:::::::*
cpe:2.3:a:apache:tomcat:5.5.20:::::::*
cpe:2.3:a:apache:tomcat:5.5.21:::::::*
cpe:2.3:a:apache:tomcat:5.5.22:::::::*
cpe:2.3:a:apache:tomcat:5.5.23:::::::*
cpe:2.3:a:apache:tomcat:5.5.24:::::::*
cpe:2.3:a:apache:tomcat:5.5.25:::::::*
cpe:2.3:a:apache:tomcat:5.5.26:::::::*
cpe:2.3:a:apache:tomcat:5.5.27:::::::*
cpe:2.3:a:apache:tomcat:5.5.28:::::::*
cpe:2.3:a:apache:tomcat:5.5.29:::::::*
cpe:2.3:a:apache:tomcat:5.5.30:::::::*
cpe:2.3:a:apache:tomcat:5.5.31:::::::*
cpe:2.3:a:apache:tomcat:5.5.32:::::::*
cpe:2.3:a:apache:tomcat:5.5.33:::::::*
cpe:2.3:a:apache:tomcat:5.5.34:::::::*
cpe:2.3:a:apache:tomcat:5.5.35:::::::*
cpe:2.3:a:apache:tomcat:6:::::::*
cpe:2.3:a:apache:tomcat:6.0:::::::*
cpe:2.3:a:apache:tomcat:6.0.0:::::::*
cpe:2.3:a:apache:tomcat:6.0.0:alpha::::::
cpe:2.3:a:apache:tomcat:6.0.1:::::::*
cpe:2.3:a:apache:tomcat:6.0.1:alpha::::::
cpe:2.3:a:apache:tomcat:6.0.2:::::::*
cpe:2.3:a:apache:tomcat:6.0.2:alpha::::::
cpe:2.3:a:apache:tomcat:6.0.2:beta::::::
cpe:2.3:a:apache:tomcat:6.0.3:::::::*
cpe:2.3:a:apache:tomcat:6.0.10:::::::*
cpe:2.3:a:apache:tomcat:6.0.11:::::::*
cpe:2.3:a:apache:tomcat:6.0.12:::::::*
cpe:2.3:a:apache:tomcat:6.0.13:::::::*
cpe:2.3:a:apache:tomcat:6.0.14:::::::*
cpe:2.3:a:apache:tomcat:6.0.15:::::::*
cpe:2.3:a:apache:tomcat:6.0.16:::::::*
cpe:2.3:a:apache:tomcat:6.0.17:::::::*
cpe:2.3:a:apache:tomcat:6.0.18:::::::*
cpe:2.3:a:apache:tomcat:6.0.19:::::::*
cpe:2.3:a:apache:tomcat:6.0.20:::::::*
cpe:2.3:a:apache:tomcat:6.0.24:::::::*
cpe:2.3:a:apache:tomcat:6.0.26:::::::*
cpe:2.3:a:apache:tomcat:6.0.27:::::::*
cpe:2.3:a:apache:tomcat:6.0.28:::::::*
cpe:2.3:a:apache:tomcat:6.0.29:::::::*
cpe:2.3:a:apache:tomcat:6.0.30:::::::*
cpe:2.3:a:apache:tomcat:6.0.31:::::::*
cpe:2.3:a:apache:tomcat:6.0.32:::::::*
cpe:2.3:a:apache:tomcat:6.0.33:::::::*
cpe:2.3:a:apache:tomcat:6.0.35:::::::*
cpe:2.3:a:apache:tomcat:6.0.36:::::::*

Package	CPE	Advisory	Released Date
Red Hat Enterprise Linux 6
tomcat6-0:6.0.24-64.el6_5	cpe:/o:redhat:enterprise_linux:6	RHSA-2014:0429	2014-04-23T00:00:00Z
Red Hat Enterprise Linux 7
tomcat-0:7.0.42-5.el7_0	cpe:/o:redhat:enterprise_linux:7	RHSA-2014:0686	2014-06-10T00:00:00Z
Red Hat JBoss BPMS 6.0
jbossweb	cpe:/a:redhat:jboss_bpms:6.0	RHSA-2014:0373	2014-04-03T00:00:00Z
Red Hat JBoss BRMS 6.0
jbossweb	cpe:/a:redhat:jboss_brms:6.0	RHSA-2014:0373	2014-04-03T00:00:00Z
Red Hat JBoss Data Grid 6.2
jbossweb	cpe:/a:redhat:jboss_data_grid:6.2.1	RHSA-2014:0374	2014-04-03T00:00:00Z
Red Hat JBoss Data Virtualization 6.0
jbossweb	cpe:/a:redhat:jboss_data_virtualization:6.0	RHSA-2014:0458	2014-04-30T00:00:00Z
Red Hat JBoss Enterprise Application Platform 6.2
jbossweb	cpe:/a:redhat:jboss_enterprise_application_platform:6.2.2	RHSA-2014:0345	2014-03-31T00:00:00Z
Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5
apache-cxf-0:2.7.10-1.redhat_1.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
glassfish-jsf-eap6-0:2.1.27-6.redhat_8.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jboss-ejb-client-0:1.0.25-1.Final_redhat_1.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jboss-jsf-api_2.1_spec-0:2.1.27-2.Final_redhat_1.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jboss-metadata-0:7.0.9-1.Final_redhat_1.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jboss-remote-naming-0:1.0.8-1.Final_redhat_1.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jboss-remoting3-0:3.2.19-1.GA_redhat_1.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jboss-security-negotiation-0:2.2.7-1.Final_redhat_1.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jbossws-cxf-0:4.2.4-1.Final_redhat_1.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
picketbox-0:4.0.19-4.SP4_redhat_1.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
wss4j-0:1.6.14-2.redhat_1.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6
apache-cxf-0:2.7.10-1.redhat_1.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
glassfish-jsf-eap6-0:2.1.27-6.redhat_8.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jboss-ejb-client-0:1.0.25-1.Final_redhat_1.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jboss-jsf-api_2.1_spec-0:2.1.27-2.Final_redhat_1.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jboss-metadata-0:7.0.9-1.Final_redhat_1.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jboss-remote-naming-0:1.0.8-1.Final_redhat_1.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jboss-remoting3-0:3.2.19-1.GA_redhat_1.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jboss-security-negotiation-0:2.2.7-1.Final_redhat_1.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jbossws-cxf-0:4.2.4-1.Final_redhat_1.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
picketbox-0:4.0.19-4.SP4_redhat_1.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
wss4j-0:1.6.14-2.redhat_1.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
Red Hat JBoss Enterprise Application Platform 6 for RHEL 5
ironjacamar-eap6-0:1.0.23-5.Final_redhat_5.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jboss-as-appclient-0:7.3.2-2.Final_redhat_2.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jboss-as-cli-0:7.3.2-2.Final_redhat_2.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jboss-as-client-all-0:7.3.2-2.Final_redhat_2.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jboss-as-clustering-0:7.3.2-2.Final_redhat_2.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jboss-as-cmp-0:7.3.2-2.Final_redhat_2.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jboss-as-configadmin-0:7.3.2-2.Final_redhat_2.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jboss-as-connector-0:7.3.2-2.Final_redhat_2.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jboss-as-controller-0:7.3.2-2.Final_redhat_2.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jboss-as-controller-client-0:7.3.2-2.Final_redhat_2.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jbossas-core-0:7.3.2-2.Final_redhat_2.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jboss-as-core-security-0:7.3.2-2.Final_redhat_2.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jboss-as-deployment-repository-0:7.3.2-2.Final_redhat_2.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jboss-as-deployment-scanner-0:7.3.2-2.Final_redhat_2.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jboss-as-domain-http-0:7.3.2-2.Final_redhat_2.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jboss-as-domain-management-0:7.3.2-2.Final_redhat_2.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jboss-as-ee-0:7.3.2-2.Final_redhat_2.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jboss-as-ee-deployment-0:7.3.2-2.Final_redhat_2.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jboss-as-ejb3-0:7.3.2-2.Final_redhat_2.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jboss-as-embedded-0:7.3.2-2.Final_redhat_2.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jboss-as-host-controller-0:7.3.2-2.Final_redhat_2.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jboss-as-jacorb-0:7.3.2-2.Final_redhat_2.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jbossas-javadocs-0:7.3.2-2.1.Final_redhat_2.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jboss-as-jaxr-0:7.3.2-2.Final_redhat_2.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jboss-as-jaxrs-0:7.3.2-2.Final_redhat_2.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jboss-as-jdr-0:7.3.2-2.Final_redhat_2.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jboss-as-jmx-0:7.3.2-2.Final_redhat_2.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jboss-as-jpa-0:7.3.2-2.Final_redhat_2.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jboss-as-jsf-0:7.3.2-2.Final_redhat_2.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jboss-as-jsr77-0:7.3.2-2.Final_redhat_2.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jboss-as-logging-0:7.3.2-2.Final_redhat_2.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jboss-as-mail-0:7.3.2-2.Final_redhat_2.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jboss-as-management-client-content-0:7.3.2-2.Final_redhat_2.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jboss-as-messaging-0:7.3.2-2.Final_redhat_2.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jboss-as-modcluster-0:7.3.2-2.Final_redhat_2.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jbossas-modules-eap-0:7.3.2-2.Final_redhat_2.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jboss-as-naming-0:7.3.2-2.Final_redhat_2.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jboss-as-network-0:7.3.2-2.Final_redhat_2.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jboss-as-osgi-0:7.3.2-2.Final_redhat_2.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jboss-as-osgi-configadmin-0:7.3.2-2.Final_redhat_2.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jboss-as-osgi-service-0:7.3.2-2.Final_redhat_2.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jboss-as-platform-mbean-0:7.3.2-2.Final_redhat_2.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jboss-as-pojo-0:7.3.2-2.Final_redhat_2.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jboss-as-process-controller-0:7.3.2-2.Final_redhat_2.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jbossas-product-eap-0:7.3.2-2.Final_redhat_2.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jboss-as-protocol-0:7.3.2-2.Final_redhat_2.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jboss-as-remoting-0:7.3.2-2.Final_redhat_2.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jboss-as-sar-0:7.3.2-2.Final_redhat_2.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jboss-as-security-0:7.3.2-2.Final_redhat_2.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jboss-as-server-0:7.3.2-2.Final_redhat_2.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jboss-as-system-jmx-0:7.3.2-2.Final_redhat_2.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jboss-as-threads-0:7.3.2-2.Final_redhat_2.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jboss-as-transactions-0:7.3.2-2.Final_redhat_2.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jboss-as-version-0:7.3.2-2.Final_redhat_2.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jboss-as-web-0:7.3.2-2.Final_redhat_2.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jboss-as-webservices-0:7.3.2-2.Final_redhat_2.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jboss-as-weld-0:7.3.2-2.Final_redhat_2.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jboss-as-xts-0:7.3.2-2.Final_redhat_2.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jboss-el-api_2.2_spec-0:1.0.4-2.Final_redhat_1.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jboss-modules-0:1.3.3-1.Final_redhat_1.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
jbossweb-0:7.3.1-1.Final_redhat_1.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0343	2014-03-31T00:00:00Z
Red Hat JBoss Enterprise Application Platform 6 for RHEL 6
ironjacamar-eap6-0:1.0.23-5.Final_redhat_5.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jboss-as-appclient-0:7.3.2-2.Final_redhat_2.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jboss-as-cli-0:7.3.2-2.Final_redhat_2.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jboss-as-client-all-0:7.3.2-2.Final_redhat_2.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jboss-as-clustering-0:7.3.2-2.Final_redhat_2.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jboss-as-cmp-0:7.3.2-2.Final_redhat_2.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jboss-as-configadmin-0:7.3.2-2.Final_redhat_2.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jboss-as-connector-0:7.3.2-2.Final_redhat_2.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jboss-as-controller-0:7.3.2-2.Final_redhat_2.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jboss-as-controller-client-0:7.3.2-2.Final_redhat_2.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jbossas-core-0:7.3.2-2.Final_redhat_2.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jboss-as-core-security-0:7.3.2-2.Final_redhat_2.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jboss-as-deployment-repository-0:7.3.2-2.Final_redhat_2.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jboss-as-deployment-scanner-0:7.3.2-2.Final_redhat_2.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jboss-as-domain-http-0:7.3.2-2.Final_redhat_2.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jboss-as-domain-management-0:7.3.2-2.Final_redhat_2.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jboss-as-ee-0:7.3.2-2.Final_redhat_2.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jboss-as-ee-deployment-0:7.3.2-2.Final_redhat_2.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jboss-as-ejb3-0:7.3.2-2.Final_redhat_2.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jboss-as-embedded-0:7.3.2-2.Final_redhat_2.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jboss-as-host-controller-0:7.3.2-2.Final_redhat_2.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jboss-as-jacorb-0:7.3.2-2.Final_redhat_2.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jbossas-javadocs-0:7.3.2-2.1.Final_redhat_2.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jboss-as-jaxr-0:7.3.2-2.Final_redhat_2.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jboss-as-jaxrs-0:7.3.2-2.Final_redhat_2.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jboss-as-jdr-0:7.3.2-2.Final_redhat_2.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jboss-as-jmx-0:7.3.2-2.Final_redhat_2.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jboss-as-jpa-0:7.3.2-2.Final_redhat_2.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jboss-as-jsf-0:7.3.2-2.Final_redhat_2.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jboss-as-jsr77-0:7.3.2-2.Final_redhat_2.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jboss-as-logging-0:7.3.2-2.Final_redhat_2.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jboss-as-mail-0:7.3.2-2.Final_redhat_2.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jboss-as-management-client-content-0:7.3.2-2.Final_redhat_2.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jboss-as-messaging-0:7.3.2-2.Final_redhat_2.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jboss-as-modcluster-0:7.3.2-2.Final_redhat_2.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jbossas-modules-eap-0:7.3.2-2.Final_redhat_2.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jboss-as-naming-0:7.3.2-2.Final_redhat_2.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jboss-as-network-0:7.3.2-2.Final_redhat_2.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jboss-as-osgi-0:7.3.2-2.Final_redhat_2.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jboss-as-osgi-configadmin-0:7.3.2-2.Final_redhat_2.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jboss-as-osgi-service-0:7.3.2-2.Final_redhat_2.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jboss-as-platform-mbean-0:7.3.2-2.Final_redhat_2.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jboss-as-pojo-0:7.3.2-2.Final_redhat_2.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jboss-as-process-controller-0:7.3.2-2.Final_redhat_2.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jbossas-product-eap-0:7.3.2-2.Final_redhat_2.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jboss-as-protocol-0:7.3.2-2.Final_redhat_2.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jboss-as-remoting-0:7.3.2-2.Final_redhat_2.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jboss-as-sar-0:7.3.2-2.Final_redhat_2.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jboss-as-security-0:7.3.2-2.Final_redhat_2.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jboss-as-server-0:7.3.2-2.Final_redhat_2.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jboss-as-system-jmx-0:7.3.2-2.Final_redhat_2.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jboss-as-threads-0:7.3.2-2.Final_redhat_2.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jboss-as-transactions-0:7.3.2-2.Final_redhat_2.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jboss-as-version-0:7.3.2-2.Final_redhat_2.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jboss-as-web-0:7.3.2-2.Final_redhat_2.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jboss-as-webservices-0:7.3.2-2.Final_redhat_2.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jboss-as-weld-0:7.3.2-2.Final_redhat_2.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jboss-as-xts-0:7.3.2-2.Final_redhat_2.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jboss-el-api_2.2_spec-0:1.0.4-2.Final_redhat_1.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jboss-modules-0:1.3.3-1.Final_redhat_1.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
jbossweb-0:7.3.1-1.Final_redhat_1.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0344	2014-03-31T00:00:00Z
Red Hat JBoss Enterprise Web Server 2 for RHEL 5
tomcat6-0:6.0.37-19_patch_04.ep6.el5	cpe:/a:redhat:jboss_enterprise_web_server:2::el5	RHSA-2014:0525	2014-05-21T00:00:00Z
tomcat7-0:7.0.40-13_patch_02.ep6.el5	cpe:/a:redhat:jboss_enterprise_web_server:2::el5	RHSA-2014:0526	2014-05-21T00:00:00Z
Red Hat JBoss Enterprise Web Server 2 for RHEL 6
tomcat6-0:6.0.37-27_patch_04.ep6.el6	cpe:/a:redhat:jboss_enterprise_web_server:2::el6	RHSA-2014:0525	2014-05-21T00:00:00Z
tomcat7-0:7.0.40-9_patch_02.ep6.el6	cpe:/a:redhat:jboss_enterprise_web_server:2::el6	RHSA-2014:0526	2014-05-21T00:00:00Z
Red Hat JBoss Fuse Service Works 6.0
jbossweb	cpe:/a:redhat:jboss_fuse_service_works:6.0	RHSA-2014:0459	2014-04-30T00:00:00Z
Red Hat JBoss Operations Network 3.2
	cpe:/a:redhat:jboss_operations_network:3.2.1	RHSA-2014:0511	2014-05-15T00:00:00Z
Red Hat JBoss Portal 6.2
jbossweb	cpe:/a:redhat:jboss_enterprise_portal_platform:6.2	RHSA-2015:1009	2015-05-14T00:00:00Z
Red Hat JBoss Web Server 2.0
tomcat7	cpe:/a:redhat:jboss_enterprise_web_server:2.0	RHSA-2014:0527	2014-05-21T00:00:00Z
tomcat6	cpe:/a:redhat:jboss_enterprise_web_server:2.0	RHSA-2014:0528	2014-05-21T00:00:00Z

References

Link	Providers
http://advisories.mageia.org/MGASA-2014-0148.html
http://marc.info/?l=bugtraq&m=141390017113542&w=2
http://marc.info/?l=bugtraq&m=144498216801440&w=2
http://rhn.redhat.com/errata/RHSA-2014-0343.html
http://rhn.redhat.com/errata/RHSA-2014-0344.html
http://rhn.redhat.com/errata/RHSA-2014-0345.html
http://seclists.org/fulldisclosure/2014/Dec/23
http://secunia.com/advisories/57675
http://secunia.com/advisories/59036
http://secunia.com/advisories/59675
http://secunia.com/advisories/59722
http://secunia.com/advisories/59724
http://secunia.com/advisories/59733
http://secunia.com/advisories/59873
http://svn.apache.org/viewvc?view=revision&revision=1521829
http://svn.apache.org/viewvc?view=revision&revision=1521854
http://svn.apache.org/viewvc?view=revision&revision=1552565
http://tomcat.apache.org/security-6.html
http://tomcat.apache.org/security-7.html
http://tomcat.apache.org/security-8.html
http://www-01.ibm.com/support/docview.wss?uid=swg21667883
http://www-01.ibm.com/support/docview.wss?uid=swg21675886
http://www-01.ibm.com/support/docview.wss?uid=swg21677147
http://www-01.ibm.com/support/docview.wss?uid=swg21678113
http://www-01.ibm.com/support/docview.wss?uid=swg21678231
http://www.debian.org/security/2016/dsa-3530
http://www.mandriva.com/security/advisories?name=MDVSA-2015:052
http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html
http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html
http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html
http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html
http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html
http://www.securityfocus.com/archive/1/534161/100/0/threaded
http://www.securityfocus.com/bid/65773
http://www.ubuntu.com/usn/USN-2130-1
http://www.vmware.com/security/advisories/VMSA-2014-0012.html
https://bugzilla.redhat.com/show_bug.cgi?id=1069921
https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04851013
https://lists.apache.org/thread.html/37220405a377c0182d2afdbc36461c4783b2930fbeae3a17f1333113%40%3Cdev.tomcat.apache.org%3E
https://lists.apache.org/thread.html/39ae1f0bd5867c15755a6f959b271ade1aea04ccdc3b2e639dcd903b%40%3Cdev.tomcat.apache.org%3E
https://lists.apache.org/thread.html/b84ad1258a89de5c9c853c7f2d3ad77e5b8b2930be9e132d5cef6b95%40%3Cdev.tomcat.apache.org%3E
https://lists.apache.org/thread.html/b8a1bf18155b552dcf9a928ba808cbadad84c236d85eab3033662cfb%40%3Cdev.tomcat.apache.org%3E
https://lists.apache.org/thread.html/r03c597a64de790ba42c167efacfa23300c3d6c9fe589ab87fe02859c%40%3Cdev.tomcat.apache.org%3E
https://lists.apache.org/thread.html/r587e50b86c1a96ee301f751d50294072d142fd6dc08a8987ae9f3a9b%40%3Cdev.tomcat.apache.org%3E
https://nvd.nist.gov/vuln/detail/CVE-2013-4286
https://rhn.redhat.com/errata/RHSA-2014-0686.html
https://www.cve.org/CVERecord?id=CVE-2013-4286

History

No history.

MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2014-02-26T11:00:00

Updated: 2024-08-06T16:38:01.900Z

Reserved: 2013-06-12T00:00:00

Link: CVE-2013-4286

Vulnrichment

No data.

NVD

Status : Modified

Published: 2014-02-26T14:55:08.160

Modified: 2023-11-07T02:16:12.017

Link: CVE-2013-4286

Redhat

Severity : Moderate

Publid Date: 2014-02-25T00:00:00Z

Links: CVE-2013-4286 - Bugzilla

Metrics

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact None

Affected Vendors & Products

Metrics

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact None

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object