CVE-2014-0230 - Vulnerability Details

- tomcat: non-persistent DoS attack by feeding data by aborting an upload

Description

Apache Tomcat 6.x before 6.0.44, 7.x before 7.0.55, and 8.x before 8.0.9 does not properly handle cases where an HTTP response occurs before finishing the reading of an entire request body, which allows remote attackers to cause a denial of service (thread consumption) via a series of aborted upload attempts.

Published: 2015-06-07

Score: 7.8 High

EPSS: 5.7% Low

KEV: No

Impact:

Action:

Analysis

No analysis available yet.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

n/a

affected

Version	Status	Constraints
`n/a`	affected	—

Configuration 1 [-]

OR	cpe:2.3:a:apache:tomcat:6.0.0:::::::*
	cpe:2.3:a:apache:tomcat:6.0.0:alpha::::::
	cpe:2.3:a:apache:tomcat:6.0.1:::::::*
	cpe:2.3:a:apache:tomcat:6.0.1:alpha::::::
	cpe:2.3:a:apache:tomcat:6.0.2:::::::*
	cpe:2.3:a:apache:tomcat:6.0.2:alpha::::::
	cpe:2.3:a:apache:tomcat:6.0.2:beta::::::
	cpe:2.3:a:apache:tomcat:6.0.3:::::::*
	cpe:2.3:a:apache:tomcat:6.0.4:::::::*
	cpe:2.3:a:apache:tomcat:6.0.4:alpha::::::
	cpe:2.3:a:apache:tomcat:6.0.5:::::::*
	cpe:2.3:a:apache:tomcat:6.0.6:::::::*
	cpe:2.3:a:apache:tomcat:6.0.6:alpha::::::
	cpe:2.3:a:apache:tomcat:6.0.7:::::::*
	cpe:2.3:a:apache:tomcat:6.0.7:alpha::::::
	cpe:2.3:a:apache:tomcat:6.0.7:beta::::::
	cpe:2.3:a:apache:tomcat:6.0.8:::::::*
	cpe:2.3:a:apache:tomcat:6.0.8:alpha::::::
	cpe:2.3:a:apache:tomcat:6.0.9:::::::*
	cpe:2.3:a:apache:tomcat:6.0.9:beta::::::
	cpe:2.3:a:apache:tomcat:6.0.10:::::::*
	cpe:2.3:a:apache:tomcat:6.0.11:::::::*
	cpe:2.3:a:apache:tomcat:6.0.12:::::::*
	cpe:2.3:a:apache:tomcat:6.0.13:::::::*
	cpe:2.3:a:apache:tomcat:6.0.14:::::::*
	cpe:2.3:a:apache:tomcat:6.0.15:::::::*
	cpe:2.3:a:apache:tomcat:6.0.16:::::::*
	cpe:2.3:a:apache:tomcat:6.0.17:::::::*
	cpe:2.3:a:apache:tomcat:6.0.18:::::::*
	cpe:2.3:a:apache:tomcat:6.0.19:::::::*
	cpe:2.3:a:apache:tomcat:6.0.20:::::::*
	cpe:2.3:a:apache:tomcat:6.0.24:::::::*
	cpe:2.3:a:apache:tomcat:6.0.26:::::::*
	cpe:2.3:a:apache:tomcat:6.0.27:::::::*
	cpe:2.3:a:apache:tomcat:6.0.28:::::::*
	cpe:2.3:a:apache:tomcat:6.0.29:::::::*
	cpe:2.3:a:apache:tomcat:6.0.30:::::::*
	cpe:2.3:a:apache:tomcat:6.0.31:::::::*
	cpe:2.3:a:apache:tomcat:6.0.32:::::::*
	cpe:2.3:a:apache:tomcat:6.0.33:::::::*
	cpe:2.3:a:apache:tomcat:6.0.35:::::::*
	cpe:2.3:a:apache:tomcat:6.0.36:::::::*
	cpe:2.3:a:apache:tomcat:6.0.37:::::::*
	cpe:2.3:a:apache:tomcat:6.0.39:::::::*
	cpe:2.3:a:apache:tomcat:6.0.41:::::::*
	cpe:2.3:a:apache:tomcat:6.0.43:::::::*
	cpe:2.3:a:apache:tomcat:7.0.0:::::::*
	cpe:2.3:a:apache:tomcat:7.0.0:beta::::::
	cpe:2.3:a:apache:tomcat:7.0.1:::::::*
	cpe:2.3:a:apache:tomcat:7.0.2:::::::*
	cpe:2.3:a:apache:tomcat:7.0.2:beta::::::
	cpe:2.3:a:apache:tomcat:7.0.3:::::::*
	cpe:2.3:a:apache:tomcat:7.0.4:::::::*
	cpe:2.3:a:apache:tomcat:7.0.4:beta::::::
	cpe:2.3:a:apache:tomcat:7.0.5:::::::*
	cpe:2.3:a:apache:tomcat:7.0.6:::::::*
	cpe:2.3:a:apache:tomcat:7.0.7:::::::*
	cpe:2.3:a:apache:tomcat:7.0.8:::::::*
	cpe:2.3:a:apache:tomcat:7.0.9:::::::*
	cpe:2.3:a:apache:tomcat:7.0.10:::::::*
	cpe:2.3:a:apache:tomcat:7.0.11:::::::*
	cpe:2.3:a:apache:tomcat:7.0.12:::::::*
	cpe:2.3:a:apache:tomcat:7.0.13:::::::*
	cpe:2.3:a:apache:tomcat:7.0.14:::::::*
cpe:2.3:a:apache:tomcat:7.0.15:::::::*
cpe:2.3:a:apache:tomcat:7.0.16:::::::*
cpe:2.3:a:apache:tomcat:7.0.17:::::::*
cpe:2.3:a:apache:tomcat:7.0.18:::::::*
cpe:2.3:a:apache:tomcat:7.0.19:::::::*
cpe:2.3:a:apache:tomcat:7.0.20:::::::*
cpe:2.3:a:apache:tomcat:7.0.21:::::::*
cpe:2.3:a:apache:tomcat:7.0.22:::::::*
cpe:2.3:a:apache:tomcat:7.0.23:::::::*
cpe:2.3:a:apache:tomcat:7.0.24:::::::*
cpe:2.3:a:apache:tomcat:7.0.25:::::::*
cpe:2.3:a:apache:tomcat:7.0.26:::::::*
cpe:2.3:a:apache:tomcat:7.0.27:::::::*
cpe:2.3:a:apache:tomcat:7.0.28:::::::*
cpe:2.3:a:apache:tomcat:7.0.29:::::::*
cpe:2.3:a:apache:tomcat:7.0.30:::::::*
cpe:2.3:a:apache:tomcat:7.0.31:::::::*
cpe:2.3:a:apache:tomcat:7.0.32:::::::*
cpe:2.3:a:apache:tomcat:7.0.33:::::::*
cpe:2.3:a:apache:tomcat:7.0.34:::::::*
cpe:2.3:a:apache:tomcat:7.0.35:::::::*
cpe:2.3:a:apache:tomcat:7.0.36:::::::*
cpe:2.3:a:apache:tomcat:7.0.37:::::::*
cpe:2.3:a:apache:tomcat:7.0.38:::::::*
cpe:2.3:a:apache:tomcat:7.0.39:::::::*
cpe:2.3:a:apache:tomcat:7.0.40:::::::*
cpe:2.3:a:apache:tomcat:7.0.41:::::::*
cpe:2.3:a:apache:tomcat:7.0.42:::::::*
cpe:2.3:a:apache:tomcat:7.0.43:::::::*
cpe:2.3:a:apache:tomcat:7.0.44:::::::*
cpe:2.3:a:apache:tomcat:7.0.45:::::::*
cpe:2.3:a:apache:tomcat:7.0.46:::::::*
cpe:2.3:a:apache:tomcat:7.0.47:::::::*
cpe:2.3:a:apache:tomcat:7.0.48:::::::*
cpe:2.3:a:apache:tomcat:7.0.49:::::::*
cpe:2.3:a:apache:tomcat:7.0.50:::::::*
cpe:2.3:a:apache:tomcat:7.0.52:::::::*
cpe:2.3:a:apache:tomcat:7.0.53:::::::*
cpe:2.3:a:apache:tomcat:7.0.54:::::::*
cpe:2.3:a:apache:tomcat:8.0.0:rc1::::::
cpe:2.3:a:apache:tomcat:8.0.0:rc10::::::
cpe:2.3:a:apache:tomcat:8.0.0:rc2::::::
cpe:2.3:a:apache:tomcat:8.0.0:rc5::::::
cpe:2.3:a:apache:tomcat:8.0.1:::::::*
cpe:2.3:a:apache:tomcat:8.0.3:::::::*
cpe:2.3:a:apache:tomcat:8.0.5:::::::*
cpe:2.3:a:apache:tomcat:8.0.8:::::::*

Configuration 2 [-]

OR	cpe:2.3:a:oracle:virtualization:4.63:::::::*
	cpe:2.3:a:oracle:virtualization:4.71:::::::*
	cpe:2.3:a:oracle:virtualization:5.1:::::::*

Package	CPE	Advisory	Released Date
Red Hat Enterprise Linux 7
tomcat-0:7.0.69-10.el7	cpe:/o:redhat:enterprise_linux:7	RHSA-2016:2599	2016-11-03T00:00:00Z
Red Hat JBoss Enterprise Application Platform 6.4
	cpe:/a:redhat:jboss_enterprise_application_platform:6.4	RHSA-2016:0599	2016-04-05T00:00:00Z
Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 5
glassfish-jsf-eap6-0:2.1.28-10.SP9_redhat_1.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
hornetq-0:2.3.25-11.SP9_redhat_1.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
infinispan-0:5.2.18-1.Final_redhat_1.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
ironjacamar-eap6-0:1.0.36-1.Final_redhat_1.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jboss-as-appclient-0:7.5.7-2.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jbossas-appclient-0:7.5.7-2.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jbossas-bundles-0:7.5.7-2.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jboss-as-cli-0:7.5.7-2.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jboss-as-client-all-0:7.5.7-2.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jboss-as-clustering-0:7.5.7-2.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jboss-as-cmp-0:7.5.7-2.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jboss-as-configadmin-0:7.5.7-2.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jboss-as-connector-0:7.5.7-2.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jboss-as-console-0:2.5.12-1.Final_redhat_1.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jboss-as-controller-0:7.5.7-2.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jboss-as-controller-client-0:7.5.7-2.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jbossas-core-0:7.5.7-2.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jboss-as-core-security-0:7.5.7-2.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jboss-as-deployment-repository-0:7.5.7-2.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jboss-as-deployment-scanner-0:7.5.7-2.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jbossas-domain-0:7.5.7-2.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jboss-as-domain-http-0:7.5.7-2.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jboss-as-domain-management-0:7.5.7-2.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jboss-as-ee-0:7.5.7-2.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jboss-as-ee-deployment-0:7.5.7-2.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jboss-as-ejb3-0:7.5.7-2.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jboss-as-embedded-0:7.5.7-2.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jboss-as-host-controller-0:7.5.7-2.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jboss-as-jacorb-0:7.5.7-2.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jbossas-javadocs-0:7.5.7-3.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jboss-as-jaxr-0:7.5.7-2.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jboss-as-jaxrs-0:7.5.7-2.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jboss-as-jdr-0:7.5.7-2.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jboss-as-jmx-0:7.5.7-2.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jboss-as-jpa-0:7.5.7-2.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jboss-as-jsf-0:7.5.7-2.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jboss-as-jsr77-0:7.5.7-2.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jboss-as-logging-0:7.5.7-2.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jboss-as-mail-0:7.5.7-2.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jboss-as-management-client-content-0:7.5.7-2.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jboss-as-messaging-0:7.5.7-2.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jboss-as-modcluster-0:7.5.7-2.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jbossas-modules-eap-0:7.5.7-2.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jboss-as-naming-0:7.5.7-2.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jboss-as-network-0:7.5.7-2.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jboss-as-osgi-0:7.5.7-2.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jboss-as-osgi-configadmin-0:7.5.7-2.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jboss-as-osgi-service-0:7.5.7-2.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jboss-as-picketlink-0:7.5.7-2.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jboss-as-platform-mbean-0:7.5.7-2.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jboss-as-pojo-0:7.5.7-2.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jboss-as-process-controller-0:7.5.7-2.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jbossas-product-eap-0:7.5.7-2.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jboss-as-protocol-0:7.5.7-2.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jboss-as-remoting-0:7.5.7-2.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jboss-as-sar-0:7.5.7-2.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jboss-as-security-0:7.5.7-2.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jboss-as-server-0:7.5.7-2.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jbossas-standalone-0:7.5.7-2.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jboss-as-system-jmx-0:7.5.7-2.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jboss-as-threads-0:7.5.7-2.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jboss-as-transactions-0:7.5.7-2.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jboss-as-version-0:7.5.7-2.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jboss-as-web-0:7.5.7-2.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jboss-as-webservices-0:7.5.7-2.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jbossas-welcome-content-eap-0:7.5.7-2.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jboss-as-weld-0:7.5.7-2.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jboss-as-xts-0:7.5.7-2.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jboss-hal-0:2.5.12-1.Final_redhat_1.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jboss-security-negotiation-0:2.3.11-1.Final_redhat_1.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
jbossweb-0:7.5.15-1.Final_redhat_1.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
resteasy-0:2.3.13-1.Final_redhat_1.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
weld-core-0:1.1.33-1.Final_redhat_1.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2016:0595	2016-04-05T00:00:00Z
Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6
glassfish-jsf-eap6-0:2.1.28-10.SP9_redhat_1.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
hornetq-0:2.3.25-11.SP9_redhat_1.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
infinispan-0:5.2.18-1.Final_redhat_1.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
ironjacamar-eap6-0:1.0.36-1.Final_redhat_1.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jboss-as-appclient-0:7.5.7-2.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jbossas-appclient-0:7.5.7-2.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jbossas-bundles-0:7.5.7-2.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jboss-as-cli-0:7.5.7-2.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jboss-as-client-all-0:7.5.7-2.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jboss-as-clustering-0:7.5.7-2.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jboss-as-cmp-0:7.5.7-2.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jboss-as-configadmin-0:7.5.7-2.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jboss-as-connector-0:7.5.7-2.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jboss-as-console-0:2.5.12-1.Final_redhat_1.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jboss-as-controller-0:7.5.7-2.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jboss-as-controller-client-0:7.5.7-2.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jbossas-core-0:7.5.7-2.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jboss-as-core-security-0:7.5.7-2.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jboss-as-deployment-repository-0:7.5.7-2.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jboss-as-deployment-scanner-0:7.5.7-2.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jbossas-domain-0:7.5.7-2.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jboss-as-domain-http-0:7.5.7-2.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jboss-as-domain-management-0:7.5.7-2.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jboss-as-ee-0:7.5.7-2.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jboss-as-ee-deployment-0:7.5.7-2.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jboss-as-ejb3-0:7.5.7-2.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jboss-as-embedded-0:7.5.7-2.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jboss-as-host-controller-0:7.5.7-2.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jboss-as-jacorb-0:7.5.7-2.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jbossas-javadocs-0:7.5.7-3.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jboss-as-jaxr-0:7.5.7-2.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jboss-as-jaxrs-0:7.5.7-2.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jboss-as-jdr-0:7.5.7-2.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jboss-as-jmx-0:7.5.7-2.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jboss-as-jpa-0:7.5.7-2.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jboss-as-jsf-0:7.5.7-2.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jboss-as-jsr77-0:7.5.7-2.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jboss-as-logging-0:7.5.7-2.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jboss-as-mail-0:7.5.7-2.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jboss-as-management-client-content-0:7.5.7-2.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jboss-as-messaging-0:7.5.7-2.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jboss-as-modcluster-0:7.5.7-2.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jbossas-modules-eap-0:7.5.7-2.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jboss-as-naming-0:7.5.7-2.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jboss-as-network-0:7.5.7-2.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jboss-as-osgi-0:7.5.7-2.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jboss-as-osgi-configadmin-0:7.5.7-2.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jboss-as-osgi-service-0:7.5.7-2.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jboss-as-picketlink-0:7.5.7-2.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jboss-as-platform-mbean-0:7.5.7-2.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jboss-as-pojo-0:7.5.7-2.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jboss-as-process-controller-0:7.5.7-2.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jbossas-product-eap-0:7.5.7-2.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jboss-as-protocol-0:7.5.7-2.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jboss-as-remoting-0:7.5.7-2.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jboss-as-sar-0:7.5.7-2.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jboss-as-security-0:7.5.7-2.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jboss-as-server-0:7.5.7-2.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jbossas-standalone-0:7.5.7-2.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jboss-as-system-jmx-0:7.5.7-2.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jboss-as-threads-0:7.5.7-2.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jboss-as-transactions-0:7.5.7-2.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jboss-as-version-0:7.5.7-2.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jboss-as-web-0:7.5.7-2.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jboss-as-webservices-0:7.5.7-2.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jbossas-welcome-content-eap-0:7.5.7-2.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jboss-as-weld-0:7.5.7-2.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jboss-as-xts-0:7.5.7-2.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jboss-hal-0:2.5.12-1.Final_redhat_1.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jboss-security-negotiation-0:2.3.11-1.Final_redhat_1.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jbossweb-0:7.5.15-1.Final_redhat_1.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
resteasy-0:2.3.13-1.Final_redhat_1.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
weld-core-0:1.1.33-1.Final_redhat_1.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0596	2016-04-05T00:00:00Z
jboss-ec2-eap-0:7.5.7-2.Final_redhat_3.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2016:0598	2016-04-05T00:00:00Z
Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7
glassfish-jsf-eap6-0:2.1.28-10.SP9_redhat_1.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
hornetq-0:2.3.25-11.SP9_redhat_1.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
infinispan-0:5.2.18-1.Final_redhat_1.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
ironjacamar-eap6-0:1.0.36-1.Final_redhat_1.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jboss-as-appclient-0:7.5.7-2.Final_redhat_3.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jbossas-appclient-0:7.5.7-2.Final_redhat_3.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jbossas-bundles-0:7.5.7-2.Final_redhat_3.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jboss-as-cli-0:7.5.7-2.Final_redhat_3.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jboss-as-client-all-0:7.5.7-2.Final_redhat_3.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jboss-as-clustering-0:7.5.7-2.Final_redhat_3.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jboss-as-cmp-0:7.5.7-2.Final_redhat_3.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jboss-as-configadmin-0:7.5.7-2.Final_redhat_3.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jboss-as-connector-0:7.5.7-2.Final_redhat_3.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jboss-as-console-0:2.5.12-1.Final_redhat_1.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jboss-as-controller-0:7.5.7-2.Final_redhat_3.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jboss-as-controller-client-0:7.5.7-2.Final_redhat_3.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jbossas-core-0:7.5.7-2.Final_redhat_3.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jboss-as-core-security-0:7.5.7-2.Final_redhat_3.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jboss-as-deployment-repository-0:7.5.7-2.Final_redhat_3.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jboss-as-deployment-scanner-0:7.5.7-2.Final_redhat_3.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jbossas-domain-0:7.5.7-2.Final_redhat_3.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jboss-as-domain-http-0:7.5.7-2.Final_redhat_3.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jboss-as-domain-management-0:7.5.7-2.Final_redhat_3.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jboss-as-ee-0:7.5.7-2.Final_redhat_3.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jboss-as-ee-deployment-0:7.5.7-2.Final_redhat_3.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jboss-as-ejb3-0:7.5.7-2.Final_redhat_3.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jboss-as-embedded-0:7.5.7-2.Final_redhat_3.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jboss-as-host-controller-0:7.5.7-2.Final_redhat_3.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jboss-as-jacorb-0:7.5.7-2.Final_redhat_3.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jbossas-javadocs-0:7.5.7-3.Final_redhat_3.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jboss-as-jaxr-0:7.5.7-2.Final_redhat_3.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jboss-as-jaxrs-0:7.5.7-2.Final_redhat_3.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jboss-as-jdr-0:7.5.7-2.Final_redhat_3.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jboss-as-jmx-0:7.5.7-2.Final_redhat_3.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jboss-as-jpa-0:7.5.7-2.Final_redhat_3.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jboss-as-jsf-0:7.5.7-2.Final_redhat_3.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jboss-as-jsr77-0:7.5.7-2.Final_redhat_3.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jboss-as-logging-0:7.5.7-2.Final_redhat_3.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jboss-as-mail-0:7.5.7-2.Final_redhat_3.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jboss-as-management-client-content-0:7.5.7-2.Final_redhat_3.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jboss-as-messaging-0:7.5.7-2.Final_redhat_3.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jboss-as-modcluster-0:7.5.7-2.Final_redhat_3.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jbossas-modules-eap-0:7.5.7-2.Final_redhat_3.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jboss-as-naming-0:7.5.7-2.Final_redhat_3.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jboss-as-network-0:7.5.7-2.Final_redhat_3.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jboss-as-osgi-0:7.5.7-2.Final_redhat_3.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jboss-as-osgi-configadmin-0:7.5.7-2.Final_redhat_3.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jboss-as-osgi-service-0:7.5.7-2.Final_redhat_3.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jboss-as-picketlink-0:7.5.7-2.Final_redhat_3.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jboss-as-platform-mbean-0:7.5.7-2.Final_redhat_3.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jboss-as-pojo-0:7.5.7-2.Final_redhat_3.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jboss-as-process-controller-0:7.5.7-2.Final_redhat_3.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jbossas-product-eap-0:7.5.7-2.Final_redhat_3.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jboss-as-protocol-0:7.5.7-2.Final_redhat_3.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jboss-as-remoting-0:7.5.7-2.Final_redhat_3.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jboss-as-sar-0:7.5.7-2.Final_redhat_3.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jboss-as-security-0:7.5.7-2.Final_redhat_3.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jboss-as-server-0:7.5.7-2.Final_redhat_3.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jbossas-standalone-0:7.5.7-2.Final_redhat_3.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jboss-as-system-jmx-0:7.5.7-2.Final_redhat_3.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jboss-as-threads-0:7.5.7-2.Final_redhat_3.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jboss-as-transactions-0:7.5.7-2.Final_redhat_3.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jboss-as-version-0:7.5.7-2.Final_redhat_3.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jboss-as-web-0:7.5.7-2.Final_redhat_3.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jboss-as-webservices-0:7.5.7-2.Final_redhat_3.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jbossas-welcome-content-eap-0:7.5.7-2.Final_redhat_3.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jboss-as-weld-0:7.5.7-2.Final_redhat_3.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jboss-as-xts-0:7.5.7-2.Final_redhat_3.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jboss-hal-0:2.5.12-1.Final_redhat_1.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jboss-security-negotiation-0:2.3.11-1.Final_redhat_1.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
jbossweb-0:7.5.15-1.Final_redhat_1.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
resteasy-0:2.3.13-1.Final_redhat_1.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
weld-core-0:1.1.33-1.Final_redhat_1.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_application_platform:6::el7	RHSA-2016:0597	2016-04-05T00:00:00Z
Red Hat JBoss Enterprise Web Server 2 for RHEL 5
tomcat6-0:6.0.41-15_patch_04.ep6.el5	cpe:/a:redhat:jboss_enterprise_web_server:2::el5	RHSA-2015:1622	2015-08-13T00:00:00Z
tomcat7-0:7.0.54-19_patch_04.ep6.el5	cpe:/a:redhat:jboss_enterprise_web_server:2::el5	RHSA-2015:1622	2015-08-13T00:00:00Z
Red Hat JBoss Enterprise Web Server 2 for RHEL 6
tomcat6-0:6.0.41-15_patch_04.ep6.el6	cpe:/a:redhat:jboss_enterprise_web_server:2::el6	RHSA-2015:1622	2015-08-13T00:00:00Z
tomcat7-0:7.0.54-19_patch_04.ep6.el6	cpe:/a:redhat:jboss_enterprise_web_server:2::el6	RHSA-2015:1622	2015-08-13T00:00:00Z
Red Hat JBoss Enterprise Web Server 2 for RHEL 7
tomcat6-0:6.0.41-15_patch_04.ep6.el7	cpe:/a:redhat:jboss_enterprise_web_server:2::el7	RHSA-2015:1622	2015-08-13T00:00:00Z
tomcat7-0:7.0.54-20_patch_04.ep6.el7	cpe:/a:redhat:jboss_enterprise_web_server:2::el7	RHSA-2015:1622	2015-08-13T00:00:00Z
Red Hat JBoss Web Server 2.1
	cpe:/a:redhat:jboss_enterprise_web_server:2.1.0	RHSA-2015:1621	2015-08-13T00:00:00Z
Red Hat JBoss Web Server 3.0
	cpe:/a:redhat:jboss_enterprise_web_server:3.0	RHSA-2015:2661	2015-12-16T00:00:00Z
Red Hat JBoss Web Server 3 for RHEL 6
mod_bmx-0:0.9.5-5.GA.ep7.el6	cpe:/a:redhat:jboss_enterprise_web_server:3.0::el6	RHEA-2015:1771	2015-09-10T00:00:00Z
mod_cluster-0:1.3.1-8.Final_redhat_3.1.ep7.el6	cpe:/a:redhat:jboss_enterprise_web_server:3.0::el6	RHEA-2015:1771	2015-09-10T00:00:00Z
mod_jk-0:1.2.40-8.redhat_1.ep7.el6	cpe:/a:redhat:jboss_enterprise_web_server:3.0::el6	RHEA-2015:1771	2015-09-10T00:00:00Z
mod_security-jws3-0:2.8.0-6.GA.ep7.el6	cpe:/a:redhat:jboss_enterprise_web_server:3.0::el6	RHEA-2015:1771	2015-09-10T00:00:00Z
tomcat7-0:7.0.59-26_patch_00.ep7.el6	cpe:/a:redhat:jboss_enterprise_web_server:3.0::el6	RHEA-2015:1771	2015-09-10T00:00:00Z
tomcat8-0:8.0.18-25_patch_00.ep7.el6	cpe:/a:redhat:jboss_enterprise_web_server:3.0::el6	RHEA-2015:1771	2015-09-10T00:00:00Z
apache-commons-collections-eap6-0:3.2.1-18.redhat_7.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_web_server:3.0::el6	RHSA-2015:2659	2015-12-16T00:00:00Z
httpd24-0:2.4.6-59.ep7.el6	cpe:/a:redhat:jboss_enterprise_web_server:3.0::el6	RHSA-2015:2659	2015-12-16T00:00:00Z
mod_bmx-0:0.9.5-7.GA.ep7.el6	cpe:/a:redhat:jboss_enterprise_web_server:3.0::el6	RHSA-2015:2659	2015-12-16T00:00:00Z
mod_cluster-native-0:1.3.1-6.Final_redhat_2.ep7.el6	cpe:/a:redhat:jboss_enterprise_web_server:3.0::el6	RHSA-2015:2659	2015-12-16T00:00:00Z
tomcat7-0:7.0.59-42_patch_01.ep7.el6	cpe:/a:redhat:jboss_enterprise_web_server:3.0::el6	RHSA-2015:2659	2015-12-16T00:00:00Z
tomcat8-0:8.0.18-52_patch_01.ep7.el6	cpe:/a:redhat:jboss_enterprise_web_server:3.0::el6	RHSA-2015:2659	2015-12-16T00:00:00Z
tomcat-vault-0:1.0.8-4.Final_redhat_4.1.ep7.el6	cpe:/a:redhat:jboss_enterprise_web_server:3.0::el6	RHSA-2015:2659	2015-12-16T00:00:00Z
Red Hat JBoss Web Server 3 for RHEL 7
mod_bmx-0:0.9.5-5.GA.ep7.el7	cpe:/a:redhat:jboss_enterprise_web_server:3.0::el7	RHEA-2015:1770	2015-09-10T00:00:00Z
mod_cluster-0:1.3.1-8.Final_redhat_3.1.ep7.el7	cpe:/a:redhat:jboss_enterprise_web_server:3.0::el7	RHEA-2015:1770	2015-09-10T00:00:00Z
mod_jk-0:1.2.40-8.redhat_1.ep7.el7	cpe:/a:redhat:jboss_enterprise_web_server:3.0::el7	RHEA-2015:1770	2015-09-10T00:00:00Z
mod_security-jws3-0:2.8.0-6.GA.ep7.el7	cpe:/a:redhat:jboss_enterprise_web_server:3.0::el7	RHEA-2015:1770	2015-09-10T00:00:00Z
tomcat7-0:7.0.59-26_patch_00.ep7.el7	cpe:/a:redhat:jboss_enterprise_web_server:3.0::el7	RHEA-2015:1770	2015-09-10T00:00:00Z
tomcat8-0:8.0.18-25_patch_00.ep7.el7	cpe:/a:redhat:jboss_enterprise_web_server:3.0::el7	RHEA-2015:1770	2015-09-10T00:00:00Z
apache-commons-collections-eap6-0:3.2.1-18.redhat_7.1.ep6.el7	cpe:/a:redhat:jboss_enterprise_web_server:3.0::el7	RHSA-2015:2660	2015-12-16T00:00:00Z
httpd24-0:2.4.6-59.ep7.el7	cpe:/a:redhat:jboss_enterprise_web_server:3.0::el7	RHSA-2015:2660	2015-12-16T00:00:00Z
mod_bmx-0:0.9.5-7.GA.ep7.el7	cpe:/a:redhat:jboss_enterprise_web_server:3.0::el7	RHSA-2015:2660	2015-12-16T00:00:00Z
mod_cluster-native-0:1.3.1-6.Final_redhat_2.ep7.el7	cpe:/a:redhat:jboss_enterprise_web_server:3.0::el7	RHSA-2015:2660	2015-12-16T00:00:00Z
tomcat7-0:7.0.59-42_patch_01.ep7.el7	cpe:/a:redhat:jboss_enterprise_web_server:3.0::el7	RHSA-2015:2660	2015-12-16T00:00:00Z
tomcat8-0:8.0.18-52_patch_01.ep7.el7	cpe:/a:redhat:jboss_enterprise_web_server:3.0::el7	RHSA-2015:2660	2015-12-16T00:00:00Z
tomcat-vault-0:1.0.8-4.Final_redhat_4.1.ep7.el7	cpe:/a:redhat:jboss_enterprise_web_server:3.0::el7	RHSA-2015:2660	2015-12-16T00:00:00Z

No data available yet.

Remediation

No remediation available yet.

Tracking

Sign in to view the affected projects.

Advisories

Source	ID	Title
Debian DLA	DLA-232-1	tomcat6 security update
Debian DSA	DSA-3447-1	tomcat7 security update
Debian DSA	DSA-3530-1	tomcat6 security update
EUVD	EUVD-2022-4851	Apache Tomcat 6.x before 6.0.44, 7.x before 7.0.55, and 8.x before 8.0.9 does not properly handle cases where an HTTP response occurs before finishing the reading of an entire request body, which allows remote attackers to cause a denial of service (thread consumption) via a series of aborted upload attempts.
Github GHSA	GHSA-pxcx-cxq8-4mmw	Uncontrolled Resource Consumption in Apache Tomcat
Ubuntu USN	USN-2654-1	Tomcat vulnerabilities
Ubuntu USN	USN-2655-1	Tomcat vulnerabilities

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Complete

This CVE is not in the KEV list.

The EPSS score is 0.05655.

Key SSVC decision points have not yet been added.

References

Link	Providers
http://mail-archives.apache.org/mod_mbox/tomcat-announce/201505.mbox/%3C554949D1.8030904%40apache.org%3E
http://marc.info/?l=bugtraq&m=144498216801440&w=2
http://marc.info/?l=bugtraq&m=145974991225029&w=2
http://openwall.com/lists/oss-security/2015/04/10/1
http://rhn.redhat.com/errata/RHSA-2015-1621.html
http://rhn.redhat.com/errata/RHSA-2015-1622.html
http://rhn.redhat.com/errata/RHSA-2015-2661.html
http://rhn.redhat.com/errata/RHSA-2016-0595.html
http://rhn.redhat.com/errata/RHSA-2016-0596.html
http://rhn.redhat.com/errata/RHSA-2016-0597.html
http://rhn.redhat.com/errata/RHSA-2016-0598.html
http://rhn.redhat.com/errata/RHSA-2016-0599.html
http://svn.apache.org/viewvc?view=revision&revision=1603770
http://svn.apache.org/viewvc?view=revision&revision=1603775
http://svn.apache.org/viewvc?view=revision&revision=1603779
http://tomcat.apache.org/security-6.html
http://tomcat.apache.org/security-6.html#Fixed_in_Apache_Tomcat_6.0.44
http://tomcat.apache.org/security-7.html
http://tomcat.apache.org/security-7.html#Fixed_in_Apache_Tomcat_7.0.55
http://tomcat.apache.org/security-8.html
http://tomcat.apache.org/security-8.html#Fixed_in_Apache_Tomcat_8.0.9
http://www.debian.org/security/2016/dsa-3447
http://www.debian.org/security/2016/dsa-3530
http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html
http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html
http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html
http://www.securityfocus.com/bid/74475
http://www.ubuntu.com/usn/USN-2654-1
http://www.ubuntu.com/usn/USN-2655-1
https://access.redhat.com/errata/RHSA-2015:2659
https://access.redhat.com/errata/RHSA-2015:2660
https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04851013
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05054964
https://issues.jboss.org/browse/JWS-219
https://issues.jboss.org/browse/JWS-220
https://lists.apache.org/thread.html/37220405a377c0182d2afdbc36461c4783b2930fbeae3a17f1333113%40%3Cdev.tomcat.apache.org%3E
https://lists.apache.org/thread.html/39ae1f0bd5867c15755a6f959b271ade1aea04ccdc3b2e639dcd903b%40%3Cdev.tomcat.apache.org%3E
https://lists.apache.org/thread.html/b84ad1258a89de5c9c853c7f2d3ad77e5b8b2930be9e132d5cef6b95%40%3Cdev.tomcat.apache.org%3E
https://lists.apache.org/thread.html/b8a1bf18155b552dcf9a928ba808cbadad84c236d85eab3033662cfb%40%3Cdev.tomcat.apache.org%3E
https://lists.apache.org/thread.html/r03c597a64de790ba42c167efacfa23300c3d6c9fe589ab87fe02859c%40%3Cdev.tomcat.apache.org%3E
https://lists.apache.org/thread.html/r587e50b86c1a96ee301f751d50294072d142fd6dc08a8987ae9f3a9b%40%3Cdev.tomcat.apache.org%3E
https://lists.apache.org/thread.html/r9136ff5b13e4f1941360b5a309efee2c114a14855578c3a2cbe5d19c%40%3Cdev.tomcat.apache.org%3E
https://nvd.nist.gov/vuln/detail/CVE-2014-0230
https://www.cve.org/CVERecord?id=CVE-2014-0230

History

No history.

Subscriptions

Apache Tomcat

Oracle Virtualization

Redhat Enterprise Linux Jboss Enterprise Application Platform Jboss Enterprise Web Server

MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2015-06-07T23:00:00.000Z

Updated: 2024-08-06T09:05:39.368Z

Reserved: 2013-12-03T00:00:00.000Z

Link: CVE-2014-0230

Vulnrichment

No data.

NVD

Status : Deferred

Published: 2015-06-07T23:59:02.690

Modified: 2025-04-12T10:46:40.837

Link: CVE-2014-0230

Redhat

Severity : Low

Publid Date: 2014-07-19T00:00:00Z

Links: CVE-2014-0230 - Bugzilla

OpenCVE Enrichment

No data.

Weaknesses

Tracking

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Complete

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object