CVE-2017-7463 in JBoss BRMSالمعلومات

الملخص

بحسب MITRE

JBoss BRMS 6 and BPM Suite 6 before 6.4.3 are vulnerable to a reflected XSS via artifact upload. A malformed XML file, if uploaded, causes an error message to appear that includes part of the bad XML code verbatim without filtering out scripts. Successful exploitation would allow execution of script code within the context of the affected user.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

مسؤول

Red Hat, Inc.

حجز

05/04/2017

إفشاء

27/07/2018

الاعتدال

تمت الموافقة

إدخال

VDB-122294

EPSS

0.00655

KEV

لا

النشاطات

منخفض جدًا

القطاع

Hospital, Hostingprovider, ...

المصادر

MITREhttps://www.cve.org/CVERecord?id=CVE-2017-7463
NVDhttps://nvd.nist.gov/vuln/detail/CVE-2017-7463
CVE Detailshttps://www.cvedetails.com/cve/CVE-2017-7463/

التالي نظرة عامة السابق

Want to stay up to date on a daily basis?

Enable the mail alert feature now!