CVE-2016-9597 in JBossinfo

Summary

It was found that Red Hat JBoss Core Services erratum RHSA-2016:2957 for CVE-2016-3705 did not actually include the fix for the issue found in libxml2, making it vulnerable to a Denial of Service attack due to a Stack Overflow. This is a regression CVE for the same issue as CVE-2016-3705.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Responsible

Reservation

11/22/2016

Disclosure

07/30/2018

Moderation

VulDB entry created

Entries

VDB-122322

CPE

ready

CWE

CWE-119 (Confirmed)

CVSS

6.4

EPSS

0.01251

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-9597
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-9597
CVE Details	https://www.cvedetails.com/cve/CVE-2016-9597/

◂ Previous Overview Next ▸