CVE-2016-5398 in JBoss BPM Suiteinformação

Sumário

de MITRE

Cross-site scripting (XSS) vulnerability in Business Process Editor in Red Hat JBoss BPM Suite before 6.3.3 allows remote authenticated users to inject arbitrary web script or HTML by levering permission to create business processes.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Reservar

10/06/2016

Divulgação

03/10/2016

Moderação

aceite

Entrada

VDB-92316

CPE

pronto

CWE

CWE-79 (confirmado)

CVSS

5.4 (NVD)

EPSS

0.00191

KEV

não

Atividades

muito baixo

Sector

Pharma, Police, ...

Fontes

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-5398
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-5398
CVE Details	https://www.cvedetails.com/cve/CVE-2016-5398/

◂ Voltar Visão Geral Próximo ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!