← volver
CVE-2017-7503

CVE-2017-7503

EPSS 2.0%
It was found that the Red Hat JBoss EAP 7.0.5 implementation of javax.xml.transform.TransformerFactory is vulnerable to XXE. An attacker could use this flaw to launch DoS or SSRF attacks, or read files from the server where EAP is deployed.
Productos afectados
Red Hat, Inc. · JBoss Enterprise Application Platform

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://bugzilla.redhat.com/show_bug.cgi?id=1451960http://www.securityfocus.com/bid/98546