RHSA-2014:0895Medium

Red Hat Security Advisory: Red Hat JBoss Data Grid 6.3.0 update

Published
July 16, 2014
Last Modified
June 27, 2026

🔗 CVE IDs covered (7)

📋 Description

CVE-2014-0058 — EAP6: Plain text password logging during security audit CVE-2014-0059 — JBossSX/PicketBox: World readable audit.log file CVE-2014-0075 — Tomcat/JBossWeb: Limited DoS in chunked transfer encoding input filter CVE-2014-0096 — Tomcat/JBossWeb: XXE vulnerability via user supplied XSLTs CVE-2014-0099 — Tomcat/JBossWeb: Request smuggling via malicious content length header CVE-2014-0119 — Tomcat/JBossWeb: XML parser hijack by malicious web application CVE-2014-3481 — JAX-RS: Information disclosure via XML eXternal Entity (XXE)

🔗 References (11)