RHSA-2014:1904HighCVSS 4.8

Red Hat Security Advisory: Red Hat JBoss Operations Network 3.3.0 update

Published
November 25, 2014
Last Modified
June 27, 2026

🔗 CVE IDs covered (7)

📋 Description

CVE-2012-6153 — CXF: SSL hostname verification bypass, incomplete CVE-2012-5783 fix CVE-2013-2035 — HawtJNI: predictable temporary file name leading to local arbitrary code execution CVE-2014-0059 — JBossSX/PicketBox: World readable audit.log file CVE-2014-0227 — Tomcat/JBossWeb: request smuggling and limited DoS in ChunkedInputFilter CVE-2014-3481 — JAX-RS: Information disclosure via XML eXternal Entity (XXE) CVE-2014-3490 — RESTEasy: XXE via parameter entities CVE-2014-3577 — CXF: SSL hostname verification bypass, incomplete CVE-2012-6153 fix

🔗 References (11)