RHSA-2015:1888HighCVSS 4.8

Red Hat Security Advisory: Red Hat JBoss SOA Platform 5.3.1 security update

Published
October 12, 2015
Last Modified
June 27, 2026

🔗 CVE IDs covered (7)

📋 Description

CVE-2012-6153 — CXF: SSL hostname verification bypass, incomplete CVE-2012-5783 fix CVE-2013-7285 — XStream: remote code execution due to insecure XML deserialization CVE-2014-0107 — Xalan-Java: insufficient constraints in secure processing feature CVE-2014-0248 — Seam: RCE via unsafe logging in AuthenticationFilter CVE-2014-3530 — PicketLink: XXE via insecure DocumentBuilderFactory usage CVE-2014-3577 — CXF: SSL hostname verification bypass, incomplete CVE-2012-6153 fix CVE-2014-3604 — SSL: Hostname verification susceptible to MITM attack

🔗 References (11)