RHSA-2018:0296MediumCVSS 6.1
Red Hat Security Advisory: Red Hat JBoss Data Virtualization 6.4 security update
🔗 CVE IDs covered (2)
📋 Description
CVE-2016-6343 — Dashbuilder: Reflected XSS CVE-2016-7034 — Dashbuilder: insecure handling of CSRF token
🔗 References (6)
- selfhttps://access.redhat.com/errata/RHSA-2018:0296
- externalhttps://access.redhat.com/security/updates/classification/#moderate
- externalhttps://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=data.services.platform&downloadType=distributions&version=6.4
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1371801
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1373347
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_0296.json