Back to search
CVE-2017-7503
Published: May 18, 2017
Modified: Aug 5, 2024
PUBLISHED
Description
It was found that the Red Hat JBoss EAP 7.0.5 implementation of javax.xml.transform.TransformerFactory is vulnerable to XXE. An attacker could use this flaw to launch DoS or SSRF attacks, or read files from the server where EAP is deployed.
| Vendor | Product | Versions |
|---|---|---|
Red Hat, Inc. | JBoss Enterprise Application Platform | affected 7.0.5 |
References
98546
vdb-entry
x_refsource_BID
https://bugzilla.redhat.com/show_bug.cgi?id=1451960
x_refsource_CONFIRM
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now