Max CVSS | 6.3 | Min CVSS | 2.9 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2020-14340 | 4.3 |
A vulnerability was discovered in XNIO where file descriptor leak caused by growing amounts of NIO Selector file handles between garbage collection cycles. It may allow the attacker to cause a denial of service. It affects XNIO versions 3.6.0.Beta1 t
|
25-07-2022 - 11:35 | 02-06-2021 - 13:15 | |
CVE-2020-1954 | 2.9 |
Apache CXF has the ability to integrate with JMX by registering an InstrumentationManager extension with the CXF bus. If the ‘createMBServerConnectorFactory‘ property of the default InstrumentationManagerImpl is not disabled, then it is vulnerable to
|
21-02-2022 - 02:52 | 01-04-2020 - 21:15 | |
CVE-2020-14299 | 6.3 |
A flaw was found in JBoss EAP, where the authentication configuration is set-up using a legacy SecurityRealm, to delegate to a legacy PicketBox SecurityDomain, and then reloaded to admin-only mode. This flaw allows an attacker to perform a complete a
|
27-10-2020 - 19:19 | 16-10-2020 - 14:15 | |
CVE-2020-14338 | 5.0 |
A flaw was found in Wildfly's implementation of Xerces, specifically in the way the XMLSchemaValidator class in the JAXP component of Wildfly enforced the "use-grammar-pool-only" feature. This flaw allows a specially-crafted XML file to manipulate th
|
19-10-2020 - 21:15 | 17-09-2020 - 15:15 | |
CVE-2020-14338 | 5.0 |
A flaw was found in Wildfly's implementation of Xerces, specifically in the way the XMLSchemaValidator class in the JAXP component of Wildfly enforced the "use-grammar-pool-only" feature. This flaw allows a specially-crafted XML file to manipulate th
|
24-09-2020 - 15:47 | 17-09-2020 - 15:15 |