Multiple vulnerabilities in JBoss Enterprise Application Platform

CERT-LatestNews ThreatsCybercrime ThreatsEconomic VulnerabilitiesAll VulnerabilitiesApplications VulnerabilitiesCrypto

1) Infinite loop. Severity: Medium. CVSSv3: [PCI] CVE-ID: CVE-2019-0205. CWE-ID: Description. CWE-835 – Loop with Unreachable Exit Condition (‘Infinite Loop’) The vulnerability allows a remote attacker to perform a denial of service (DoS) attack. The vulnerability exists due to infinite loop when processing user-supplied input.