Description

org.jboss.seam.web.AuthenticationFilter in Red Hat JBoss Web Framework Kit 2.5.0, JBoss Enterprise Application Platform (JBEAP) 5.2.0, and JBoss Enterprise Web Platform (JBEWP) 5.2.0 allows remote attackers to execute arbitrary code via a crafted authentication header, related to Seam logging.

Remediation

References

CVE-2014-0248

Related Vulnerabilities

Oracle Database Server CVE-2010-4421 Vulnerability (CVE-2010-4421)

WordPress Plugin Login Block IPs Cross-Site Request Forgery (1.0.0)

WordPress Plugin WPtouch Cross-Site Scripting (4.3.42)

WordPress Ultimate Member Plugin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-24306)

WordPress 4.4 Cross-Site Scripting Vulnerability (4.4)

Severity

Medium

Classification

CVE-2014-0248 CWE-94

Tags

Missing Update Known Vulnerabilities