VulnerableCode Package Details - pkg:maven/org.jboss/jboss-ejb-client@4.0.0.Beta22

Search for packages

Vulnerability	Summary	Fixed by
VCID-nq91-ayn4-g3h2 Aliases: CVE-2021-20250 GHSA-2259-h742-5vr4	JBoss EJB Client information disclosure vulnerability A flaw was found in wildfly. The JBoss EJB client has publicly accessible privileged actions which may lead to information disclosure on the server it is deployed on. The highest threat from this vulnerability is to data confidentiality.	4.0.39 Affected by 0 other vulnerabilities. 4.0.39.Final Affected by 0 other vulnerabilities.
VCID-zea8-w4br-6qas Aliases: CVE-2020-14297 GHSA-qcch-9268-59jw	Wildfly EJB Client causes DoS A flaw was discovered in Wildfly's EJB Client as shipped with Red Hat JBoss EAP 7, where some specific EJB transaction objects may get accumulated over the time and can cause services to slow down and eventually unavailable. An attacker can take advantage and cause denial of service attack and make services unavailable.	4.0.34.Final Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}

Vulnerability

Summary

Fixed by

VCID-nq91-ayn4-g3h2
Aliases:
CVE-2021-20250
GHSA-2259-h742-5vr4

JBoss EJB Client information disclosure vulnerability A flaw was found in wildfly. The JBoss EJB client has publicly accessible privileged actions which may lead to information disclosure on the server it is deployed on. The highest threat from this vulnerability is to data confidentiality.

4.0.39
Affected by 0 other vulnerabilities.

4.0.39.Final
Affected by 0 other vulnerabilities.

VCID-zea8-w4br-6qas
Aliases:
CVE-2020-14297
GHSA-qcch-9268-59jw

Wildfly EJB Client causes DoS A flaw was discovered in Wildfly's EJB Client as shipped with Red Hat JBoss EAP 7, where some specific EJB transaction objects may get accumulated over the time and can cause services to slow down and eventually unavailable. An attacker can take advantage and cause denial of service attack and make services unavailable.

4.0.34.Final
Affected by 1 other vulnerability.

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Vulnerability

Summary

Aliases

This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T21:59:19.742987+00:00	GitLab Importer	Affected by	VCID-zea8-w4br-6qas	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jboss/jboss-ejb-client/CVE-2020-14297.yml	38.4.0
2026-04-16T21:22:50.136905+00:00	GitLab Importer	Affected by	VCID-nq91-ayn4-g3h2	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jboss/jboss-ejb-client/CVE-2021-20250.yml	38.4.0
2026-04-11T23:14:50.943250+00:00	GitLab Importer	Affected by	VCID-zea8-w4br-6qas	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jboss/jboss-ejb-client/CVE-2020-14297.yml	38.3.0
2026-04-11T22:35:28.151514+00:00	GitLab Importer	Affected by	VCID-nq91-ayn4-g3h2	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jboss/jboss-ejb-client/CVE-2021-20250.yml	38.3.0
2026-04-02T23:22:50.449051+00:00	GitLab Importer	Affected by	VCID-zea8-w4br-6qas	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jboss/jboss-ejb-client/CVE-2020-14297.yml	38.1.0
2026-04-02T22:46:32.357887+00:00	GitLab Importer	Affected by	VCID-nq91-ayn4-g3h2	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jboss/jboss-ejb-client/CVE-2021-20250.yml	38.1.0
2026-04-01T17:43:53.842437+00:00	GitLab Importer	Affected by	VCID-zea8-w4br-6qas	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jboss/jboss-ejb-client/CVE-2020-14297.yml	38.0.0
2026-04-01T17:04:27.256629+00:00	GitLab Importer	Affected by	VCID-nq91-ayn4-g3h2	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jboss/jboss-ejb-client/CVE-2021-20250.yml	38.0.0