Search for packages
| purl | pkg:rpm/redhat/jboss-as-xts@7.3.1-2.Final_redhat_3.1.ep6?arch=el5 |
| Next non-vulnerable version | None. |
| Latest non-vulnerable version | None. |
| Risk |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-9paf-8p8h-w7cb
Aliases: CVE-2014-0018 |
jboss-as-server: Unchecked access to MSC Service Registry under JSM | There are no reported fixed by versions. |
|
VCID-q64a-8fqh-ducp
Aliases: CVE-2013-4517 GHSA-4p4w-6h54-g885 |
Improper Input Validation in Apache Santuario XML Security Apache Santuario XML Security for Java before 1.5.6, when applying Transforms, allows remote attackers to cause a denial of service (memory consumption) via crafted Document Type Definitions (DTDs), related to signatures. | There are no reported fixed by versions. |
|
VCID-v6hn-ktd8-n7an
Aliases: CVE-2013-6440 GHSA-v723-58jv-2qc4 |
Exposure of Sensitive Information to an Unauthorized Actor in OpenSAML The (1) BasicParserPool, (2) StaticBasicParserPool, (3) XML Decrypter, and (4) SAML Decrypter in Shibboleth OpenSAML-Java before 2.6.1 set the expandEntityReferences property to true, which allows remote attackers to conduct XML external entity (XXE) attacks via a crafted XML DOCTYPE declaration. | There are no reported fixed by versions. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-05-29T10:06:54.974325+00:00 | RedHat Importer | Affected by | VCID-q64a-8fqh-ducp | https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4517.json | 38.6.0 |
| 2026-05-29T10:06:27.661422+00:00 | RedHat Importer | Affected by | VCID-v6hn-ktd8-n7an | https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-6440.json | 38.6.0 |
| 2026-05-29T10:06:21.273165+00:00 | RedHat Importer | Affected by | VCID-9paf-8p8h-w7cb | https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-0018.json | 38.6.0 |