Search for packages
| purl | pkg:maven/org.jboss.remoting/jboss-remoting@4.0.3.Final |
| Next non-vulnerable version | 5.0.20.Final |
| Latest non-vulnerable version | 5.0.20.Final |
| Risk | 4.0 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-fxa5-np4k-2ud9
Aliases: CVE-2020-35510 GHSA-p6j8-hgv5-m35g |
Uncontrolled Resource Consumption A flaw was found in jboss-remoting in versions before 5.0.20.SP1-redhat-00001. A malicious attacker could cause threads to hold up forever in the EJB server by writing a sequence of bytes corresponding to the expected messages of a successful EJB client request, but omitting the ACK messages, or just tamper with jboss-remoting code, deleting the lines that send the ACK message from the EJB client code resulting in a denial of service. The highest threat from this vulnerability is to system availability. |
Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-04-16T21:43:09.775074+00:00 | GitLab Importer | Affected by | VCID-fxa5-np4k-2ud9 | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jboss.remoting/jboss-remoting/CVE-2020-35510.yml | 38.4.0 |
| 2026-04-11T22:58:44.458296+00:00 | GitLab Importer | Affected by | VCID-fxa5-np4k-2ud9 | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jboss.remoting/jboss-remoting/CVE-2020-35510.yml | 38.3.0 |
| 2026-04-02T23:07:30.835094+00:00 | GitLab Importer | Affected by | VCID-fxa5-np4k-2ud9 | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jboss.remoting/jboss-remoting/CVE-2020-35510.yml | 38.1.0 |
| 2026-04-01T17:26:50.560630+00:00 | GitLab Importer | Affected by | VCID-fxa5-np4k-2ud9 | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jboss.remoting/jboss-remoting/CVE-2020-35510.yml | 38.0.0 |