CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-3110

mod_cluster, as used in Red Hat JBoss Web Server 2.1, allows remote attackers to cause a denial of service (Apache http server crash) via an MCMP message containing a series of = (equals) characters after a legitimate element.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.032

EPSS Ranking 86.5%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.0

References

Products affected by CVE-2016-3110

Redhat » Jboss Enterprise Application Platform » Version: 6.0.0

cpe:2.3:a:redhat:jboss_enterprise_application_platform:6.0.0
Redhat » Jboss Enterprise Application Platform » Version: 6.4.0

cpe:2.3:a:redhat:jboss_enterprise_application_platform:6.4.0
Redhat » Jboss Enterprise Web Server » Version: 2.0.0

cpe:2.3:a:redhat:jboss_enterprise_web_server:2.0.0
Redhat » Jboss Enterprise Web Server » Version: 2.1

cpe:2.3:a:redhat:jboss_enterprise_web_server:2.1
Fedoraproject » Fedora » Version: 28

cpe:2.3:o:fedoraproject:fedora:28
Fedoraproject » Fedora » Version: 29

cpe:2.3:o:fedoraproject:fedora:29
Fedoraproject » Fedora » Version: 30

cpe:2.3:o:fedoraproject:fedora:30
Redhat » Enterprise Linux » Version: 6.0

cpe:2.3:o:redhat:enterprise_linux:6.0
Redhat » Enterprise Linux » Version: 7.0

cpe:2.3:o:redhat:enterprise_linux:7.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-3110

Products

Pricing

Contact Us