CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Redhat: >> Richfaces >> 4.5.11 Security Vulnerabilities

CVE-2018-12532

JBoss RichFaces 4.5.3 through 4.5.17 allows unauthenticated remote attackers to inject an arbitrary expression language (EL) variable mapper and execute arbitrary Java code via a MediaOutputResource's resource request, aka RF-14309.

CVSS Score

9.8

EPSS Score

0.036

Published

2018-06-18

Page 1

Vulnerabilities

Vulnerable Software

Redhat: >> Richfaces >> 4.5.11 Security Vulnerabilities

Products

Pricing

Contact Us