IDCVSSSummaryLast (major) updatePublished
CVE-2016-0779 7.5
The EjbObjectInputStream class in Apache TomEE before 1.7.4 and 7.x before 7.0.0-M3 allows remote attackers to execute arbitrary code via a crafted serialized object.
09-10-2018 - 19:58 11-04-2017 - 16:59
CVE-2018-8031 4.3
The Apache TomEE console (tomee-webapp) has a XSS vulnerability which could allow javascript to be executed if the user is given a malicious URL. This web application is typically used to add TomEE features to a Tomcat installation. The TomEE bundles
28-02-2019 - 22:06 23-07-2018 - 22:29
Back to Top Mark selected
Back to Top