CVE-2018-7489 - FasterXML jackson-databind before 2.7.9.3, 2.8.x before 2.8.11.1 and 2.9.x before 2.9.5 allows unaut

CVE-2018-7489

Summary

FasterXML jackson-databind before 2.7.9.3, 2.8.x before 2.8.11.1 and 2.9.x before 2.9.5 allows unauthenticated remote code execution because of an incomplete fix for the CVE-2017-7525 deserialization flaw. This is exploitable by sending maliciously crafted JSON input to the readValue method of the ObjectMapper, bypassing a blacklist that is ineffective if the c3p0 libraries are available in the classpath.

References

Vulnerable Configurations

cpe:2.3:a:fasterxml:jackson-databind:2.0.0:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.0.0:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.0.0:-:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.0.0:-:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.0.0:rc1:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.0.0:rc1:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.0.0:rc2:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.0.0:rc2:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.0.0:rc3:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.0.0:rc3:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.0.1:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.0.1:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.0.2:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.0.2:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.0.4:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.0.4:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.0.5:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.0.5:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.0.6:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.0.6:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.1.0:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.1.0:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.1.1:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.1.1:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.1.2:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.1.2:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.1.3:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.1.3:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.1.4:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.1.4:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.1.5:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.1.5:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.2.0:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.2.0:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.2.0:-:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.2.0:-:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.2.0:rc1:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.2.0:rc1:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.2.1:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.2.1:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.2.2:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.2.2:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.2.3:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.2.3:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.2.4:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.2.4:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.3.0:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.3.0:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.3.0:-:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.3.0:-:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.3.0:rc1:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.3.0:rc1:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.3.1:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.3.1:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.3.2:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.3.2:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.3.3:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.3.3:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.3.4:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.3.4:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.3.5:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.3.5:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.4.0:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.4.0:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.4.0:-:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.4.0:-:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.4.0:rc1:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.4.0:rc1:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.4.0:rc2:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.4.0:rc2:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.4.0:rc3:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.4.0:rc3:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.4.1:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.4.1:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.4.1.1:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.4.1.1:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.4.1.2:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.4.1.2:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.4.1.3:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.4.1.3:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.4.2:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.4.2:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.4.3:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.4.3:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.4.4:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.4.4:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.4.5:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.4.5:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.4.5.1:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.4.5.1:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.4.6:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.4.6:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.4.6.1:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.4.6.1:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.5.0:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.5.0:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.5.0:-:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.5.0:-:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.5.0:rc1:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.5.0:rc1:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.5.1:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.5.1:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.5.2:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.5.2:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.5.3:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.5.3:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.5.4:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.5.4:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.5.5:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.5.5:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.6.0:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.6.0:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.6.0:-:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.6.0:-:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.6.0:rc1:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.6.0:rc1:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.6.0:rc2:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.6.0:rc2:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.6.0:rc3:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.6.0:rc3:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.6.0:rc4:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.6.0:rc4:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.6.1:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.6.1:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.6.2:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.6.2:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.6.3:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.6.3:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.6.4:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.6.4:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.6.5:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.6.5:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.6.6:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.6.6:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.6.7:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.6.7:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.6.7.1:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.6.7.1:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.6.7.2:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.6.7.2:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.6.7.3:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.6.7.3:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.6.7.4:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.6.7.4:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.7.0:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.7.0:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.7.0:-:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.7.0:-:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.7.0:rc1:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.7.0:rc1:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.7.0:rc2:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.7.0:rc2:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.7.0:rc3:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.7.0:rc3:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.7.1:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.7.1:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.7.1-1:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.7.1-1:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.7.2:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.7.2:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.7.3:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.7.3:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.7.4:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.7.4:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.7.5:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.7.5:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.7.6:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.7.6:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.7.7:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.7.7:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.7.8:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.7.8:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.7.9:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.7.9:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.7.9.1:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.7.9.1:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.7.9.2:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.7.9.2:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.8.0:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.8.0:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.8.1:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.8.1:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.8.2:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.8.2:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.8.3:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.8.3:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.8.4:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.8.4:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.8.5:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.8.5:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.8.6:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.8.6:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.8.7:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.8.7:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.8.8:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.8.8:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.8.8.1:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.8.8.1:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.8.9:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.8.9:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.8.10:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.8.10:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.8.11:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.8.11:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.9.0:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.9.0:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.9.0:-:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.9.0:-:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.9.0:prerelease1:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.9.0:prerelease1:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.9.0:prerelease2:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.9.0:prerelease2:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.9.0:prerelease3:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.9.0:prerelease3:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.9.0:prerelease4:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.9.0:prerelease4:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.9.1:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.9.1:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.9.2:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.9.2:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.9.3:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.9.3:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.9.4:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.9.4:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_billing_and_revenue_management:7.5:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_billing_and_revenue_management:7.5:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_billing_and_revenue_management:12.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_billing_and_revenue_management:12.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_instant_messaging_server:10.0.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_instant_messaging_server:10.0.1:*:*:*:*:*:*:*
cpe:2.3:a:redhat:jboss_enterprise_application_platform:6.4.19:*:*:*:*:*:*:*
cpe:2.3:a:redhat:jboss_enterprise_application_platform:6.4.19:*:*:*:*:*:*:*
cpe:2.3:a:redhat:jboss_enterprise_application_platform:7.1.2:*:*:*:*:*:*:*
cpe:2.3:a:redhat:jboss_enterprise_application_platform:7.1.2:*:*:*:*:*:*:*

CVSS

Base:	7.5 (as of 25-03-2021 - 01:15)
Impact:
Exploitability:

CWE

CWE-184

CAPEC

Using Unicode Encoding to Bypass Validation Logic
An attacker may provide a Unicode string to a system component that is not Unicode aware and use that to circumvent the filter or cause the classifying mechanism to fail to properly understanding the request. That may allow the attacker to slip malicious data past the content filter and/or possibly cause the application to route the request incorrectly.
Argument Injection
An attacker changes the behavior or state of a targeted application through injecting data or command syntax through the targets use of non-validated and non-filtered arguments of exposed services or methods.
Command Delimiters
An attack of this type exploits a programs' vulnerabilities that allows an attacker's commands to be concatenated onto a legitimate command with the intent of targeting other resources such as the file system or database. The system that uses a filter or a blacklist input validation, as opposed to whitelist validation is vulnerable to an attacker who predicts delimiters (or combinations of delimiters) not present in the filter or blacklist. As with other injection attacks, the attacker uses the command delimiter payload as an entry point to tunnel through the application and activate additional attacks through SQL queries, shell commands, network scanning, and so on.
AJAX Fingerprinting
This attack utilizes the frequent client-server roundtrips in Ajax conversation to scan a system. While Ajax does not open up new vulnerabilities per se, it does optimize them from an attacker point of view. In many XSS attacks the attacker must get a "hole in one" and successfully exploit the vulnerability on the victim side the first time, once the client is redirected the attacker has many chances to engage in follow on probes, but there is only one first chance. In a widely used web application this is not a major problem because 1 in a 1,000 is good enough in a widely used application. A common first step for an attacker is to footprint the environment to understand what attacks will work. Since footprinting relies on enumeration, the conversational pattern of rapid, multiple requests and responses that are typical in Ajax applications enable an attacker to look for many vulnerabilities, well-known ports, network locations and so on.
Double Encoding
The adversary utilizes a repeating of the encoding process for a set of characters (that is, character encoding a character encoding of a character) to obfuscate the payload of a particular request. This may allow the adversary to bypass filters that attempt to detect illegal characters or strings, such as those that might be used in traversal or injection attacks. Filters may be able to catch illegal encoded strings, but may not catch doubly encoded strings. For example, a dot (.), often used in path traversal attacks and therefore often blocked by filters, could be URL encoded as %2E. However, many filters recognize this encoding and would still block the request. In a double encoding, the % in the above URL encoding would be encoded again as %25, resulting in %252E which some filters might not catch, but which could still be interpreted as a dot (.) by interpreters on the target.
Flash Injection
An attacker tricks a victim to execute malicious flash content that executes commands or makes flash calls specified by the attacker. One example of this attack is cross-site flashing, an attacker controlled parameter to a reference call loads from content specified by the attacker.
Using Leading 'Ghost' Character Sequences to Bypass Input Filters
Some APIs will strip certain leading characters from a string of parameters. An adversary can intentionally introduce leading "ghost" characters (extra characters that don't affect the validity of the request at the API layer) that enable the input to pass the filters and therefore process the adversary's input. This occurs when the targeted API will accept input data in several syntactic forms and interpret it in the equivalent semantic way, while the filter does not take into account the full spectrum of the syntactic forms acceptable to the targeted API.
Exploiting Multiple Input Interpretation Layers
An attacker supplies the target software with input data that contains sequences of special characters designed to bypass input validation logic. This exploit relies on the target making multiples passes over the input data and processing a "layer" of special characters with each pass. In this manner, the attacker can disguise input that would otherwise be rejected as invalid by concealing it with layers of special/escape characters that are stripped off by subsequent processing steps. The goal is to first discover cases where the input validation layer executes before one or more parsing layers. That is, user input may go through the following logic in an application: <parser1> --> <input validator> --> <parser2>. In such cases, the attacker will need to provide input that will pass through the input validator, but after passing through parser2, will be converted into something that the input validator was supposed to stop.
User-Controlled Filename
An attack of this type involves an adversary inserting malicious characters (such as a XSS redirection) into a filename, directly or indirectly that is then used by the target software to generate HTML text or other potentially executable content. Many websites rely on user-generated content and dynamically build resources like files, filenames, and URL links directly from user supplied data. In this attack pattern, the attacker uploads code that can execute in the client browser and/or redirect the client browser to a site that the attacker owns. All XSS attack payload variants can be used to pass and exploit these vulnerabilities.

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	PARTIAL	PARTIAL

cvss-vector via4

AV:N/AC:L/Au:N/C:P/I:P/A:P

redhat via4

advisories

rhsa
id RHSA-2018:1447
rhsa
id RHSA-2018:1448
rhsa
id RHSA-2018:1449
rhsa
id RHSA-2018:1450
rhsa
id RHSA-2018:1451
rhsa
id RHSA-2018:1786
rhsa
id RHSA-2018:2088
rhsa
id RHSA-2018:2089
rhsa
id RHSA-2018:2090
rhsa
id RHSA-2018:2938
rhsa
id RHSA-2018:2939
rhsa
id RHSA-2019:2858
rhsa
id RHSA-2019:3149

rpms

codehaus-jackson-0:1.9.9-12.redhat_6.1.ep6.el7
codehaus-jackson-core-asl-0:1.9.9-12.redhat_6.1.ep6.el7
codehaus-jackson-jaxrs-0:1.9.9-12.redhat_6.1.ep6.el7
codehaus-jackson-mapper-asl-0:1.9.9-12.redhat_6.1.ep6.el7
codehaus-jackson-xc-0:1.9.9-12.redhat_6.1.ep6.el7
hornetq-0:2.3.25-26.SP24_redhat_1.1.ep6.el7
jboss-as-appclient-0:7.5.20-1.Final_redhat_1.1.ep6.el7
jboss-as-cli-0:7.5.20-1.Final_redhat_1.1.ep6.el7
jboss-as-client-all-0:7.5.20-1.Final_redhat_1.1.ep6.el7
jboss-as-clustering-0:7.5.20-1.Final_redhat_1.1.ep6.el7
jboss-as-cmp-0:7.5.20-1.Final_redhat_1.1.ep6.el7
jboss-as-configadmin-0:7.5.20-1.Final_redhat_1.1.ep6.el7
jboss-as-connector-0:7.5.20-1.Final_redhat_1.1.ep6.el7
jboss-as-controller-0:7.5.20-1.Final_redhat_1.1.ep6.el7
jboss-as-controller-client-0:7.5.20-1.Final_redhat_1.1.ep6.el7
jboss-as-core-security-0:7.5.20-1.Final_redhat_1.1.ep6.el7
jboss-as-deployment-repository-0:7.5.20-1.Final_redhat_1.1.ep6.el7
jboss-as-deployment-scanner-0:7.5.20-1.Final_redhat_1.1.ep6.el7
jboss-as-domain-http-0:7.5.20-1.Final_redhat_1.1.ep6.el7
jboss-as-domain-management-0:7.5.20-1.Final_redhat_1.1.ep6.el7
jboss-as-ee-0:7.5.20-1.Final_redhat_1.1.ep6.el7
jboss-as-ee-deployment-0:7.5.20-1.Final_redhat_1.1.ep6.el7
jboss-as-ejb3-0:7.5.20-1.Final_redhat_1.1.ep6.el7
jboss-as-embedded-0:7.5.20-1.Final_redhat_1.1.ep6.el7
jboss-as-host-controller-0:7.5.20-1.Final_redhat_1.1.ep6.el7
jboss-as-jacorb-0:7.5.20-1.Final_redhat_1.1.ep6.el7
jboss-as-jaxr-0:7.5.20-1.Final_redhat_1.1.ep6.el7
jboss-as-jaxrs-0:7.5.20-1.Final_redhat_1.1.ep6.el7
jboss-as-jdr-0:7.5.20-1.Final_redhat_1.1.ep6.el7
jboss-as-jmx-0:7.5.20-1.Final_redhat_1.1.ep6.el7
jboss-as-jpa-0:7.5.20-1.Final_redhat_1.1.ep6.el7
jboss-as-jsf-0:7.5.20-1.Final_redhat_1.1.ep6.el7
jboss-as-jsr77-0:7.5.20-1.Final_redhat_1.1.ep6.el7
jboss-as-logging-0:7.5.20-1.Final_redhat_1.1.ep6.el7
jboss-as-mail-0:7.5.20-1.Final_redhat_1.1.ep6.el7
jboss-as-management-client-content-0:7.5.20-1.Final_redhat_1.1.ep6.el7
jboss-as-messaging-0:7.5.20-1.Final_redhat_1.1.ep6.el7
jboss-as-modcluster-0:7.5.20-1.Final_redhat_1.1.ep6.el7
jboss-as-naming-0:7.5.20-1.Final_redhat_1.1.ep6.el7
jboss-as-network-0:7.5.20-1.Final_redhat_1.1.ep6.el7
jboss-as-osgi-0:7.5.20-1.Final_redhat_1.1.ep6.el7
jboss-as-osgi-configadmin-0:7.5.20-1.Final_redhat_1.1.ep6.el7
jboss-as-osgi-service-0:7.5.20-1.Final_redhat_1.1.ep6.el7
jboss-as-picketlink-0:7.5.20-1.Final_redhat_1.1.ep6.el7
jboss-as-platform-mbean-0:7.5.20-1.Final_redhat_1.1.ep6.el7
jboss-as-pojo-0:7.5.20-1.Final_redhat_1.1.ep6.el7
jboss-as-process-controller-0:7.5.20-1.Final_redhat_1.1.ep6.el7
jboss-as-protocol-0:7.5.20-1.Final_redhat_1.1.ep6.el7
jboss-as-remoting-0:7.5.20-1.Final_redhat_1.1.ep6.el7
jboss-as-sar-0:7.5.20-1.Final_redhat_1.1.ep6.el7
jboss-as-security-0:7.5.20-1.Final_redhat_1.1.ep6.el7
jboss-as-server-0:7.5.20-1.Final_redhat_1.1.ep6.el7
jboss-as-system-jmx-0:7.5.20-1.Final_redhat_1.1.ep6.el7
jboss-as-threads-0:7.5.20-1.Final_redhat_1.1.ep6.el7
jboss-as-transactions-0:7.5.20-1.Final_redhat_1.1.ep6.el7
jboss-as-version-0:7.5.20-1.Final_redhat_1.1.ep6.el7
jboss-as-web-0:7.5.20-1.Final_redhat_1.1.ep6.el7
jboss-as-webservices-0:7.5.20-1.Final_redhat_1.1.ep6.el7
jboss-as-weld-0:7.5.20-1.Final_redhat_1.1.ep6.el7
jboss-as-xts-0:7.5.20-1.Final_redhat_1.1.ep6.el7
jbossas-appclient-0:7.5.20-1.Final_redhat_1.1.ep6.el7
jbossas-bundles-0:7.5.20-1.Final_redhat_1.1.ep6.el7
jbossas-core-0:7.5.20-1.Final_redhat_1.1.ep6.el7
jbossas-domain-0:7.5.20-1.Final_redhat_1.1.ep6.el7
jbossas-javadocs-0:7.5.20-1.Final_redhat_1.1.ep6.el7
jbossas-modules-eap-0:7.5.20-1.Final_redhat_1.1.ep6.el7
jbossas-product-eap-0:7.5.20-1.Final_redhat_1.1.ep6.el7
jbossas-standalone-0:7.5.20-1.Final_redhat_1.1.ep6.el7
jbossas-welcome-content-eap-0:7.5.20-1.Final_redhat_1.1.ep6.el7
jbossts-1:4.17.43-1.Final_redhat_1.1.ep6.el7
jbossweb-0:7.5.28-1.Final_redhat_1.1.ep6.el7
jgroups-1:3.2.18-1.Final_redhat_1.1.ep6.el7
lucene-solr-0:3.6.2-8.redhat_9.1.ep6.el7
picketbox-0:4.1.7-1.Final_redhat_1.1.ep6.el7
codehaus-jackson-0:1.9.9-12.redhat_6.1.ep6.el6
codehaus-jackson-core-asl-0:1.9.9-12.redhat_6.1.ep6.el6
codehaus-jackson-jaxrs-0:1.9.9-12.redhat_6.1.ep6.el6
codehaus-jackson-mapper-asl-0:1.9.9-12.redhat_6.1.ep6.el6
codehaus-jackson-xc-0:1.9.9-12.redhat_6.1.ep6.el6
hornetq-0:2.3.25-26.SP24_redhat_1.1.ep6.el6
jboss-as-appclient-0:7.5.20-1.Final_redhat_1.1.ep6.el6
jboss-as-cli-0:7.5.20-1.Final_redhat_1.1.ep6.el6
jboss-as-client-all-0:7.5.20-1.Final_redhat_1.1.ep6.el6
jboss-as-clustering-0:7.5.20-1.Final_redhat_1.1.ep6.el6
jboss-as-cmp-0:7.5.20-1.Final_redhat_1.1.ep6.el6
jboss-as-configadmin-0:7.5.20-1.Final_redhat_1.1.ep6.el6
jboss-as-connector-0:7.5.20-1.Final_redhat_1.1.ep6.el6
jboss-as-controller-0:7.5.20-1.Final_redhat_1.1.ep6.el6
jboss-as-controller-client-0:7.5.20-1.Final_redhat_1.1.ep6.el6
jboss-as-core-security-0:7.5.20-1.Final_redhat_1.1.ep6.el6
jboss-as-deployment-repository-0:7.5.20-1.Final_redhat_1.1.ep6.el6
jboss-as-deployment-scanner-0:7.5.20-1.Final_redhat_1.1.ep6.el6
jboss-as-domain-http-0:7.5.20-1.Final_redhat_1.1.ep6.el6
jboss-as-domain-management-0:7.5.20-1.Final_redhat_1.1.ep6.el6
jboss-as-ee-0:7.5.20-1.Final_redhat_1.1.ep6.el6
jboss-as-ee-deployment-0:7.5.20-1.Final_redhat_1.1.ep6.el6
jboss-as-ejb3-0:7.5.20-1.Final_redhat_1.1.ep6.el6
jboss-as-embedded-0:7.5.20-1.Final_redhat_1.1.ep6.el6
jboss-as-host-controller-0:7.5.20-1.Final_redhat_1.1.ep6.el6
jboss-as-jacorb-0:7.5.20-1.Final_redhat_1.1.ep6.el6
jboss-as-jaxr-0:7.5.20-1.Final_redhat_1.1.ep6.el6
jboss-as-jaxrs-0:7.5.20-1.Final_redhat_1.1.ep6.el6
jboss-as-jdr-0:7.5.20-1.Final_redhat_1.1.ep6.el6
jboss-as-jmx-0:7.5.20-1.Final_redhat_1.1.ep6.el6
jboss-as-jpa-0:7.5.20-1.Final_redhat_1.1.ep6.el6
jboss-as-jsf-0:7.5.20-1.Final_redhat_1.1.ep6.el6
jboss-as-jsr77-0:7.5.20-1.Final_redhat_1.1.ep6.el6
jboss-as-logging-0:7.5.20-1.Final_redhat_1.1.ep6.el6
jboss-as-mail-0:7.5.20-1.Final_redhat_1.1.ep6.el6
jboss-as-management-client-content-0:7.5.20-1.Final_redhat_1.1.ep6.el6
jboss-as-messaging-0:7.5.20-1.Final_redhat_1.1.ep6.el6
jboss-as-modcluster-0:7.5.20-1.Final_redhat_1.1.ep6.el6
jboss-as-naming-0:7.5.20-1.Final_redhat_1.1.ep6.el6
jboss-as-network-0:7.5.20-1.Final_redhat_1.1.ep6.el6
jboss-as-osgi-0:7.5.20-1.Final_redhat_1.1.ep6.el6
jboss-as-osgi-configadmin-0:7.5.20-1.Final_redhat_1.1.ep6.el6
jboss-as-osgi-service-0:7.5.20-1.Final_redhat_1.1.ep6.el6
jboss-as-picketlink-0:7.5.20-1.Final_redhat_1.1.ep6.el6
jboss-as-platform-mbean-0:7.5.20-1.Final_redhat_1.1.ep6.el6
jboss-as-pojo-0:7.5.20-1.Final_redhat_1.1.ep6.el6
jboss-as-process-controller-0:7.5.20-1.Final_redhat_1.1.ep6.el6
jboss-as-protocol-0:7.5.20-1.Final_redhat_1.1.ep6.el6
jboss-as-remoting-0:7.5.20-1.Final_redhat_1.1.ep6.el6
jboss-as-sar-0:7.5.20-1.Final_redhat_1.1.ep6.el6
jboss-as-security-0:7.5.20-1.Final_redhat_1.1.ep6.el6
jboss-as-server-0:7.5.20-1.Final_redhat_1.1.ep6.el6
jboss-as-system-jmx-0:7.5.20-1.Final_redhat_1.1.ep6.el6
jboss-as-threads-0:7.5.20-1.Final_redhat_1.1.ep6.el6
jboss-as-transactions-0:7.5.20-1.Final_redhat_1.1.ep6.el6
jboss-as-version-0:7.5.20-1.Final_redhat_1.1.ep6.el6
jboss-as-web-0:7.5.20-1.Final_redhat_1.1.ep6.el6
jboss-as-webservices-0:7.5.20-1.Final_redhat_1.1.ep6.el6
jboss-as-weld-0:7.5.20-1.Final_redhat_1.1.ep6.el6
jboss-as-xts-0:7.5.20-1.Final_redhat_1.1.ep6.el6
jbossas-appclient-0:7.5.20-1.Final_redhat_1.1.ep6.el6
jbossas-bundles-0:7.5.20-1.Final_redhat_1.1.ep6.el6
jbossas-core-0:7.5.20-1.Final_redhat_1.1.ep6.el6
jbossas-domain-0:7.5.20-1.Final_redhat_1.1.ep6.el6
jbossas-javadocs-0:7.5.20-1.Final_redhat_1.1.ep6.el6
jbossas-modules-eap-0:7.5.20-1.Final_redhat_1.1.ep6.el6
jbossas-product-eap-0:7.5.20-1.Final_redhat_1.1.ep6.el6
jbossas-standalone-0:7.5.20-1.Final_redhat_1.1.ep6.el6
jbossas-welcome-content-eap-0:7.5.20-1.Final_redhat_1.1.ep6.el6
jbossts-1:4.17.43-1.Final_redhat_1.1.ep6.el6
jbossweb-0:7.5.28-1.Final_redhat_1.1.ep6.el6
jgroups-1:3.2.18-1.Final_redhat_1.1.ep6.el6
lucene-solr-0:3.6.2-8.redhat_9.1.ep6.el6
picketbox-0:4.1.7-1.Final_redhat_1.1.ep6.el6
codehaus-jackson-0:1.9.9-12.redhat_6.1.ep6.el5
codehaus-jackson-core-asl-0:1.9.9-12.redhat_6.1.ep6.el5
codehaus-jackson-jaxrs-0:1.9.9-12.redhat_6.1.ep6.el5
codehaus-jackson-mapper-asl-0:1.9.9-12.redhat_6.1.ep6.el5
codehaus-jackson-xc-0:1.9.9-12.redhat_6.1.ep6.el5
hornetq-0:2.3.25-26.SP24_redhat_1.1.ep6.el5
jboss-as-appclient-0:7.5.20-1.Final_redhat_1.1.ep6.el5
jboss-as-cli-0:7.5.20-1.Final_redhat_1.1.ep6.el5
jboss-as-client-all-0:7.5.20-1.Final_redhat_1.1.ep6.el5
jboss-as-clustering-0:7.5.20-1.Final_redhat_1.1.ep6.el5
jboss-as-cmp-0:7.5.20-1.Final_redhat_1.1.ep6.el5
jboss-as-configadmin-0:7.5.20-1.Final_redhat_1.1.ep6.el5
jboss-as-connector-0:7.5.20-1.Final_redhat_1.1.ep6.el5
jboss-as-controller-0:7.5.20-1.Final_redhat_1.1.ep6.el5
jboss-as-controller-client-0:7.5.20-1.Final_redhat_1.1.ep6.el5
jboss-as-core-security-0:7.5.20-1.Final_redhat_1.1.ep6.el5
jboss-as-deployment-repository-0:7.5.20-1.Final_redhat_1.1.ep6.el5
jboss-as-deployment-scanner-0:7.5.20-1.Final_redhat_1.1.ep6.el5
jboss-as-domain-http-0:7.5.20-1.Final_redhat_1.1.ep6.el5
jboss-as-domain-management-0:7.5.20-1.Final_redhat_1.1.ep6.el5
jboss-as-ee-0:7.5.20-1.Final_redhat_1.1.ep6.el5
jboss-as-ee-deployment-0:7.5.20-1.Final_redhat_1.1.ep6.el5
jboss-as-ejb3-0:7.5.20-1.Final_redhat_1.1.ep6.el5
jboss-as-embedded-0:7.5.20-1.Final_redhat_1.1.ep6.el5
jboss-as-host-controller-0:7.5.20-1.Final_redhat_1.1.ep6.el5
jboss-as-jacorb-0:7.5.20-1.Final_redhat_1.1.ep6.el5
jboss-as-jaxr-0:7.5.20-1.Final_redhat_1.1.ep6.el5
jboss-as-jaxrs-0:7.5.20-1.Final_redhat_1.1.ep6.el5
jboss-as-jdr-0:7.5.20-1.Final_redhat_1.1.ep6.el5
jboss-as-jmx-0:7.5.20-1.Final_redhat_1.1.ep6.el5
jboss-as-jpa-0:7.5.20-1.Final_redhat_1.1.ep6.el5
jboss-as-jsf-0:7.5.20-1.Final_redhat_1.1.ep6.el5
jboss-as-jsr77-0:7.5.20-1.Final_redhat_1.1.ep6.el5
jboss-as-logging-0:7.5.20-1.Final_redhat_1.1.ep6.el5
jboss-as-mail-0:7.5.20-1.Final_redhat_1.1.ep6.el5
jboss-as-management-client-content-0:7.5.20-1.Final_redhat_1.1.ep6.el5
jboss-as-messaging-0:7.5.20-1.Final_redhat_1.1.ep6.el5
jboss-as-modcluster-0:7.5.20-1.Final_redhat_1.1.ep6.el5
jboss-as-naming-0:7.5.20-1.Final_redhat_1.1.ep6.el5
jboss-as-network-0:7.5.20-1.Final_redhat_1.1.ep6.el5
jboss-as-osgi-0:7.5.20-1.Final_redhat_1.1.ep6.el5
jboss-as-osgi-configadmin-0:7.5.20-1.Final_redhat_1.1.ep6.el5
jboss-as-osgi-service-0:7.5.20-1.Final_redhat_1.1.ep6.el5
jboss-as-picketlink-0:7.5.20-1.Final_redhat_1.1.ep6.el5
jboss-as-platform-mbean-0:7.5.20-1.Final_redhat_1.1.ep6.el5
jboss-as-pojo-0:7.5.20-1.Final_redhat_1.1.ep6.el5
jboss-as-process-controller-0:7.5.20-1.Final_redhat_1.1.ep6.el5
jboss-as-protocol-0:7.5.20-1.Final_redhat_1.1.ep6.el5
jboss-as-remoting-0:7.5.20-1.Final_redhat_1.1.ep6.el5
jboss-as-sar-0:7.5.20-1.Final_redhat_1.1.ep6.el5
jboss-as-security-0:7.5.20-1.Final_redhat_1.1.ep6.el5
jboss-as-server-0:7.5.20-1.Final_redhat_1.1.ep6.el5
jboss-as-system-jmx-0:7.5.20-1.Final_redhat_1.1.ep6.el5
jboss-as-threads-0:7.5.20-1.Final_redhat_1.1.ep6.el5
jboss-as-transactions-0:7.5.20-1.Final_redhat_1.1.ep6.el5
jboss-as-version-0:7.5.20-1.Final_redhat_1.1.ep6.el5
jboss-as-web-0:7.5.20-1.Final_redhat_1.1.ep6.el5
jboss-as-webservices-0:7.5.20-1.Final_redhat_1.1.ep6.el5
jboss-as-weld-0:7.5.20-1.Final_redhat_1.1.ep6.el5
jboss-as-xts-0:7.5.20-1.Final_redhat_1.1.ep6.el5
jbossas-appclient-0:7.5.20-1.Final_redhat_1.1.ep6.el5
jbossas-bundles-0:7.5.20-1.Final_redhat_1.1.ep6.el5
jbossas-core-0:7.5.20-1.Final_redhat_1.1.ep6.el5
jbossas-domain-0:7.5.20-1.Final_redhat_1.1.ep6.el5
jbossas-javadocs-0:7.5.20-1.Final_redhat_1.1.ep6.el5
jbossas-modules-eap-0:7.5.20-1.Final_redhat_1.1.ep6.el5
jbossas-product-eap-0:7.5.20-1.Final_redhat_1.1.ep6.el5
jbossas-standalone-0:7.5.20-1.Final_redhat_1.1.ep6.el5
jbossas-welcome-content-eap-0:7.5.20-1.Final_redhat_1.1.ep6.el5
jbossts-1:4.17.43-1.Final_redhat_1.1.ep6.el5
jbossweb-0:7.5.28-1.Final_redhat_1.1.ep6.el5
jgroups-1:3.2.18-1.Final_redhat_1.1.ep6.el5
lucene-solr-0:3.6.2-8.redhat_9.1.ep6.el5
picketbox-0:4.1.7-1.Final_redhat_1.1.ep6.el5
jboss-ec2-eap-0:7.5.20-1.Final_redhat_1.ep6.el6
jboss-ec2-eap-samples-0:7.5.20-1.Final_redhat_1.ep6.el6
eap7-activemq-artemis-0:1.5.5.012-1.redhat_1.1.ep7.el7
eap7-activemq-artemis-cli-0:1.5.5.012-1.redhat_1.1.ep7.el7
eap7-activemq-artemis-commons-0:1.5.5.012-1.redhat_1.1.ep7.el7
eap7-activemq-artemis-core-client-0:1.5.5.012-1.redhat_1.1.ep7.el7
eap7-activemq-artemis-dto-0:1.5.5.012-1.redhat_1.1.ep7.el7
eap7-activemq-artemis-hornetq-protocol-0:1.5.5.012-1.redhat_1.1.ep7.el7
eap7-activemq-artemis-hqclient-protocol-0:1.5.5.012-1.redhat_1.1.ep7.el7
eap7-activemq-artemis-jdbc-store-0:1.5.5.012-1.redhat_1.1.ep7.el7
eap7-activemq-artemis-jms-client-0:1.5.5.012-1.redhat_1.1.ep7.el7
eap7-activemq-artemis-jms-server-0:1.5.5.012-1.redhat_1.1.ep7.el7
eap7-activemq-artemis-journal-0:1.5.5.012-1.redhat_1.1.ep7.el7
eap7-activemq-artemis-native-0:1.5.5.012-1.redhat_1.1.ep7.el7
eap7-activemq-artemis-ra-0:1.5.5.012-1.redhat_1.1.ep7.el7
eap7-activemq-artemis-selector-0:1.5.5.012-1.redhat_1.1.ep7.el7
eap7-activemq-artemis-server-0:1.5.5.012-1.redhat_1.1.ep7.el7
eap7-activemq-artemis-service-extensions-0:1.5.5.012-1.redhat_1.1.ep7.el7
eap7-commons-logging-jboss-logmanager-0:1.0.3-1.Final_redhat_1.1.ep7.el7
eap7-hibernate-0:5.1.14-1.Final_redhat_1.1.ep7.el7
eap7-hibernate-core-0:5.1.14-1.Final_redhat_1.1.ep7.el7
eap7-hibernate-entitymanager-0:5.1.14-1.Final_redhat_1.1.ep7.el7
eap7-hibernate-envers-0:5.1.14-1.Final_redhat_1.1.ep7.el7
eap7-hibernate-infinispan-0:5.1.14-1.Final_redhat_1.1.ep7.el7
eap7-hibernate-java8-0:5.1.14-1.Final_redhat_1.1.ep7.el7
eap7-infinispan-0:8.2.11-1.Final_redhat_1.1.ep7.el7
eap7-infinispan-cachestore-jdbc-0:8.2.11-1.Final_redhat_1.1.ep7.el7
eap7-infinispan-cachestore-remote-0:8.2.11-1.Final_redhat_1.1.ep7.el7
eap7-infinispan-client-hotrod-0:8.2.11-1.Final_redhat_1.1.ep7.el7
eap7-infinispan-commons-0:8.2.11-1.Final_redhat_1.1.ep7.el7
eap7-infinispan-core-0:8.2.11-1.Final_redhat_1.1.ep7.el7
eap7-ironjacamar-0:1.4.9-1.Final_redhat_1.1.ep7.el7
eap7-ironjacamar-common-api-0:1.4.9-1.Final_redhat_1.1.ep7.el7
eap7-ironjacamar-common-impl-0:1.4.9-1.Final_redhat_1.1.ep7.el7
eap7-ironjacamar-common-spi-0:1.4.9-1.Final_redhat_1.1.ep7.el7
eap7-ironjacamar-core-api-0:1.4.9-1.Final_redhat_1.1.ep7.el7
eap7-ironjacamar-core-impl-0:1.4.9-1.Final_redhat_1.1.ep7.el7
eap7-ironjacamar-deployers-common-0:1.4.9-1.Final_redhat_1.1.ep7.el7
eap7-ironjacamar-jdbc-0:1.4.9-1.Final_redhat_1.1.ep7.el7
eap7-ironjacamar-validator-0:1.4.9-1.Final_redhat_1.1.ep7.el7
eap7-jackson-databind-0:2.8.11.1-1.redhat_1.1.ep7.el7
eap7-jackson-jaxrs-base-0:2.8.11-2.redhat_1.1.ep7.el7
eap7-jackson-jaxrs-json-provider-0:2.8.11-2.redhat_1.1.ep7.el7
eap7-jackson-module-jaxb-annotations-0:2.8.11-2.redhat_1.1.ep7.el7
eap7-jboss-logmanager-0:2.0.10-1.Final_redhat_1.1.ep7.el7
eap7-jboss-marshalling-0:2.0.5-1.Final_redhat_1.1.ep7.el7
eap7-jboss-marshalling-river-0:2.0.5-1.Final_redhat_1.1.ep7.el7
eap7-jboss-modules-0:1.6.4-1.Final_redhat_1.1.ep7.el7
eap7-jboss-remoting-0:5.0.7-1.Final_redhat_1.1.ep7.el7
eap7-jboss-server-migration-0:1.0.6-3.Final_redhat_3.1.ep7.el7
eap7-jboss-server-migration-cli-0:1.0.6-3.Final_redhat_3.1.ep7.el7
eap7-jboss-server-migration-core-0:1.0.6-3.Final_redhat_3.1.ep7.el7
eap7-jboss-server-migration-eap6.4-0:1.0.6-3.Final_redhat_3.1.ep7.el7
eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.6-3.Final_redhat_3.1.ep7.el7
eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.6-3.Final_redhat_3.1.ep7.el7
eap7-jboss-server-migration-eap7.0-0:1.0.6-3.Final_redhat_3.1.ep7.el7
eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.6-3.Final_redhat_3.1.ep7.el7
eap7-jboss-server-migration-eap7.1-0:1.0.6-3.Final_redhat_3.1.ep7.el7
eap7-jboss-server-migration-wildfly10.0-0:1.0.6-3.Final_redhat_3.1.ep7.el7
eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.6-3.Final_redhat_3.1.ep7.el7
eap7-jboss-server-migration-wildfly10.1-0:1.0.6-3.Final_redhat_3.1.ep7.el7
eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.6-3.Final_redhat_3.1.ep7.el7
eap7-jboss-server-migration-wildfly8.2-0:1.0.6-3.Final_redhat_3.1.ep7.el7
eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.6-3.Final_redhat_3.1.ep7.el7
eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.6-3.Final_redhat_3.1.ep7.el7
eap7-jboss-server-migration-wildfly9.0-0:1.0.6-3.Final_redhat_3.1.ep7.el7
eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.6-3.Final_redhat_3.1.ep7.el7
eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.6-3.Final_redhat_3.1.ep7.el7
eap7-picketlink-api-0:2.5.5-12.SP11_redhat_1.1.ep7.el7
eap7-picketlink-bindings-0:2.5.5-12.SP11_redhat_1.1.ep7.el7
eap7-picketlink-common-0:2.5.5-12.SP11_redhat_1.1.ep7.el7
eap7-picketlink-config-0:2.5.5-12.SP11_redhat_1.1.ep7.el7
eap7-picketlink-federation-0:2.5.5-12.SP11_redhat_1.1.ep7.el7
eap7-picketlink-idm-api-0:2.5.5-12.SP11_redhat_1.1.ep7.el7
eap7-picketlink-idm-impl-0:2.5.5-12.SP11_redhat_1.1.ep7.el7
eap7-picketlink-idm-simple-schema-0:2.5.5-12.SP11_redhat_1.1.ep7.el7
eap7-picketlink-impl-0:2.5.5-12.SP11_redhat_1.1.ep7.el7
eap7-picketlink-wildfly8-0:2.5.5-12.SP11_redhat_1.1.ep7.el7
eap7-undertow-0:1.4.18-6.SP7_redhat_1.1.ep7.el7
eap7-wildfly-0:7.1.3-2.GA_redhat_2.1.ep7.el7
eap7-wildfly-elytron-0:1.1.10-1.Final_redhat_1.1.ep7.el7
eap7-wildfly-elytron-tool-0:1.0.7-1.Final_redhat_1.1.ep7.el7
eap7-wildfly-javadocs-0:7.1.3-1.GA_redhat_2.1.ep7.el7
eap7-wildfly-modules-0:7.1.3-2.GA_redhat_2.1.ep7.el7
eap7-wildfly-naming-client-0:1.0.8-1.Final_redhat_1.1.ep7.el7
eap7-wildfly-openssl-0:1.0.6-1.Final_redhat_1.1.ep7.el7
eap7-wildfly-openssl-java-0:1.0.6-1.Final_redhat_1.1.ep7.el7
eap7-wildfly-web-console-eap-0:2.9.17-1.Final_redhat_1.1.ep7.el7
eap7-activemq-artemis-0:1.5.5.012-1.redhat_1.1.ep7.el6
eap7-activemq-artemis-cli-0:1.5.5.012-1.redhat_1.1.ep7.el6
eap7-activemq-artemis-commons-0:1.5.5.012-1.redhat_1.1.ep7.el6
eap7-activemq-artemis-core-client-0:1.5.5.012-1.redhat_1.1.ep7.el6
eap7-activemq-artemis-dto-0:1.5.5.012-1.redhat_1.1.ep7.el6
eap7-activemq-artemis-hornetq-protocol-0:1.5.5.012-1.redhat_1.1.ep7.el6
eap7-activemq-artemis-hqclient-protocol-0:1.5.5.012-1.redhat_1.1.ep7.el6
eap7-activemq-artemis-jdbc-store-0:1.5.5.012-1.redhat_1.1.ep7.el6
eap7-activemq-artemis-jms-client-0:1.5.5.012-1.redhat_1.1.ep7.el6
eap7-activemq-artemis-jms-server-0:1.5.5.012-1.redhat_1.1.ep7.el6
eap7-activemq-artemis-journal-0:1.5.5.012-1.redhat_1.1.ep7.el6
eap7-activemq-artemis-native-0:1.5.5.012-1.redhat_1.1.ep7.el6
eap7-activemq-artemis-ra-0:1.5.5.012-1.redhat_1.1.ep7.el6
eap7-activemq-artemis-selector-0:1.5.5.012-1.redhat_1.1.ep7.el6
eap7-activemq-artemis-server-0:1.5.5.012-1.redhat_1.1.ep7.el6
eap7-activemq-artemis-service-extensions-0:1.5.5.012-1.redhat_1.1.ep7.el6
eap7-commons-logging-jboss-logmanager-0:1.0.3-1.Final_redhat_1.1.ep7.el6
eap7-hibernate-0:5.1.14-1.Final_redhat_1.1.ep7.el6
eap7-hibernate-core-0:5.1.14-1.Final_redhat_1.1.ep7.el6
eap7-hibernate-entitymanager-0:5.1.14-1.Final_redhat_1.1.ep7.el6
eap7-hibernate-envers-0:5.1.14-1.Final_redhat_1.1.ep7.el6
eap7-hibernate-infinispan-0:5.1.14-1.Final_redhat_1.1.ep7.el6
eap7-hibernate-java8-0:5.1.14-1.Final_redhat_1.1.ep7.el6
eap7-infinispan-0:8.2.11-1.Final_redhat_1.1.ep7.el6
eap7-infinispan-cachestore-jdbc-0:8.2.11-1.Final_redhat_1.1.ep7.el6
eap7-infinispan-cachestore-remote-0:8.2.11-1.Final_redhat_1.1.ep7.el6
eap7-infinispan-client-hotrod-0:8.2.11-1.Final_redhat_1.1.ep7.el6
eap7-infinispan-commons-0:8.2.11-1.Final_redhat_1.1.ep7.el6
eap7-infinispan-core-0:8.2.11-1.Final_redhat_1.1.ep7.el6
eap7-ironjacamar-0:1.4.9-1.Final_redhat_1.1.ep7.el6
eap7-ironjacamar-common-api-0:1.4.9-1.Final_redhat_1.1.ep7.el6
eap7-ironjacamar-common-impl-0:1.4.9-1.Final_redhat_1.1.ep7.el6
eap7-ironjacamar-common-spi-0:1.4.9-1.Final_redhat_1.1.ep7.el6
eap7-ironjacamar-core-api-0:1.4.9-1.Final_redhat_1.1.ep7.el6
eap7-ironjacamar-core-impl-0:1.4.9-1.Final_redhat_1.1.ep7.el6
eap7-ironjacamar-deployers-common-0:1.4.9-1.Final_redhat_1.1.ep7.el6
eap7-ironjacamar-jdbc-0:1.4.9-1.Final_redhat_1.1.ep7.el6
eap7-ironjacamar-validator-0:1.4.9-1.Final_redhat_1.1.ep7.el6
eap7-jackson-databind-0:2.8.11.1-1.redhat_1.1.ep7.el6
eap7-jackson-jaxrs-base-0:2.8.11-2.redhat_1.1.ep7.el6
eap7-jackson-jaxrs-json-provider-0:2.8.11-2.redhat_1.1.ep7.el6
eap7-jackson-module-jaxb-annotations-0:2.8.11-2.redhat_1.1.ep7.el6
eap7-jboss-logmanager-0:2.0.10-1.Final_redhat_1.1.ep7.el6
eap7-jboss-marshalling-0:2.0.5-1.Final_redhat_1.1.ep7.el6
eap7-jboss-marshalling-river-0:2.0.5-1.Final_redhat_1.1.ep7.el6
eap7-jboss-modules-0:1.6.4-1.Final_redhat_1.1.ep7.el6
eap7-jboss-remoting-0:5.0.7-1.Final_redhat_1.1.ep7.el6
eap7-jboss-server-migration-0:1.0.6-3.Final_redhat_3.1.ep7.el6
eap7-jboss-server-migration-cli-0:1.0.6-3.Final_redhat_3.1.ep7.el6
eap7-jboss-server-migration-core-0:1.0.6-3.Final_redhat_3.1.ep7.el6
eap7-jboss-server-migration-eap6.4-0:1.0.6-3.Final_redhat_3.1.ep7.el6
eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.6-3.Final_redhat_3.1.ep7.el6
eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.6-3.Final_redhat_3.1.ep7.el6
eap7-jboss-server-migration-eap7.0-0:1.0.6-3.Final_redhat_3.1.ep7.el6
eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.6-3.Final_redhat_3.1.ep7.el6
eap7-jboss-server-migration-eap7.1-0:1.0.6-3.Final_redhat_3.1.ep7.el6
eap7-jboss-server-migration-wildfly10.0-0:1.0.6-3.Final_redhat_3.1.ep7.el6
eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.6-3.Final_redhat_3.1.ep7.el6
eap7-jboss-server-migration-wildfly10.1-0:1.0.6-3.Final_redhat_3.1.ep7.el6
eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.6-3.Final_redhat_3.1.ep7.el6
eap7-jboss-server-migration-wildfly8.2-0:1.0.6-3.Final_redhat_3.1.ep7.el6
eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.6-3.Final_redhat_3.1.ep7.el6
eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.6-3.Final_redhat_3.1.ep7.el6
eap7-jboss-server-migration-wildfly9.0-0:1.0.6-3.Final_redhat_3.1.ep7.el6
eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.6-3.Final_redhat_3.1.ep7.el6
eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.6-3.Final_redhat_3.1.ep7.el6
eap7-picketlink-api-0:2.5.5-12.SP11_redhat_1.1.ep7.el6
eap7-picketlink-bindings-0:2.5.5-12.SP11_redhat_1.1.ep7.el6
eap7-picketlink-common-0:2.5.5-12.SP11_redhat_1.1.ep7.el6
eap7-picketlink-config-0:2.5.5-12.SP11_redhat_1.1.ep7.el6
eap7-picketlink-federation-0:2.5.5-12.SP11_redhat_1.1.ep7.el6
eap7-picketlink-idm-api-0:2.5.5-12.SP11_redhat_1.1.ep7.el6
eap7-picketlink-idm-impl-0:2.5.5-12.SP11_redhat_1.1.ep7.el6
eap7-picketlink-idm-simple-schema-0:2.5.5-12.SP11_redhat_1.1.ep7.el6
eap7-picketlink-impl-0:2.5.5-12.SP11_redhat_1.1.ep7.el6
eap7-picketlink-wildfly8-0:2.5.5-12.SP11_redhat_1.1.ep7.el6
eap7-undertow-0:1.4.18-6.SP7_redhat_1.1.ep7.el6
eap7-wildfly-0:7.1.3-2.GA_redhat_2.1.ep7.el6
eap7-wildfly-elytron-0:1.1.10-1.Final_redhat_1.1.ep7.el6
eap7-wildfly-elytron-tool-0:1.0.7-1.Final_redhat_1.1.ep7.el6
eap7-wildfly-javadocs-0:7.1.3-1.GA_redhat_2.1.ep7.el6
eap7-wildfly-modules-0:7.1.3-2.GA_redhat_2.1.ep7.el6
eap7-wildfly-naming-client-0:1.0.8-1.Final_redhat_1.1.ep7.el6
eap7-wildfly-openssl-0:1.0.6-1.Final_redhat_1.1.ep7.el6
eap7-wildfly-openssl-java-0:1.0.6-1.Final_redhat_1.1.ep7.el6
eap7-wildfly-web-console-eap-0:2.9.17-1.Final_redhat_1.1.ep7.el6

refmap via4

Last major update

25-03-2021 - 01:15

Published

26-02-2018 - 15:29

Last modified

25-03-2021 - 01:15