Back to bug 1400644
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Adam Mariš | 2016-12-01 17:08:24 UTC | CC | security-response-team | |
| Adam Mariš | 2016-12-01 17:12:25 UTC | Blocks | 1400646 | |
| Martin Prpič | 2016-12-02 09:08:55 UTC | Alias | CVE-2016-9571 | |
| Martin Prpič | 2016-12-02 09:09:15 UTC | Summary | EMBARGOED snakeyaml: Unmarshalling vulnerable to RCE | EMBARGOED CVE-2016-9571 snakeyaml: Unmarshalling vulnerable to RCE |
| Hooman Broujerdi | 2016-12-06 04:33:26 UTC | Whiteboard | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,brms-6/snakeyaml=new,jboss/snakeyaml=new,jdv-6.3.0/snakeyaml=new,eap-6/snakeyaml=new,eap-7/snakeyaml=new,fuse-6/snakeyaml=new,jon-3/snakeyaml=new,rhsso-7.0/snakeyaml=new,jpp-6.2.x/snakeyaml=new,rhmap-4/millicore=new,openshift-enterprise-2/millicore=new,dts-4/devtoolset-4-snakeyaml=new,rhel-7/snakeyaml=new,rhscl-2/rh-java-common-snakeyaml=new,fedora-all/snakeyaml=affected | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,brms-6/snakeyaml=new,jboss/snakeyaml=new,jdv-6.3.0/snakeyaml=new,eap-6/snakeyaml=new,eap-7/snakeyaml=new,fuse-6/snakeyaml=affected,jon-3/snakeyaml=new,rhsso-7.0/snakeyaml=new,jpp-6.2.x/snakeyaml=new,rhmap-4/millicore=new,openshift-enterprise-2/millicore=new,dts-4/devtoolset-4-snakeyaml=new,rhel-7/snakeyaml=new,rhscl-2/rh-java-common-snakeyaml=new,fedora-all/snakeyaml=affected |
| Pavel Polischouk | 2016-12-06 15:54:34 UTC | Whiteboard | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,brms-6/snakeyaml=new,jboss/snakeyaml=new,jdv-6.3.0/snakeyaml=new,eap-6/snakeyaml=new,eap-7/snakeyaml=new,fuse-6/snakeyaml=affected,jon-3/snakeyaml=new,rhsso-7.0/snakeyaml=new,jpp-6.2.x/snakeyaml=new,rhmap-4/millicore=new,openshift-enterprise-2/millicore=new,dts-4/devtoolset-4-snakeyaml=new,rhel-7/snakeyaml=new,rhscl-2/rh-java-common-snakeyaml=new,fedora-all/snakeyaml=affected | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,bpms-6/snakeyaml=affected,brms-6/snakeyaml=affected,jboss/snakeyaml=new,jdv-6.3.0/snakeyaml=new,eap-6/snakeyaml=new,eap-7/snakeyaml=new,fuse-6/snakeyaml=affected,jon-3/snakeyaml=new,rhsso-7.0/snakeyaml=new,jpp-6.2.x/snakeyaml=new,rhmap-4/millicore=new,openshift-enterprise-2/millicore=new,dts-4/devtoolset-4-snakeyaml=new,rhel-7/snakeyaml=new,rhscl-2/rh-java-common-snakeyaml=new,fedora-all/snakeyaml=affected |
| Pavel Polischouk | 2016-12-06 16:53:42 UTC | Whiteboard | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,bpms-6/snakeyaml=affected,brms-6/snakeyaml=affected,jboss/snakeyaml=new,jdv-6.3.0/snakeyaml=new,eap-6/snakeyaml=new,eap-7/snakeyaml=new,fuse-6/snakeyaml=affected,jon-3/snakeyaml=new,rhsso-7.0/snakeyaml=new,jpp-6.2.x/snakeyaml=new,rhmap-4/millicore=new,openshift-enterprise-2/millicore=new,dts-4/devtoolset-4-snakeyaml=new,rhel-7/snakeyaml=new,rhscl-2/rh-java-common-snakeyaml=new,fedora-all/snakeyaml=affected | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,bpms-6/snakeyaml=affected,brms-6/snakeyaml=affected,jboss/snakeyaml=new,jdv-6.3.0/snakeyaml=notaffected,eap-6/snakeyaml=new,eap-7/snakeyaml=new,fuse-6/snakeyaml=affected,jon-3/snakeyaml=new,rhsso-7.0/snakeyaml=new,jpp-6.2.x/snakeyaml=new,rhmap-4/millicore=new,openshift-enterprise-2/millicore=new,dts-4/devtoolset-4-snakeyaml=new,rhel-7/snakeyaml=new,rhscl-2/rh-java-common-snakeyaml=new,fedora-all/snakeyaml=affected |
| Jason Shepherd | 2016-12-09 01:25:14 UTC | Whiteboard | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,bpms-6/snakeyaml=affected,brms-6/snakeyaml=affected,jboss/snakeyaml=new,jdv-6.3.0/snakeyaml=notaffected,eap-6/snakeyaml=new,eap-7/snakeyaml=new,fuse-6/snakeyaml=affected,jon-3/snakeyaml=new,rhsso-7.0/snakeyaml=new,jpp-6.2.x/snakeyaml=new,rhmap-4/millicore=new,openshift-enterprise-2/millicore=new,dts-4/devtoolset-4-snakeyaml=new,rhel-7/snakeyaml=new,rhscl-2/rh-java-common-snakeyaml=new,fedora-all/snakeyaml=affected | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,bpms-6/snakeyaml=affected,brms-6/snakeyaml=affected,jboss/snakeyaml=new,jdv-6.3.0/snakeyaml=notaffected,eap-6/snakeyaml=new,eap-7/snakeyaml=new,fuse-6/snakeyaml=affected,jon-3/snakeyaml=new,rhsso-7.0/snakeyaml=new,jpp-6.2.x/snakeyaml=new,rhmap-4/millicore=new,openshift-enterprise-2/millicore=new,dts-4/devtoolset-4-snakeyaml=new,rhel-7/snakeyaml=new,rhscl-2/rh-java-common-snakeyaml=new,fedora-all/snakeyaml=affected,fedora-all/resteasy=new |
| Jason Shepherd | 2016-12-09 01:26:08 UTC | Whiteboard | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,bpms-6/snakeyaml=affected,brms-6/snakeyaml=affected,jboss/snakeyaml=new,jdv-6.3.0/snakeyaml=notaffected,eap-6/snakeyaml=new,eap-7/snakeyaml=new,fuse-6/snakeyaml=affected,jon-3/snakeyaml=new,rhsso-7.0/snakeyaml=new,jpp-6.2.x/snakeyaml=new,rhmap-4/millicore=new,openshift-enterprise-2/millicore=new,dts-4/devtoolset-4-snakeyaml=new,rhel-7/snakeyaml=new,rhscl-2/rh-java-common-snakeyaml=new,fedora-all/snakeyaml=affected,fedora-all/resteasy=new | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,bpms-6/snakeyaml=affected,brms-6/snakeyaml=affected,jboss/snakeyaml=new,jdv-6.3.0/snakeyaml=notaffected,eap-6/snakeyaml=new,eap-7/snakeyaml=new,fuse-6/snakeyaml=affected,jon-3/snakeyaml=new,rhsso-7.0/snakeyaml=new,jpp-6.2.x/snakeyaml=new,rhmap-4/millicore=new,openshift-enterprise-2/millicore=new,dts-4/devtoolset-4-snakeyaml=new,rhel-7/snakeyaml=new,rhscl-2/rh-java-common-snakeyaml=new,fedora-all/snakeyaml=affected,fedora-all/resteasy=new,eap-6/resteasy=affected |
| Jason Shepherd | 2016-12-09 01:27:07 UTC | Whiteboard | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,bpms-6/snakeyaml=affected,brms-6/snakeyaml=affected,jboss/snakeyaml=new,jdv-6.3.0/snakeyaml=notaffected,eap-6/snakeyaml=new,eap-7/snakeyaml=new,fuse-6/snakeyaml=affected,jon-3/snakeyaml=new,rhsso-7.0/snakeyaml=new,jpp-6.2.x/snakeyaml=new,rhmap-4/millicore=new,openshift-enterprise-2/millicore=new,dts-4/devtoolset-4-snakeyaml=new,rhel-7/snakeyaml=new,rhscl-2/rh-java-common-snakeyaml=new,fedora-all/snakeyaml=affected,fedora-all/resteasy=new,eap-6/resteasy=affected | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,bpms-6/snakeyaml=affected,brms-6/snakeyaml=affected,jboss/snakeyaml=new,jdv-6.3.0/snakeyaml=notaffected,eap-7/snakeyaml=new,fuse-6/snakeyaml=affected,jon-3/snakeyaml=new,rhsso-7.0/snakeyaml=new,jpp-6.2.x/snakeyaml=new,rhmap-4/millicore=new,openshift-enterprise-2/millicore=new,dts-4/devtoolset-4-snakeyaml=new,rhel-7/snakeyaml=new,rhscl-2/rh-java-common-snakeyaml=new,fedora-all/snakeyaml=affected,fedora-all/resteasy=new,eap-6/resteasy=affected |
| Jason Shepherd | 2016-12-09 01:27:56 UTC | Whiteboard | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,bpms-6/snakeyaml=affected,brms-6/snakeyaml=affected,jboss/snakeyaml=new,jdv-6.3.0/snakeyaml=notaffected,eap-7/snakeyaml=new,fuse-6/snakeyaml=affected,jon-3/snakeyaml=new,rhsso-7.0/snakeyaml=new,jpp-6.2.x/snakeyaml=new,rhmap-4/millicore=new,openshift-enterprise-2/millicore=new,dts-4/devtoolset-4-snakeyaml=new,rhel-7/snakeyaml=new,rhscl-2/rh-java-common-snakeyaml=new,fedora-all/snakeyaml=affected,fedora-all/resteasy=new,eap-6/resteasy=affected | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,bpms-6/snakeyaml=affected,brms-6/snakeyaml=affected,jboss/snakeyaml=new,jdv-6.3.0/snakeyaml=notaffected,fuse-6/snakeyaml=affected,jon-3/snakeyaml=new,rhsso-7.0/snakeyaml=new,jpp-6.2.x/snakeyaml=new,rhmap-4/millicore=new,openshift-enterprise-2/millicore=new,dts-4/devtoolset-4-snakeyaml=new,rhel-7/snakeyaml=new,rhscl-2/rh-java-common-snakeyaml=new,fedora-all/snakeyaml=affected,fedora-all/resteasy=new,eap-6/resteasy=affected |
| Jason Shepherd | 2016-12-09 01:28:56 UTC | Whiteboard | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,bpms-6/snakeyaml=affected,brms-6/snakeyaml=affected,jboss/snakeyaml=new,jdv-6.3.0/snakeyaml=notaffected,fuse-6/snakeyaml=affected,jon-3/snakeyaml=new,rhsso-7.0/snakeyaml=new,jpp-6.2.x/snakeyaml=new,rhmap-4/millicore=new,openshift-enterprise-2/millicore=new,dts-4/devtoolset-4-snakeyaml=new,rhel-7/snakeyaml=new,rhscl-2/rh-java-common-snakeyaml=new,fedora-all/snakeyaml=affected,fedora-all/resteasy=new,eap-6/resteasy=affected | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,bpms-6/snakeyaml=affected,brms-6/snakeyaml=affected,jboss/snakeyaml=new,jdv-6.3.0/snakeyaml=notaffected,fuse-6/snakeyaml=affected,jon-3/snakeyaml=new,rhsso-7.0/snakeyaml=new,jpp-6.2.x/snakeyaml=new,rhmap-4/millicore=new,openshift-enterprise-2/millicore=new,dts-4/devtoolset-4-snakeyaml=new,rhel-7/snakeyaml=new,rhscl-2/rh-java-common-snakeyaml=new,fedora-all/snakeyaml=affected,fedora-all/resteasy=new,eap-6/resteasy=affected,eap-7/resteasy=notaffected |
| Jason Shepherd | 2016-12-09 02:59:22 UTC | Whiteboard | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,bpms-6/snakeyaml=affected,brms-6/snakeyaml=affected,jboss/snakeyaml=new,jdv-6.3.0/snakeyaml=notaffected,fuse-6/snakeyaml=affected,jon-3/snakeyaml=new,rhsso-7.0/snakeyaml=new,jpp-6.2.x/snakeyaml=new,rhmap-4/millicore=new,openshift-enterprise-2/millicore=new,dts-4/devtoolset-4-snakeyaml=new,rhel-7/snakeyaml=new,rhscl-2/rh-java-common-snakeyaml=new,fedora-all/snakeyaml=affected,fedora-all/resteasy=new,eap-6/resteasy=affected,eap-7/resteasy=notaffected | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,bpms-6/snakeyaml=affected,brms-6/snakeyaml=affected,jboss/snakeyaml=new,jdv-6.3.0/snakeyaml=notaffected,fuse-6/snakeyaml=affected,jon-3/snakeyaml=new,rhsso-7.0/snakeyaml=new,jpp-6.2.x/snakeyaml=new,rhmap-4/millicore=new,openshift-enterprise-2/millicore=new,dts-4/devtoolset-4-snakeyaml=new,rhel-7/snakeyaml=new,rhscl-2/rh-java-common-snakeyaml=new,fedora-all/snakeyaml=affected,fedora-all/resteasy=new,eap-6/resteasy=affected,eap-7/resteasy=notaffected,rhel-7/resteasy-base=new |
| Jason Shepherd | 2016-12-09 02:59:41 UTC | CC | alee | |
| Jason Shepherd | 2016-12-09 03:02:56 UTC | Whiteboard | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,bpms-6/snakeyaml=affected,brms-6/snakeyaml=affected,jboss/snakeyaml=new,jdv-6.3.0/snakeyaml=notaffected,fuse-6/snakeyaml=affected,jon-3/snakeyaml=new,rhsso-7.0/snakeyaml=new,jpp-6.2.x/snakeyaml=new,rhmap-4/millicore=new,openshift-enterprise-2/millicore=new,dts-4/devtoolset-4-snakeyaml=new,rhel-7/snakeyaml=new,rhscl-2/rh-java-common-snakeyaml=new,fedora-all/snakeyaml=affected,fedora-all/resteasy=new,eap-6/resteasy=affected,eap-7/resteasy=notaffected,rhel-7/resteasy-base=new | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,bpms-6/snakeyaml=affected,brms-6/snakeyaml=affected,jdv-6.3.0/snakeyaml=notaffected,fuse-6/snakeyaml=affected,jon-3/snakeyaml=new,rhsso-7.0/snakeyaml=new,jpp-6.2.x/snakeyaml=new,rhmap-4/millicore=new,openshift-enterprise-2/millicore=new,dts-4/devtoolset-4-snakeyaml=new,rhel-7/snakeyaml=new,rhscl-2/rh-java-common-snakeyaml=new,fedora-all/snakeyaml=affected,fedora-all/resteasy=new,eap-6/resteasy=affected,eap-7/resteasy=notaffected,rhel-7/resteasy-base=new |
| Jason Shepherd | 2016-12-09 03:04:20 UTC | Whiteboard | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,bpms-6/snakeyaml=affected,brms-6/snakeyaml=affected,jdv-6.3.0/snakeyaml=notaffected,fuse-6/snakeyaml=affected,jon-3/snakeyaml=new,rhsso-7.0/snakeyaml=new,jpp-6.2.x/snakeyaml=new,rhmap-4/millicore=new,openshift-enterprise-2/millicore=new,dts-4/devtoolset-4-snakeyaml=new,rhel-7/snakeyaml=new,rhscl-2/rh-java-common-snakeyaml=new,fedora-all/snakeyaml=affected,fedora-all/resteasy=new,eap-6/resteasy=affected,eap-7/resteasy=notaffected,rhel-7/resteasy-base=new | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,bpms-6/snakeyaml=affected,brms-6/snakeyaml=affected,jdv-6.3.0/snakeyaml=notaffected,fuse-6/snakeyaml=affected,jon-3/snakeyaml=new,rhsso-7.0/snakeyaml=new,jpp-6.2.x/snakeyaml=new,rhmap-4/millicore=new,dts-4/devtoolset-4-snakeyaml=new,rhel-7/snakeyaml=new,rhscl-2/rh-java-common-snakeyaml=new,fedora-all/snakeyaml=affected,fedora-all/resteasy=new,eap-6/resteasy=affected,eap-7/resteasy=notaffected,rhel-7/resteasy-base=new |
| Hooman Broujerdi | 2016-12-09 03:31:00 UTC | Whiteboard | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,bpms-6/snakeyaml=affected,brms-6/snakeyaml=affected,jdv-6.3.0/snakeyaml=notaffected,fuse-6/snakeyaml=affected,jon-3/snakeyaml=new,rhsso-7.0/snakeyaml=new,jpp-6.2.x/snakeyaml=new,rhmap-4/millicore=new,dts-4/devtoolset-4-snakeyaml=new,rhel-7/snakeyaml=new,rhscl-2/rh-java-common-snakeyaml=new,fedora-all/snakeyaml=affected,fedora-all/resteasy=new,eap-6/resteasy=affected,eap-7/resteasy=notaffected,rhel-7/resteasy-base=new | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,bpms-6/snakeyaml=affected,brms-6/snakeyaml=affected,jdv-6.3.0/snakeyaml=notaffected,jon-3/snakeyaml=new,rhsso-7.0/snakeyaml=new,jpp-6.2.x/snakeyaml=new,rhmap-4/millicore=new,dts-4/devtoolset-4-snakeyaml=new,rhel-7/snakeyaml=new,rhscl-2/rh-java-common-snakeyaml=new,fedora-all/snakeyaml=affected,fedora-all/resteasy=new,eap-6/resteasy=affected,eap-7/resteasy=notaffected,rhel-7/resteasy-base=new |
| Hooman Broujerdi | 2016-12-09 03:31:59 UTC | Whiteboard | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,bpms-6/snakeyaml=affected,brms-6/snakeyaml=affected,jdv-6.3.0/snakeyaml=notaffected,jon-3/snakeyaml=new,rhsso-7.0/snakeyaml=new,jpp-6.2.x/snakeyaml=new,rhmap-4/millicore=new,dts-4/devtoolset-4-snakeyaml=new,rhel-7/snakeyaml=new,rhscl-2/rh-java-common-snakeyaml=new,fedora-all/snakeyaml=affected,fedora-all/resteasy=new,eap-6/resteasy=affected,eap-7/resteasy=notaffected,rhel-7/resteasy-base=new | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,bpms-6/snakeyaml=affected,brms-6/snakeyaml=affected,jdv-6.3.0/snakeyaml=notaffected,jon-3/snakeyaml=new,rhsso-7.0/snakeyaml=new,jpp-6.2.x/snakeyaml=new,rhmap-4/millicore=new,dts-4/devtoolset-4-snakeyaml=new,rhel-7/snakeyaml=new,rhscl-2/rh-java-common-snakeyaml=new,fedora-all/snakeyaml=affected,fedora-all/resteasy=new,eap-6/resteasy=affected,eap-7/resteasy=notaffected,rhel-7/resteasy-base=new,fuse-6/Camel=affected |
| Horia Chiorean | 2016-12-09 07:02:59 UTC | CC | hchiorea | |
| Jason Shepherd | 2016-12-09 07:25:07 UTC | Doc Text | It was discovered that under certain conditions RESTEasy could be forced to parse a request with YamlProvider, resulting in unmarshalling of potentially untrusted data. An attacker could possibly use this flaw execute arbitrary code with the permissions of the application using RESTEasy. | |
| Jason Shepherd | 2016-12-09 07:59:30 UTC | Summary | EMBARGOED CVE-2016-9571 snakeyaml: Unmarshalling vulnerable to RCE | EMBARGOED CVE-2016-9571 Resteasy: Yaml unmarshalling vulnerable to RCE |
| Jason Shepherd | 2016-12-12 03:59:24 UTC | Whiteboard | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,bpms-6/snakeyaml=affected,brms-6/snakeyaml=affected,jdv-6.3.0/snakeyaml=notaffected,jon-3/snakeyaml=new,rhsso-7.0/snakeyaml=new,jpp-6.2.x/snakeyaml=new,rhmap-4/millicore=new,dts-4/devtoolset-4-snakeyaml=new,rhel-7/snakeyaml=new,rhscl-2/rh-java-common-snakeyaml=new,fedora-all/snakeyaml=affected,fedora-all/resteasy=new,eap-6/resteasy=affected,eap-7/resteasy=notaffected,rhel-7/resteasy-base=new,fuse-6/Camel=affected | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,bpms-6/snakeyaml=affected,brms-6/snakeyaml=affected,jdv-6.3.0/snakeyaml=notaffected,rhsso-7.0/snakeyaml=new,jpp-6.2.x/snakeyaml=new,rhmap-4/millicore=new,dts-4/devtoolset-4-snakeyaml=new,rhel-7/snakeyaml=new,rhscl-2/rh-java-common-snakeyaml=new,fedora-all/snakeyaml=affected,fedora-all/resteasy=new,eap-6/resteasy=affected,eap-7/resteasy=notaffected,rhel-7/resteasy-base=new,fuse-6/Camel=affected |
| Jason Shepherd | 2016-12-12 04:00:11 UTC | Whiteboard | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,bpms-6/snakeyaml=affected,brms-6/snakeyaml=affected,jdv-6.3.0/snakeyaml=notaffected,rhsso-7.0/snakeyaml=new,jpp-6.2.x/snakeyaml=new,rhmap-4/millicore=new,dts-4/devtoolset-4-snakeyaml=new,rhel-7/snakeyaml=new,rhscl-2/rh-java-common-snakeyaml=new,fedora-all/snakeyaml=affected,fedora-all/resteasy=new,eap-6/resteasy=affected,eap-7/resteasy=notaffected,rhel-7/resteasy-base=new,fuse-6/Camel=affected | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,bpms-6/snakeyaml=affected,brms-6/snakeyaml=affected,jdv-6.3.0/snakeyaml=notaffected,rhsso-7.0/snakeyaml=new,jpp-6.2.x/snakeyaml=new,rhmap-4/millicore=new,dts-4/devtoolset-4-snakeyaml=new,rhel-7/snakeyaml=new,rhscl-2/rh-java-common-snakeyaml=new,fedora-all/snakeyaml=affected,fedora-all/resteasy=new,eap-6/resteasy=affected,eap-7/resteasy=notaffected,rhel-7/resteasy-base=new,fuse-6/Camel=affected,jon-3/resteasy=affected |
| Jason Shepherd | 2016-12-12 04:01:04 UTC | Whiteboard | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,bpms-6/snakeyaml=affected,brms-6/snakeyaml=affected,jdv-6.3.0/snakeyaml=notaffected,rhsso-7.0/snakeyaml=new,jpp-6.2.x/snakeyaml=new,rhmap-4/millicore=new,dts-4/devtoolset-4-snakeyaml=new,rhel-7/snakeyaml=new,rhscl-2/rh-java-common-snakeyaml=new,fedora-all/snakeyaml=affected,fedora-all/resteasy=new,eap-6/resteasy=affected,eap-7/resteasy=notaffected,rhel-7/resteasy-base=new,fuse-6/Camel=affected,jon-3/resteasy=affected | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,bpms-6/snakeyaml=affected,brms-6/snakeyaml=affected,jdv-6.3.0/snakeyaml=notaffected,rhsso-7.0/snakeyaml=new,jpp-6.2.x/snakeyaml=new,rhmap-4/millicore=new,dts-4/devtoolset-4-snakeyaml=new,rhel-7/snakeyaml=new,rhscl-2/rh-java-common-snakeyaml=new,fedora-all/resteasy=new,eap-6/resteasy=affected,eap-7/resteasy=notaffected,rhel-7/resteasy-base=new,fuse-6/Camel=affected,jon-3/resteasy=affected |
| Jason Shepherd | 2016-12-12 04:06:26 UTC | Whiteboard | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,bpms-6/snakeyaml=affected,brms-6/snakeyaml=affected,jdv-6.3.0/snakeyaml=notaffected,rhsso-7.0/snakeyaml=new,jpp-6.2.x/snakeyaml=new,rhmap-4/millicore=new,dts-4/devtoolset-4-snakeyaml=new,rhel-7/snakeyaml=new,rhscl-2/rh-java-common-snakeyaml=new,fedora-all/resteasy=new,eap-6/resteasy=affected,eap-7/resteasy=notaffected,rhel-7/resteasy-base=new,fuse-6/Camel=affected,jon-3/resteasy=affected | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,bpms-6/snakeyaml=affected,brms-6/snakeyaml=affected,jdv-6.3.0/snakeyaml=notaffected,rhsso-7.0/snakeyaml=new,jpp-6.2.x/snakeyaml=new,rhmap-4/millicore=new,dts-4/devtoolset-4-snakeyaml=new,rhel-7/snakeyaml=new,rhscl-2/rh-java-common-snakeyaml=new,fedora-all/resteasy=new,eap-6/resteasy=affected,eap-7/resteasy=new,rhel-7/resteasy-base=new,fuse-6/Camel=affected,jon-3/resteasy=affected |
| Jason Shepherd | 2016-12-12 04:07:30 UTC | Whiteboard | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,bpms-6/snakeyaml=affected,brms-6/snakeyaml=affected,jdv-6.3.0/snakeyaml=notaffected,rhsso-7.0/snakeyaml=new,jpp-6.2.x/snakeyaml=new,rhmap-4/millicore=new,dts-4/devtoolset-4-snakeyaml=new,rhel-7/snakeyaml=new,rhscl-2/rh-java-common-snakeyaml=new,fedora-all/resteasy=new,eap-6/resteasy=affected,eap-7/resteasy=new,rhel-7/resteasy-base=new,fuse-6/Camel=affected,jon-3/resteasy=affected | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,bpms-6/snakeyaml=affected,brms-6/snakeyaml=affected,jdv-6.3.0/snakeyaml=notaffected,rhsso-7.0/snakeyaml=new,jpp-6.2.x/snakeyaml=new,rhmap-4/millicore=new,dts-4/devtoolset-4-snakeyaml=new,rhel-7/snakeyaml=new,rhscl-2/rh-java-common-snakeyaml=new,fedora-all/resteasy=new,eap-6/resteasy=affected,eap-7/resteasy=new,rhel-7/resteasy-base=new,fuse-6/Camel=affected,jon-3/resteasy=new |
| Jason Shepherd | 2016-12-12 04:08:32 UTC | Whiteboard | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,bpms-6/snakeyaml=affected,brms-6/snakeyaml=affected,jdv-6.3.0/snakeyaml=notaffected,rhsso-7.0/snakeyaml=new,jpp-6.2.x/snakeyaml=new,rhmap-4/millicore=new,dts-4/devtoolset-4-snakeyaml=new,rhel-7/snakeyaml=new,rhscl-2/rh-java-common-snakeyaml=new,fedora-all/resteasy=new,eap-6/resteasy=affected,eap-7/resteasy=new,rhel-7/resteasy-base=new,fuse-6/Camel=affected,jon-3/resteasy=new | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,bpms-6/snakeyaml=affected,brms-6/snakeyaml=affected,jdv-6.3.0/snakeyaml=notaffected,rhsso-7.0/snakeyaml=new,jpp-6.2.x/snakeyaml=new,rhmap-4/millicore=new,dts-4/devtoolset-4-snakeyaml=new,rhscl-2/rh-java-common-snakeyaml=new,fedora-all/resteasy=new,eap-6/resteasy=affected,eap-7/resteasy=new,rhel-7/resteasy-base=new,fuse-6/Camel=affected,jon-3/resteasy=new |
| Jason Shepherd | 2016-12-12 04:09:15 UTC | Whiteboard | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,bpms-6/snakeyaml=affected,brms-6/snakeyaml=affected,jdv-6.3.0/snakeyaml=notaffected,rhsso-7.0/snakeyaml=new,jpp-6.2.x/snakeyaml=new,rhmap-4/millicore=new,dts-4/devtoolset-4-snakeyaml=new,rhscl-2/rh-java-common-snakeyaml=new,fedora-all/resteasy=new,eap-6/resteasy=affected,eap-7/resteasy=new,rhel-7/resteasy-base=new,fuse-6/Camel=affected,jon-3/resteasy=new | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,bpms-6/snakeyaml=affected,brms-6/snakeyaml=affected,jdv-6.3.0/snakeyaml=notaffected,rhsso-7.0/snakeyaml=new,jpp-6.2.x/snakeyaml=new,rhmap-4/millicore=new,dts-4/devtoolset-4-snakeyaml=new,rhscl-2/rh-java-common-snakeyaml=new,fedora-all/resteasy=new,eap-6/resteasy=affected,eap-7/resteasy=new,rhel-7/resteasy-base=notaffected,fuse-6/Camel=affected,jon-3/resteasy=new |
| Jason Shepherd | 2016-12-12 04:10:40 UTC | Whiteboard | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,bpms-6/snakeyaml=affected,brms-6/snakeyaml=affected,jdv-6.3.0/snakeyaml=notaffected,rhsso-7.0/snakeyaml=new,jpp-6.2.x/snakeyaml=new,rhmap-4/millicore=new,dts-4/devtoolset-4-snakeyaml=new,rhscl-2/rh-java-common-snakeyaml=new,fedora-all/resteasy=new,eap-6/resteasy=affected,eap-7/resteasy=new,rhel-7/resteasy-base=notaffected,fuse-6/Camel=affected,jon-3/resteasy=new | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,brms-6/snakeyaml=affected,jdv-6.3.0/snakeyaml=notaffected,rhsso-7.0/snakeyaml=new,jpp-6.2.x/snakeyaml=new,rhmap-4/millicore=new,dts-4/devtoolset-4-snakeyaml=new,rhscl-2/rh-java-common-snakeyaml=new,fedora-all/resteasy=new,eap-6/resteasy=affected,eap-7/resteasy=new,rhel-7/resteasy-base=notaffected,fuse-6/Camel=affected,jon-3/resteasy=new |
| Jason Shepherd | 2016-12-12 04:12:22 UTC | Whiteboard | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,brms-6/snakeyaml=affected,jdv-6.3.0/snakeyaml=notaffected,rhsso-7.0/snakeyaml=new,jpp-6.2.x/snakeyaml=new,rhmap-4/millicore=new,dts-4/devtoolset-4-snakeyaml=new,rhscl-2/rh-java-common-snakeyaml=new,fedora-all/resteasy=new,eap-6/resteasy=affected,eap-7/resteasy=new,rhel-7/resteasy-base=notaffected,fuse-6/Camel=affected,jon-3/resteasy=new | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,jdv-6.3.0/snakeyaml=notaffected,rhsso-7.0/snakeyaml=new,jpp-6.2.x/snakeyaml=new,rhmap-4/millicore=new,dts-4/devtoolset-4-snakeyaml=new,rhscl-2/rh-java-common-snakeyaml=new,fedora-all/resteasy=new,eap-6/resteasy=affected,eap-7/resteasy=new,rhel-7/resteasy-base=notaffected,fuse-6/Camel=affected,jon-3/resteasy=new |
| Jason Shepherd | 2016-12-12 04:24:34 UTC | Whiteboard | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,jdv-6.3.0/snakeyaml=notaffected,rhsso-7.0/snakeyaml=new,jpp-6.2.x/snakeyaml=new,rhmap-4/millicore=new,dts-4/devtoolset-4-snakeyaml=new,rhscl-2/rh-java-common-snakeyaml=new,fedora-all/resteasy=new,eap-6/resteasy=affected,eap-7/resteasy=new,rhel-7/resteasy-base=notaffected,fuse-6/Camel=affected,jon-3/resteasy=new | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,jdv-6.3.0/snakeyaml=notaffected,rhsso-7.0/snakeyaml=new,jpp-6.2.x/snakeyaml=new,rhmap-4/millicore=notaffected,dts-4/devtoolset-4-snakeyaml=new,rhscl-2/rh-java-common-snakeyaml=new,fedora-all/resteasy=new,eap-6/resteasy=affected,eap-7/resteasy=new,rhel-7/resteasy-base=notaffected,fuse-6/Camel=affected,jon-3/resteasy=new |
| Jason Shepherd | 2016-12-12 04:25:42 UTC | Whiteboard | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,jdv-6.3.0/snakeyaml=notaffected,rhsso-7.0/snakeyaml=new,jpp-6.2.x/snakeyaml=new,rhmap-4/millicore=notaffected,dts-4/devtoolset-4-snakeyaml=new,rhscl-2/rh-java-common-snakeyaml=new,fedora-all/resteasy=new,eap-6/resteasy=affected,eap-7/resteasy=new,rhel-7/resteasy-base=notaffected,fuse-6/Camel=affected,jon-3/resteasy=new | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,jdv-6.3.0/snakeyaml=notaffected,rhsso-7.0/snakeyaml=new,jpp-6.2.x/snakeyaml=new,rhmap-4/millicore=notaffected,dts-4/devtoolset-4-snakeyaml=new,fedora-all/resteasy=new,eap-6/resteasy=affected,eap-7/resteasy=new,rhel-7/resteasy-base=notaffected,fuse-6/Camel=affected,jon-3/resteasy=new |
| Jason Shepherd | 2016-12-12 04:28:48 UTC | Whiteboard | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,jdv-6.3.0/snakeyaml=notaffected,rhsso-7.0/snakeyaml=new,jpp-6.2.x/snakeyaml=new,rhmap-4/millicore=notaffected,dts-4/devtoolset-4-snakeyaml=new,fedora-all/resteasy=new,eap-6/resteasy=affected,eap-7/resteasy=new,rhel-7/resteasy-base=notaffected,fuse-6/Camel=affected,jon-3/resteasy=new | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,jdv-6.3.0/snakeyaml=notaffected,rhsso-7.0/snakeyaml=new,jpp-6.2.x/snakeyaml=new,rhmap-4/millicore=notaffected,fedora-all/resteasy=new,eap-6/resteasy=affected,eap-7/resteasy=new,rhel-7/resteasy-base=notaffected,fuse-6/Camel=affected,jon-3/resteasy=new |
| Jason Shepherd | 2016-12-12 04:30:23 UTC | Whiteboard | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,jdv-6.3.0/snakeyaml=notaffected,rhsso-7.0/snakeyaml=new,jpp-6.2.x/snakeyaml=new,rhmap-4/millicore=notaffected,fedora-all/resteasy=new,eap-6/resteasy=affected,eap-7/resteasy=new,rhel-7/resteasy-base=notaffected,fuse-6/Camel=affected,jon-3/resteasy=new | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,rhsso-7.0/snakeyaml=new,jpp-6.2.x/snakeyaml=new,rhmap-4/millicore=notaffected,fedora-all/resteasy=new,eap-6/resteasy=affected,eap-7/resteasy=new,rhel-7/resteasy-base=notaffected,fuse-6/Camel=affected,jon-3/resteasy=new |
| Jason Shepherd | 2016-12-12 04:32:08 UTC | Whiteboard | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,rhsso-7.0/snakeyaml=new,jpp-6.2.x/snakeyaml=new,rhmap-4/millicore=notaffected,fedora-all/resteasy=new,eap-6/resteasy=affected,eap-7/resteasy=new,rhel-7/resteasy-base=notaffected,fuse-6/Camel=affected,jon-3/resteasy=new | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,rhsso-7.0/snakeyaml=new,rhmap-4/millicore=notaffected,fedora-all/resteasy=new,eap-6/resteasy=affected,eap-7/resteasy=new,rhel-7/resteasy-base=notaffected,fuse-6/Camel=affected,jon-3/resteasy=new |
| Jason Shepherd | 2016-12-12 04:32:52 UTC | Whiteboard | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,rhsso-7.0/snakeyaml=new,rhmap-4/millicore=notaffected,fedora-all/resteasy=new,eap-6/resteasy=affected,eap-7/resteasy=new,rhel-7/resteasy-base=notaffected,fuse-6/Camel=affected,jon-3/resteasy=new | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,rhsso-7.0/snakeyaml=new,rhmap-4/millicore=notaffected,fedora-all/resteasy=new,eap-6/resteasy=affected,eap-7/resteasy=new,rhel-7/resteasy-base=notaffected,fuse-6/Camel=affected,jon-3/resteasy=new,jpp-6.2.x/resteasy=new |
| Jason Shepherd | 2016-12-12 04:33:42 UTC | Whiteboard | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,rhsso-7.0/snakeyaml=new,rhmap-4/millicore=notaffected,fedora-all/resteasy=new,eap-6/resteasy=affected,eap-7/resteasy=new,rhel-7/resteasy-base=notaffected,fuse-6/Camel=affected,jon-3/resteasy=new,jpp-6.2.x/resteasy=new | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,rhmap-4/millicore=notaffected,fedora-all/resteasy=new,eap-6/resteasy=affected,eap-7/resteasy=new,rhel-7/resteasy-base=notaffected,fuse-6/Camel=affected,jon-3/resteasy=new,jpp-6.2.x/resteasy=new |
| Jason Shepherd | 2016-12-12 04:34:26 UTC | Whiteboard | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,rhmap-4/millicore=notaffected,fedora-all/resteasy=new,eap-6/resteasy=affected,eap-7/resteasy=new,rhel-7/resteasy-base=notaffected,fuse-6/Camel=affected,jon-3/resteasy=new,jpp-6.2.x/resteasy=new | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,rhmap-4/millicore=notaffected,fedora-all/resteasy=new,eap-6/resteasy=affected,eap-7/resteasy=new,rhel-7/resteasy-base=notaffected,fuse-6/Camel=affected,jon-3/resteasy=new,jpp-6.2.x/resteasy=new,rhsso-7.0/resteasy=new |
| Jason Shepherd | 2016-12-12 04:36:40 UTC | Whiteboard | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,rhmap-4/millicore=notaffected,fedora-all/resteasy=new,eap-6/resteasy=affected,eap-7/resteasy=new,rhel-7/resteasy-base=notaffected,fuse-6/Camel=affected,jon-3/resteasy=new,jpp-6.2.x/resteasy=new,rhsso-7.0/resteasy=new | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,rhmap-4/millicore=notaffected,fedora-all/resteasy=new,eap-6/resteasy=affected,eap-7/resteasy=new,rhel-7/resteasy-base=notaffected,jon-3/resteasy=new,jpp-6.2.x/resteasy=new,rhsso-7.0/resteasy=new |
| Jason Shepherd | 2016-12-12 04:37:23 UTC | Whiteboard | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,rhmap-4/millicore=notaffected,fedora-all/resteasy=new,eap-6/resteasy=affected,eap-7/resteasy=new,rhel-7/resteasy-base=notaffected,jon-3/resteasy=new,jpp-6.2.x/resteasy=new,rhsso-7.0/resteasy=new | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,rhmap-4/millicore=notaffected,fedora-all/resteasy=new,eap-6/resteasy=affected,eap-7/resteasy=new,rhel-7/resteasy-base=notaffected,jon-3/resteasy=new,jpp-6.2.x/resteasy=new,rhsso-7.0/resteasy=new,fuse-6/resteasy=notaffected |
| Jason Shepherd | 2016-12-12 05:55:55 UTC | Whiteboard | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,rhmap-4/millicore=notaffected,fedora-all/resteasy=new,eap-6/resteasy=affected,eap-7/resteasy=new,rhel-7/resteasy-base=notaffected,jon-3/resteasy=new,jpp-6.2.x/resteasy=new,rhsso-7.0/resteasy=new,fuse-6/resteasy=notaffected | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,rhmap-4/millicore=notaffected,fedora-all/resteasy=new,eap-6/resteasy=affected,eap-7/resteasy=notaffected,rhel-7/resteasy-base=notaffected,jon-3/resteasy=new,jpp-6.2.x/resteasy=new,rhsso-7.0/resteasy=new,fuse-6/resteasy=notaffected |
| Jason Shepherd | 2016-12-12 06:27:14 UTC | Depends On | 1403661 | |
| Marek Kopecky | 2016-12-12 09:20:00 UTC | CC | mkopecky | |
| Katerina Odabasi | 2016-12-12 09:29:12 UTC | CC | asoldano, kanovotn | |
| Alessio Soldano | 2016-12-12 15:12:01 UTC | CC | rsigal | |
| Alessio Soldano | 2016-12-12 15:12:44 UTC | CC | rsearls | |
| Jason Shepherd | 2016-12-12 22:13:52 UTC | Whiteboard | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,rhmap-4/millicore=notaffected,fedora-all/resteasy=new,eap-6/resteasy=affected,eap-7/resteasy=notaffected,rhel-7/resteasy-base=notaffected,jon-3/resteasy=new,jpp-6.2.x/resteasy=new,rhsso-7.0/resteasy=new,fuse-6/resteasy=notaffected | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,rhmap-4/millicore=notaffected,fedora-all/resteasy=new,eap-6/resteasy=affected,eap-7/resteasy=notaffected,rhel-7/resteasy-base=notaffected,jon-3/resteasy=new,jpp-6.2.x/resteasy=new,rhsso-7.0/resteasy=new,fuse-6/resteasy=notaffected,brms-6/resteasy=affected |
| Jason Shepherd | 2016-12-12 22:14:35 UTC | Whiteboard | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,rhmap-4/millicore=notaffected,fedora-all/resteasy=new,eap-6/resteasy=affected,eap-7/resteasy=notaffected,rhel-7/resteasy-base=notaffected,jon-3/resteasy=new,jpp-6.2.x/resteasy=new,rhsso-7.0/resteasy=new,fuse-6/resteasy=notaffected,brms-6/resteasy=affected | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,rhmap-4/millicore=notaffected,fedora-all/resteasy=new,eap-6/resteasy=affected,eap-7/resteasy=notaffected,rhel-7/resteasy-base=notaffected,jon-3/resteasy=new,jpp-6.2.x/resteasy=new,rhsso-7.0/resteasy=new,fuse-6/resteasy=notaffected,brms-6/resteasy=affected,bpms-6/resteasy=affected |
| Jason Shepherd | 2016-12-13 05:06:01 UTC | Whiteboard | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,rhmap-4/millicore=notaffected,fedora-all/resteasy=new,eap-6/resteasy=affected,eap-7/resteasy=notaffected,rhel-7/resteasy-base=notaffected,jon-3/resteasy=new,jpp-6.2.x/resteasy=new,rhsso-7.0/resteasy=new,fuse-6/resteasy=notaffected,brms-6/resteasy=affected,bpms-6/resteasy=affected | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,rhmap-4/millicore=notaffected,fedora-all/resteasy=new,eap-6/resteasy=affected,eap-7/resteasy=notaffected,rhel-7/resteasy-base=notaffected,jon-3/resteasy=notaffected,jpp-6.2.x/resteasy=new,rhsso-7.0/resteasy=new,fuse-6/resteasy=notaffected,brms-6/resteasy=affected,bpms-6/resteasy=affected |
| Jason Shepherd | 2016-12-13 05:42:22 UTC | Whiteboard | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,rhmap-4/millicore=notaffected,fedora-all/resteasy=new,eap-6/resteasy=affected,eap-7/resteasy=notaffected,rhel-7/resteasy-base=notaffected,jon-3/resteasy=notaffected,jpp-6.2.x/resteasy=new,rhsso-7.0/resteasy=new,fuse-6/resteasy=notaffected,brms-6/resteasy=affected,bpms-6/resteasy=affected | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,rhmap-4/millicore=notaffected,fedora-all/resteasy=affected,eap-6/resteasy=affected,eap-7/resteasy=notaffected,rhel-7/resteasy-base=notaffected,jon-3/resteasy=notaffected,jpp-6.2.x/resteasy=new,rhsso-7.0/resteasy=new,fuse-6/resteasy=notaffected,brms-6/resteasy=affected,bpms-6/resteasy=affected |
| Jason Shepherd | 2016-12-15 04:53:45 UTC | Whiteboard | impact=moderate,public=no,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,rhmap-4/millicore=notaffected,fedora-all/resteasy=affected,eap-6/resteasy=affected,eap-7/resteasy=notaffected,rhel-7/resteasy-base=notaffected,jon-3/resteasy=notaffected,jpp-6.2.x/resteasy=new,rhsso-7.0/resteasy=new,fuse-6/resteasy=notaffected,brms-6/resteasy=affected,bpms-6/resteasy=affected | impact=moderate,public=20161215,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,rhmap-4/millicore=notaffected,fedora-all/resteasy=affected,eap-6/resteasy=affected,eap-7/resteasy=notaffected,rhel-7/resteasy-base=notaffected,jon-3/resteasy=notaffected,jpp-6.2.x/resteasy=new,rhsso-7.0/resteasy=new,fuse-6/resteasy=notaffected,brms-6/resteasy=affected,bpms-6/resteasy=affected |
| Jason Shepherd | 2016-12-15 04:54:21 UTC | Summary | EMBARGOED CVE-2016-9571 Resteasy: Yaml unmarshalling vulnerable to RCE | CVE-2016-9571 Resteasy: Yaml unmarshalling vulnerable to RCE |
| Jason Shepherd | 2016-12-15 04:54:39 UTC | Group | security, qe_staff | |
| Jason Shepherd | 2016-12-15 04:55:48 UTC | Depends On | 1404912 | |
| Jason Shepherd | 2016-12-15 23:08:44 UTC | Whiteboard | impact=moderate,public=20161215,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,rhmap-4/millicore=notaffected,fedora-all/resteasy=affected,eap-6/resteasy=affected,eap-7/resteasy=notaffected,rhel-7/resteasy-base=notaffected,jon-3/resteasy=notaffected,jpp-6.2.x/resteasy=new,rhsso-7.0/resteasy=new,fuse-6/resteasy=notaffected,brms-6/resteasy=affected,bpms-6/resteasy=affected | impact=moderate,public=20161215,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,rhmap-4/millicore=notaffected,fedora-all/resteasy=affected,eap-6/resteasy=affected,eap-7.0.2/resteasy=notaffected,eap-7.1.0/resteasy=affected,rhel-7/resteasy-base=notaffected,jon-3/resteasy=notaffected,jpp-6.2.x/resteasy=new,rhsso-7.0/resteasy=new,fuse-6/resteasy=notaffected,brms-6/resteasy=affected,bpms-6/resteasy=affected |
| Chess Hazlett | 2016-12-22 18:26:36 UTC | Whiteboard | impact=moderate,public=20161215,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,rhmap-4/millicore=notaffected,fedora-all/resteasy=affected,eap-6/resteasy=affected,eap-7.0.2/resteasy=notaffected,eap-7.1.0/resteasy=affected,rhel-7/resteasy-base=notaffected,jon-3/resteasy=notaffected,jpp-6.2.x/resteasy=new,rhsso-7.0/resteasy=new,fuse-6/resteasy=notaffected,brms-6/resteasy=affected,bpms-6/resteasy=affected | impact=moderate,public=20161215,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,rhmap-4/millicore=notaffected,fedora-all/resteasy=affected,eap-6/resteasy=affected,eap-7.0.2/resteasy=notaffected,eap-7.1.0/resteasy=affected,rhel-7/resteasy-base=notaffected,jon-3/resteasy=notaffected,jpp-6.2.x/resteasy=notaffected,rhsso-7.0/resteasy=notaffected,fuse-6/resteasy=notaffected,brms-6/resteasy=affected,bpms-6/resteasy=affected |
| Jason Shepherd | 2017-03-01 01:45:04 UTC | Whiteboard | impact=moderate,public=20161215,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,rhmap-4/millicore=notaffected,fedora-all/resteasy=affected,eap-6/resteasy=affected,eap-7.0.2/resteasy=notaffected,eap-7.1.0/resteasy=affected,rhel-7/resteasy-base=notaffected,jon-3/resteasy=notaffected,jpp-6.2.x/resteasy=notaffected,rhsso-7.0/resteasy=notaffected,fuse-6/resteasy=notaffected,brms-6/resteasy=affected,bpms-6/resteasy=affected | impact=moderate,public=20161215,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,rhmap-4/millicore=notaffected,fedora-all/resteasy=affected,eap-6/resteasy=affected,eap-7/resteasy=affected,rhel-7/resteasy-base=notaffected,jon-3/resteasy=notaffected,jpp-6.2.x/resteasy=notaffected,rhsso-7.0/resteasy=notaffected,fuse-6/resteasy=notaffected,brms-6/resteasy=affected,bpms-6/resteasy=affected |
| Martin Prpič | 2017-03-28 10:18:31 UTC | Summary | CVE-2016-9571 Resteasy: Yaml unmarshalling vulnerable to RCE | CVE-2016-9606 Resteasy: Yaml unmarshalling vulnerable to RCE |
| Alias | CVE-2016-9606 | |||
| Tomas Hoger | 2017-04-12 12:53:32 UTC | Fixed In Version | resteasy 3.0.22, resteasy 3.1.2 | |
| Bharti Kundal | 2017-05-18 21:59:30 UTC | CC | bkundal | |
| Bharti Kundal | 2017-05-18 22:12:58 UTC | Alias | CVE-2016-9571 | |
| Pavel Polischouk | 2017-06-12 17:06:12 UTC | Blocks | 1460775 | |
| Bharti Kundal | 2017-12-04 09:07:07 UTC | Blocks | 1520314 | |
| PnT Account Manager | 2017-12-07 23:59:22 UTC | CC | felias | |
| Bharti Kundal | 2017-12-11 17:22:33 UTC | Blocks | 1520314 | |
| PnT Account Manager | 2018-01-30 03:14:26 UTC | CC | coneill | |
| PnT Account Manager | 2018-02-06 19:25:05 UTC | CC | hfnukal | |
| PnT Account Manager | 2018-05-10 18:19:22 UTC | CC | pavelp | |
| PnT Account Manager | 2018-06-29 22:16:33 UTC | CC | kseifried | |
| errata-xmlrpc | 2018-10-11 12:37:58 UTC | Link ID | Red Hat Product Errata RHSA-2018:2909 | |
| errata-xmlrpc | 2018-10-11 14:19:08 UTC | Link ID | Red Hat Product Errata RHSA-2018:2913 | |
| PnT Account Manager | 2018-10-19 21:38:46 UTC | CC | bkundal | |
| PnT Account Manager | 2019-04-22 21:31:28 UTC | CC | tjay | |
| Product Security DevOps Team | 2019-06-08 03:02:55 UTC | Status | NEW | CLOSED |
| Resolution | --- | ERRATA | ||
| Last Closed | 2019-06-08 03:02:55 UTC | |||
| Product Security DevOps Team | 2019-09-29 14:01:53 UTC | Whiteboard | impact=moderate,public=20161215,reported=20161201,source=researcher,cvss2=6.8/AV:N/AC:M/Au:N/C:P/I:P/A:P,cvss3=8.1/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-20,rhmap-4/millicore=notaffected,fedora-all/resteasy=affected,eap-6/resteasy=affected,eap-7/resteasy=affected,rhel-7/resteasy-base=notaffected,jon-3/resteasy=notaffected,jpp-6.2.x/resteasy=notaffected,rhsso-7.0/resteasy=notaffected,fuse-6/resteasy=notaffected,brms-6/resteasy=affected,bpms-6/resteasy=affected | |
| Paramvir jindal | 2020-10-06 11:59:01 UTC | CC | aboyko, drieden, krathod, pdrozd, pjindal, sthorger |
Back to bug 1400644