Unrated severityNVD Advisory· Published Oct 27, 2015· Updated Jun 17, 2026
CVE-2015-5220
CVE-2015-5220
Description
The Web Console in Red Hat Enterprise Application Platform (EAP) before 6.4.4 and WildFly (formerly JBoss Application Server) allows remote attackers to cause a denial of service (memory consumption) via a large request header.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4cpe:2.3:a:redhat:jboss_enterprise_application_platform:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:redhat:jboss_enterprise_application_platform:*:*:*:*:*:*:*:*range: <=6.4.3
- (no CPE)range: <6.4.4
- cpe:2.3:a:redhat:jboss_wildfly_application_server:*:cr8:*:*:*:*:*:*Range: <=2.0.0
Patches
Vulnerability mechanics
References
8- rhn.redhat.com/errata/RHSA-2016-1519.htmlnvdPatchVendor Advisory
- rhn.redhat.com/errata/RHSA-2015-1904.htmlnvdVendor Advisory
- rhn.redhat.com/errata/RHSA-2015-1905.htmlnvdVendor Advisory
- rhn.redhat.com/errata/RHSA-2015-1906.htmlnvdVendor Advisory
- rhn.redhat.com/errata/RHSA-2015-1907.htmlnvdVendor Advisory
- rhn.redhat.com/errata/RHSA-2015-1908.htmlnvdVendor Advisory
- www.securitytracker.com/id/1033859nvdThird Party AdvisoryVDB Entry
- bugzilla.redhat.com/show_bug.cginvdIssue TrackingVendor Advisory
News mentions
0No linked articles in our index yet.