JBoss AeroGear
by Red Hat
CVEs (2)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2014-3650 | 0.00 | — | 0.01 | Jul 1, 2022 | Multiple persistent cross-site scripting (XSS) flaws were found in the way Aerogear handled certain user-supplied content. A remote attacker could use these flaws to compromise the application with specially crafted input. | |||
| CVE-2014-3649 | 0.00 | — | 0.01 | Nov 4, 2019 | JBoss AeroGear has reflected XSS via the password field |
- CVE-2014-3650Jul 1, 2022risk 0.00cvss —epss 0.01
Multiple persistent cross-site scripting (XSS) flaws were found in the way Aerogear handled certain user-supplied content. A remote attacker could use these flaws to compromise the application with specially crafted input.
- CVE-2014-3649Nov 4, 2019risk 0.00cvss —epss 0.01
JBoss AeroGear has reflected XSS via the password field