VYPR

Jboss Fuse Esb Enterprise

by Red Hat

CVEs (1)

  • CVE-2012-5575Aug 19, 2013
    risk 0.01cvss epss 0.06

    Apache CXF 2.5.x before 2.5.10, 2.6.x before CXF 2.6.7, and 2.7.x before CXF 2.7.4 does not verify that a specified cryptographic algorithm is allowed by the WS-SecurityPolicy AlgorithmSuite definition before decrypting, which allows remote attackers to force CXF to use weaker…