2017-10-16 12:31:07 -04:00
{
2019-03-17 23:28:30 +00:00
"CVE_data_meta" : {
2020-03-11 16:01:11 +00:00
"ASSIGNER" : "secalert@redhat.com" ,
2019-03-17 23:28:30 +00:00
"ID" : "CVE-2011-2487" ,
2020-03-11 16:01:11 +00:00
"STATE" : "PUBLIC"
2019-03-17 23:28:30 +00:00
} ,
"data_format" : "MITRE" ,
"data_type" : "CVE" ,
"data_version" : "4.0" ,
"description" : {
"description_data" : [
{
"lang" : "eng" ,
2020-03-11 16:01:11 +00:00
"value" : "The implementations of PKCS#1 v1.5 key transport mechanism for XMLEncryption in JBossWS and Apache WSS4J before 1.6.5 is susceptible to a Bleichenbacher attack."
}
]
} ,
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng" ,
"value" : "Other"
}
]
}
]
} ,
"affects" : {
"vendor" : {
"vendor_data" : [
{
"vendor_name" : "Apache" ,
"product" : {
"product_data" : [
{
"product_name" : "WSS4J" ,
"version" : {
"version_data" : [
{
"version_value" : "before 1.6.5"
}
]
}
}
]
}
} ,
{
"vendor_name" : "Red Hat" ,
"product" : {
"product_data" : [
{
"product_name" : "JBossWS" ,
"version" : {
"version_data" : [
{
"version_value" : "unknown"
}
]
}
}
]
}
}
]
}
} ,
"references" : {
"reference_data" : [
{
"refsource" : "MISC" ,
"name" : "https://bugzilla.redhat.com/show_bug.cgi?id=713539" ,
"url" : "https://bugzilla.redhat.com/show_bug.cgi?id=713539"
} ,
{
"refsource" : "MISC" ,
"name" : "https://www.nds.ruhr-uni-bochum.de/research/publications/breaking-xml-encryption-pkcs15/" ,
"url" : "https://www.nds.ruhr-uni-bochum.de/research/publications/breaking-xml-encryption-pkcs15/"
} ,
{
"refsource" : "MISC" ,
"name" : "http://cxf.apache.org/note-on-cve-2011-2487.html" ,
"url" : "http://cxf.apache.org/note-on-cve-2011-2487.html"
} ,
{
"refsource" : "MISC" ,
"name" : "http://rhn.redhat.com/errata/RHSA-2013-0191.html" ,
"url" : "http://rhn.redhat.com/errata/RHSA-2013-0191.html"
} ,
{
"refsource" : "MISC" ,
"name" : "http://rhn.redhat.com/errata/RHSA-2013-0192.html" ,
"url" : "http://rhn.redhat.com/errata/RHSA-2013-0192.html"
} ,
{
"refsource" : "MISC" ,
"name" : "http://rhn.redhat.com/errata/RHSA-2013-0193.html" ,
"url" : "http://rhn.redhat.com/errata/RHSA-2013-0193.html"
} ,
{
"refsource" : "MISC" ,
"name" : "http://rhn.redhat.com/errata/RHSA-2013-0194.html" ,
"url" : "http://rhn.redhat.com/errata/RHSA-2013-0194.html"
} ,
{
"refsource" : "MISC" ,
"name" : "http://rhn.redhat.com/errata/RHSA-2013-0195.html" ,
"url" : "http://rhn.redhat.com/errata/RHSA-2013-0195.html"
} ,
{
"refsource" : "MISC" ,
"name" : "http://rhn.redhat.com/errata/RHSA-2013-0196.html" ,
"url" : "http://rhn.redhat.com/errata/RHSA-2013-0196.html"
} ,
{
"refsource" : "MISC" ,
"name" : "http://rhn.redhat.com/errata/RHSA-2013-0198.html" ,
"url" : "http://rhn.redhat.com/errata/RHSA-2013-0198.html"
} ,
{
"refsource" : "MISC" ,
"name" : "http://rhn.redhat.com/errata/RHSA-2013-0221.html" ,
"url" : "http://rhn.redhat.com/errata/RHSA-2013-0221.html"
} ,
{
"refsource" : "MISC" ,
"name" : "http://www.securityfocus.com/bid/57549" ,
"url" : "http://www.securityfocus.com/bid/57549"
} ,
{
"refsource" : "MISC" ,
"name" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/81737" ,
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/81737"
2020-03-19 12:01:22 +00:00
} ,
{
"refsource" : "MLIST" ,
"name" : "[cxf-commits] 20200319 svn commit: r1058035 - in /websites/production/cxf/content: cache/main.pageCache security-advisories.data/CVE-2019-17573.txt.asc security-advisories.html" ,
"url" : "https://lists.apache.org/thread.html/r36e44ffc1a9b365327df62cdfaabe85b9a5637de102cea07d79b2dbf@%3Ccommits.cxf.apache.org%3E"
2020-04-01 11:01:17 +00:00
} ,
{
"refsource" : "MLIST" ,
"name" : "[cxf-commits] 20200401 svn commit: r1058573 - in /websites/production/cxf/content: cache/main.pageCache index.html security-advisories.data/CVE-2020-1954.txt.asc security-advisories.html" ,
"url" : "https://lists.apache.org/thread.html/rff42cfa5e7d75b7c1af0e37589140a8f1999e578a75738740b244bd4@%3Ccommits.cxf.apache.org%3E"
2019-03-17 23:28:30 +00:00
}
]
}
}
