CVE-2014-0086 — Vulnetix

CVE-2014-0086 PUBLISHED CVSS 4.300000190734863 MEDIUM

JBoss RichFaces Improper Input Validation vulnerability

EPSS 0.64% · 71.0th percentile

Risk Scores

CVSS 2.0

4.300000190734863

EPSS Score

0.64%

71.0th percentile

Affected Products

Vendor	Product	Versions
Maven	org.richfaces.core:richfaces-core-impl	4-alpha0, 4-alpha0, 4-alpha0
Maven	org.richfaces:richfaces	4.3.4, 4.3.4, 4.3.4
n/a	n/a	n/a, n/a, *

Exploit Intelligence

https://github.com/pslegr/core-1/commit/8131f15003f5bec73d475d2b724472e4b87d0757 (vulncheck-nvd)

Timeline

Mar 28, 2014 CVE Published
Feb 4, 2022 EPSS Score
Mar 29, 2022 EPSS Score
May 20, 2022 EPSS Score
Jul 12, 2022 EPSS Score
Sep 3, 2022 EPSS Score
Dec 18, 2022 EPSS Score
Feb 8, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Apr 2, 2023 EPSS Score
May 25, 2023 EPSS Score
Jul 16, 2023 EPSS Score

References

RHSA-2014:0335 vendor-advisory
https://issues.jboss.org/browse/RF-13250 url
https://bugzilla.redhat.com/show_bug.cgi?id=1067268 url
https://github.com/pslegr/core-1/commit/8131f15003f5bec73d475d2b724472e4b87d0757 url
57053 third-party-advisory
https://bugzilla.redhat.com/CVE-2014-0086 url
https://nvd.nist.gov/vuln/detail/CVE-2014-0086 advisory
https://github.com/advisories/GHSA-xfxv-f945-4qv6 advisory
https://github.com/richfaces/richfaces/commit/807bc411fba070f78c5193cc03d54ab8aa39c36d patch
https://github.com/richfaces/richfaces url

Open in Interactive Console →

$ Console Community · 100/wk Open console ›