Vulnerability: XXE in Red Hat JBoss EAP 7.0.5

Vulnerability: XXE in Red Hat JBoss EAP 7.0.5

CVE-2017-7503 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

It was found that the Red Hat JBoss EAP 7.0.5 implementation of javax.xml.transform.TransformerFactory is vulnerable to XXE. An attacker could use this flaw to launch DoS or SSRF attacks, or read files from the server where EAP is deployed.

Learn more about our Cis Benchmark Audit For Server Software.