CVE-2011-2487 in Apache and Red Hat Products
Published on March 11, 2020

The implementations of PKCS#1 v1.5 key transport mechanism for XMLEncryption in JBossWS and Apache WSS4J before 1.6.5 is susceptible to a Bleichenbacher attack.

NVD

Products Associated with CVE-2011-2487

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2011-2487 are published in these products:

Apache CXF

Apache Wss4j

Red Hat Jboss Business Rules Management System

Red Hat Jboss Enterprise Application Platform

Red Hat Jboss Enterprise Application Platform Text Only Advisories

Red Hat Jboss Enterprise Soa Platform

Red Hat Jboss Enterprise Web Platform

Red Hat Jboss Middleware Text Only Advisories

Red Hat Jboss Portal

Red Hat Jboss Web Services

Affected Versions

Apache WSS4J:

Version before 1.6.5 is affected.

Red Hat JBossWS:

Version unknown is affected.

Exploit Probability

EPSS

0.49%

Percentile

65.12%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2011-2487 in Apache and Red Hat ProductsPublished on March 11, 2020

Products Associated with CVE-2011-2487

Affected Versions

Exploit Probability

CVE-2011-2487 in Apache and Red Hat Products
Published on March 11, 2020