CVE-2015-5178 vulnerability in Red Hat Products
Published on October 27, 2015
The Management Console in Red Hat Enterprise Application Platform before 6.4.4 and WildFly (formerly JBoss Application Server) does not send an X-Frame-Options HTTP header, which makes it easier for remote attackers to conduct clickjacking attacks via a crafted web page that contains a (1) FRAME or (2) IFRAME element.
Products Associated with CVE-2015-5178
stack.watch emails you whenever new vulnerabilities are published in Red Hat Jboss Wildfly Application Server or Red Hat Jboss Enterprise Application Platform. Just hit a watch button to start following.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.