CVE-2014-0248: Code Injection

July 7, 2014 (updated January 4, 2018)

org.jboss.seam.web.AuthenticationFilter in JBoss allows remote attackers to execute arbitrary code via a crafted authentication header, related to Seam logging.

References

bugzilla.redhat.com/show_bug.cgi?id=1101619
issues.jboss.org/browse/WFK2-591

Detect and mitigate CVE-2014-0248 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →