Red Hat (JBoss RichFaces Framework) Data Breach
Red Hat (JBoss RichFaces Framework) experienced a data breach that was reported on September 28, 2023. Red Hat JBoss RichFaces Framework contains an expression language injection vulnerability via the UserResource resource. A remote, unauthenticated attacker could exploit this vulnerability to execute
Key Facts
- Organization
- Red Hat (JBoss RichFaces Framework)
- Date Reported
- September 28, 2023
- Incident Type
- web app exploit
- Industry
- Technology
- Severity Score
- 5/10
- Confidence Level
- high
- Tags
Source
View original source - External link to primary source documentation
Understanding web app exploit Incidents
Web application exploits target vulnerabilities in websites and APIs. Secure development practices, WAFs, and penetration testing protect against these attacks.