cbcvebase.
CVE-2016-7050
published 2017-06-08

CVE-2016-7050: SerializableProvider in RESTEasy in Red Hat Enterprise Linux Desktop 7, Red Hat Enterprise Linux HPC Node 7, Red Hat Enterprise Linux Server 7, and Red Hat…

critical9.8CVSS 3.0
AVNACLPRNUINSUCHIHAH
SerializableProvider in RESTEasy in Red Hat Enterprise Linux Desktop 7, Red Hat Enterprise Linux HPC Node 7, Red Hat Enterprise Linux Server 7, and Red Hat Enterprise Linux Workstation 7 allows remote attackers to execute arbitrary code.

Affected

7 ranges
VendorProductVersion rangeFixed in
debianresteasy< resteasy 3.0.18-1 (sid)resteasy 3.0.18-1 (sid)
debianresteasy3.0< resteasy 3.0.18-1 (sid)resteasy 3.0.18-1 (sid)
redhatenterprise_linux_desktop
redhatenterprise_linux_hpc_node
redhatenterprise_linux_server
redhatenterprise_linux_workstation
redhatresteasy>= 0 < 3.0.6-3ubuntu0.1~esm13.0.6-3ubuntu0.1~esm1

CVSS provenance

nvdv3.09.8CRITICALCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
osv9.8CRITICAL