cb
cvebase
.
~
/
products
/
red_hat
/
hawtio
Search CVEs, products, detections…
⌘K
pipeline live
Digest
Docs
Home
/
Products
/
red_hat
/
Red Hat Hawtio
Red Hat Hawtio vulnerabilities
1 known vulnerability affecting
red_hat/hawtio
.
Track
Version
All versions
Total CVEs
1
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL
1
Vulnerabilities
Sort
Most important
Highest Priority
Highest EPSS
Highest CVSS
Newest
Oldest
Page 1 of 1
CVE-2017-2589
P3
CRITICAL
CVSS 9.0
v1.4
2018-07-26
CVE-2017-2589 [CRITICAL] CWE-285 CVE-2017-2589: It was discovered that the hawtio servlet 1.4 uses a single HttpClient instance to proxy requests wi It was discovered that the hawtio servlet 1.4 uses a single HttpClient instance to proxy requests with a persistent cookie store (cookies are stored locally and are not passed between the client and the end URL) which means all clients using that proxy are sharing the same cookies.
nvd
Red Hat Hawtio vulnerabilities | cvebase