Denial of Service Vulnerability in Red Hat JBoss Core Services
CVE-2016-9597

7.5HIGH

Key Information:

Vendor: Red Hat
Status: Libxml2
Vendor: CVE Published:; 30 July 2018

What is CVE-2016-9597?

The vulnerability in Red Hat JBoss Core Services stems from a flaw in libxml2 that was not appropriately patched in erratum RHSA-2016:2957. This oversight leaves the system vulnerable to a Denial of Service attack resulting from a Stack Overflow. Consequently, attackers may exploit this flaw to disrupt service availability. Organizations should take immediate steps to address this vulnerability to maintain the integrity and operational continuity of their systems.

Affected Version(s)

libxml2 all

References

http://www.securityfocus.com/bid/98567

vdb-entryx_refsource_BID

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-9597

x_refsource_CONFIRM

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 30, 2018
Vulnerability Reserved
Nov 23, 2016