Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Jboss EAP Uncontrolled Resource Consumption Vulnerability - CVE-2017-12174 - Vulnerability Database
Jboss EAP

Jboss EAP Uncontrolled Resource Consumption Vulnerability - CVE-2017-12174

High
Reference: CVE-2017-12174
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2017-12174
Title: Jboss EAP Uncontrolled Resource Consumption Vulnerability
Overview:

It was found that when Artemis and HornetQ before 2.4.0 are configured with UDP discovery and JGroups discovery a huge byte array is created when receiving an unexpected multicast message. This may result in a heap memory exhaustion full GC or OutOfMemoryError.