← Back

Network Security Services For Java

network_security_services_for_java

Vendor: Dogtagpki • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2022-4132
2Dogtagpki
Redhat
2Enterprise Linux
Network Security Services For Java
Nov 21, 2024
Oct 4, 2023
N/A· v4
5.9 MEDIUM· v3
N/A· v2
A flaw was found in JSS. A memory leak in JSS requires non-standard configuration but is a low-effort DoS vector if configured that way (repeatedly hitting the login page).
CVE-2021-4213
3Debian
DogtagpkiRedhat
3Debian Linux
Enterprise LinuxNetwork Security Services For Java
Nov 21, 2024
Aug 24, 2022
N/A· v4
7.5 HIGH· v3
N/A· v2
A flaw was found in JSS, where it did not properly free up all memory. Over time, the wasted memory builds up in the server memory, saturating the server’s RAM. This flaw allows an attacker to force the invocation of an...Show more
A flaw was found in JSS, where it did not properly free up all memory. Over time, the wasted memory builds up in the server memory, saturating the server’s RAM. This flaw allows an attacker to force the invocation of an out-of-memory process, causing a denial of service.Show less