AI Sec Watch: A Security Intelligence Platform for AI Systems

Luu, T.J.

CVE-2017-7561: Red Hat JBoss EAP version 3.0.7 through before 4.0.0.Beta1 is vulnerable to a server-side cache poisoning or CORS reques

infovulnerability

security

Source: NVD/CVE DatabaseSeptember 13, 2017CVE-2017-7561

Summary

CVE-2017-7561 is a vulnerability in Red Hat JBoss EAP (Enterprise Application Platform, a Java-based application server) versions 3.0.7 through before 4.0.0.Beta1 that affects the JAX-RS component (a Java library for building web services). The vulnerability allows server-side cache poisoning or CORS (cross-origin resource sharing, a security feature that controls which websites can access resources from another site) requests, creating a moderate security risk.

Vulnerability Details

CVSS Score

5

EPSS (30-day exploit probability)

EPSS: 1.1%

Classification

Attack SophisticationModerate

Taxonomy References

CWE (Weakness Type)

CWE-346 CWE-444

Original source: https://nvd.nist.gov/vuln/detail/CVE-2017-7561

First tracked: February 15, 2026 at 08:43 PM

Classified by LLM (prompt v3) · confidence: 95%