In the Jakarta Expression Language implementation 3.0.3 and earlier, a bug in the ELParserTokenManager enables invalid EL expressions to be evaluated as if they were valid.
Metrics
Affected Vendors & Products
References
History
Wed, 25 Jun 2025 14:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Redhat jboss Enterprise Application Platform Eus
|
|
CPEs | cpe:/a:redhat:jboss_enterprise_application_platform_eus:7.1::el7 | |
Vendors & Products |
Redhat jboss Enterprise Application Platform Eus
|

Status: PUBLISHED
Assigner: eclipse
Published: 2021-05-26T21:55:09
Updated: 2024-08-03T21:40:12.240Z
Reserved: 2021-03-12T00:00:00
Link: CVE-2021-28170

No data.

Status : Modified
Published: 2021-05-26T22:15:07.980
Modified: 2024-11-21T05:59:14.993
Link: CVE-2021-28170
