Joao Filho Matos Figueiredo

**Name of the Vulnerable Software and Affected Versions** RichFaces Framework versions 3.X through 3.3.4 **Description** The RichFaces Framework is susceptible to Expression Language (EL) injection through the UserResource resource. A remote, unauthenticated attacker can potentially execute arbitrary code by exploiting a chain of Java serialized objects via `org.ajax4jsf.resource.UserResource$UriData`. This issue is currently being exploited in attacks, as indicated by CISA advisories. **Recommendations** Versions prior to 3.4 are affected.

**Name of the Vulnerable Software and Affected Versions** Jboss Application Server versions prior to 5.0 **Description** The issue allows remote attackers to execute arbitrary code via crafted serialized data due to a lack of restriction on the classes for which deserialization is performed in the JMS over HTTP Invocation Layer of the JbossMQ implementation. **Recommendations** For Jboss Application Server versions prior to 5.0, consider disabling the JMS over HTTP Invocation Layer to prevent exploitation until a fix is available.