Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.
CVE-2019-17091 is a medium severity vulnerability with a CVSS score of 6.1. Exploits are available; patches have been released and should be applied urgently.
Please cite this page when referencing data from Strobes VI. Proper attribution helps support our vulnerability intelligence research.
Lower probability of exploitation
EPSS predicts the probability of exploitation in the next 30 days based on real-world threat data, complementing CVSS severity scores with actual risk assessment.
faces/context/PartialViewContextImpl.java in Eclipse Mojarra, as used in Mojarra for Eclipse EE4J before 2.3.10 and Mojarra JavaServer Faces, allows Reflected XSS because a client window field is mishandled.
| Vendor | Product |
|---|---|
| Oracle | Banking Enterprise Product Manufacturing |
| Oracle | Rapid Planning |
| Oracle | Retail Store Inventory Management |
| Oracle | Retail Service Backbone |
| Oracle | Time And Labor |
| Oracle | Mojarra Javaserver Faces |
| Oracle | Retail Advanced Inventory Planning |
| Oracle | Communications Diameter Signaling Router |
| Oracle | Primavera P6 Enterprise Project Portfolio Management |
| Oracle | Retail Financial Integration |
And 13 more...