The remote Redhat Enterprise Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2019:1159 advisory. tomcat: Host name verification missing in WebSocket client (CVE-2018-8034) wildfly-core: Cross-site scripting (XSS) in JBoss Management Console (CVE-2018-10934) dom4j: XML Injection in Class: Element. Methods: addElement, addAttribute which can impact the integrity of XML documents (CVE-2018-1000632) Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version…Read More