Hereby Yoroi wishes to inform you about a serious vulnerability within RichFaces technology , historically one of the most used opensource frameworks in JavaServer Faces enterprise applications on JBoss and Tomcat platforms. The criticality is known by the identifier CVE-2018-14667.

https://blog.yoroi.company/warning/grave-vulnerabilita-su-tecnologia-richfaces/