Red Hat Jboss Enterprise Application Platform Vulnerabilities
Red%20hat Jboss Enterprise Application Platform vulnerabilities.
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Stored Cross-Site Scripting Flaw in JBoss EAP Management Console by Red Hat
CVE-2025-2901Red HatRed Hat Jboss Enterpri...4.6MEDIUMOut-of-Memory Vulnerability in Smallrye's Fault Tolerance Feature
CVE-2025-2240Red HatRed Hat Build Of Apach...7.5HIGHUnauthorized Data Access via Incorrect Cookie Parsing
CVE-2023-4639Red HatMigration Toolkit For ...7.4HIGHServer Denial of Service Vulnerability Discovered in Undertow's FormAuthenticationMechanism
CVE-2023-1973Red HatRed Hat Jboss Enterpri...7.5HIGHHTML Injection Vulnerability in Hibernate Validator
CVE-2023-1932Red HatA-MQ Clients 26.1MEDIUMWildfly Deployment System Vulnerability: Cross-Site Scripting Attacks Possible
CVE-2024-10234Red Hat7.3HIGHAttackers can Redirect Users to Arbitrary URLs, Exposing Sensitive Information
CVE-2024-8883Red HatRed Hat Build Of Keycloak6.1MEDIUMFlaw in SAML Signature Validation Method Allows Privilege Escalation or Impersonation Attacks
CVE-2024-8698Red HatRed Hat Build Of KeycloakπΎπ‘EPSS 29%π°7.7HIGHFlaw in JBoss EAP OIDC Implementation Allows Access to Multiple Tenants Without Logout
CVE-2023-6236Red HatRed Hat Jboss Enterpri...7.3HIGHStack Overflow Exception in XNIO NotifierState Could Lead to Denial of Service
CVE-2023-5685Red HatEap 7.4.147.5HIGHPotential Path Traversal Vulnerability in Undertow Could Allow Access to Privileged Files
CVE-2024-1459Red HatRed Hat Jboss Enterpri...5.3MEDIUMUnsecured Server Provisioning Vulnerability in Galleon
CVE-2023-4503Red HatEap 7.4.146.8MEDIUMKeycloak: redirect_uri validation bypass
CVE-2023-6291Red HatRed Hat Build Of Keycl...7.1HIGHHeap exhaustion via deserialization
CVE-2023-3171Red Hateap7.5HIGHInfinispan: non-admins should not be able to get cache config via rest api
CVE-2023-3629Red HatRed Hat Data Grid 8.4.44.3MEDIUMInfispan: rest bulk ops don't check permissions
CVE-2023-3628Red HatRed Hat Data Grid 8.4.46.5MEDIUMUndertow: ajp request closes connection exceeding maxrequestsize
CVE-2023-5379Red HatRed Hat Jboss Enterpri...7.5HIGHWildfly-core: management user rbac permission allows unexpected reading of system-properties to an unauthorized actor
CVE-2023-4061Red HatEap 7.4.136.5MEDIUMUndertow: outofmemoryerror due to @multipartconfig handling
CVE-2023-3223Red HatRed Hat Fuse 7.12.17.5HIGHCodehaus-plexus: xml external entity (xxe) injection
CVE-2022-4245Red HatRhint Camel-k-1.10.14.3MEDIUMCodehaus-plexus: directory traversal
CVE-2022-4244Red HatRhint Camel-k-1.10.17.5HIGHInfinite loop in sslconduit during close
CVE-2023-1108Red Hatundertow7.5HIGHDrools: unsafe data deserialization in streamutils
CVE-2022-1415Red HatRHPam 7.13.1 Async8.1HIGHAuthorization Bypass in Red Hat JBoss Products
CVE-2012-5626Red HatJboss Brms7.5HIGHImproper Default Permissions in JBoss Enterprise Application Platform by Red Hat
CVE-2016-7066Red HatJboss Enterprise Appli...7.8HIGH