Jboss community application server
This hub aggregates every CVE we track for Jboss community application server, a product in the operating systems space. Use it to gauge the current risk picture and drill into individual advisories.
Operating Systemson-prem
3
CVEs tracked
0
Critical
0
High
0
In CISA KEV
Severity distribution
LOW2MEDIUM1
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
2024-082026-07
Latest CVEs
The 3 most recently published vulnerabilities affecting Jboss community application server.
- CVE-2012-2148An issue exists in the property replacements feature in any descriptor in JBoxx AS 7.1.1 ignores java security policies3.3
- CVE-2012-4529The org.apache.catalina.connector.Response.encodeURL method in Red Hat JBoss Web 7.1.x and earlier, when the tracking mode is set to COOKIE, sends the jsessionid in the URL of the first response of...4.3
- CVE-2009-5066twiddle.sh in JBoss AS 5.0 and EAP 5.0 and earlier accepts credentials as command-line arguments, which allows local users to read the credentials by listing the process and its arguments.2.1
Product normalization is registry-driven with AI assist and human review. How it works