RHEL 8 : Red Hat JBoss Enterprise Application Platform 8.1.2 (RHSA-2025:22187)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:22187 advisory. Red Hat JBoss Enterprise Application Platform 8 is a platform for Java applications based on the WildFly application runtime. This release of Red Ha...

EUVD-2021-18290

Malware in sbrugna...

EUVD-2012-5336

Malware in sbrugna...

EUVD-2011-3565

Malware in sbrugna...

EUVD-2019-13485

Malware in sbrugna...

EUVD-2011-3568

Malware in sbrugna...

EUVD-2021-18291

Malware in sbrugna...

EUVD-2008-3505

Malware in sbrugna...

EUVD-2014-7703

Malware in sbrugna...

EUVD-2012-2547

Malware in sbrugna...

EUVD-2014-3484

Malware in sbrugna...

EUVD-2007-1351

Malware in sbrugna...

EUVD-2022-5262

Malicious code in bioql PyPI...

EUVD-2022-4802

Malicious code in bioql PyPI...

RHEL 7 : Red Hat JBoss Enterprise Application Platform 7.1.12 on RHEL 7 (RHSA-2025:16668)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:16668 advisory. Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime. This release ...

Linux Distros Unpatched Vulnerability : CVE-2023-5379

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in Undertow. When an AJP request is sent that exceeds the max-header-size attribute in ajp-listener, JBoss EAP is marked in an error state by...

RHEL 6 : jbossas-web and jboss-naming (RHSA-2012:1027)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2012:1027 advisory. JBoss Application Server is the base package for JBoss Enterprise Web Platform, providing the core server components. The Java Naming and...

RHSA-2025:0371 Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 8.0 security update

Bulletin has no description...

EAP: wildfly-elytron has a SSRF security issue

A flaw was found in JwtValidator.resolvePublicKey in JBoss EAP, where the validator checks jku and sends a HTTP request. During this process, no whitelisting or other filtering behavior is performed on the destination URL address, which may result in a server-side request forgery SSRF vulnerabili...

SUSE CVE-2006-5750

Directory traversal vulnerability in the DeploymentFileRepository class in JBoss Application Server jbossas 3.2.4 through 4.0.5 allows remote authenticated users to read or modify arbitrary files, and possibly execute arbitrary code, via unspecified vectors related to the console manager...