Glassfish Security Vulnerabilities and Issues — Glassfish CVE List

Lucene search

EclipseGlassfish

3 matches found

CVE•added 2023/11/03 7:15 a.m.•52 views

CVE-2023-5763

In Eclipse Glassfish 5 or 6, running with old versions of JDK (lower than 6u211, or < 7u201, or

9.8CVSS8.1AI score0.00154EPSS

CVE•added 2025/07/16 11:15 a.m.•5 views

CVE-2024-9342

In Eclipse GlassFish version 7.0.16 or earlier it is possible to perform Login Brute Force attacks as there is no limitation in the number of failed login attempts.

9.8CVSS7.1AI score0.00041EPSS

CVE•added 2025/07/16 12:15 p.m.•5 views

CVE-2024-9408

In Eclipse GlassFish since version 6.2.5 it is possible to perform a Server Side Request Forgery attack in specific endpoints.

9.8CVSS6.6AI score0.00051EPSS