Red hat jboss enterprise application platform

This hub aggregates every CVE we track for Red hat jboss enterprise application platform, a product in the enterprise software space. Use it to gauge the current risk picture and drill into individual advisories.

Severity distribution

Monthly trend

The 15 most recently published vulnerabilities affecting Red hat jboss enterprise application platform.

• CVE-2026-0603Org.hibernate/hibernate-core: hibernate: information disclosure and data deletion via second-order sql injection8.3Jan 23, 2026
• CVE-2025-12543Undertow-core: undertow http server fails to reject malformed host headers leading to potential cache poisoning and ssrf9.6Jan 7, 2026
• CVE-2024-3884Undertow: outofmemory when parsing form data encoding with application/x-www-form-urlencoded7.5Dec 3, 2025
• CVE-2025-58457Apache ZooKeeper: Insufficient Permission Check in AdminServer Snapshot/Restore Commands4.3Sep 24, 2025
• CVE-2025-9784Undertow: undertow madeyoureset http/2 ddos vulnerability7.5Sep 2, 2025
• CVE-2025-24814Apache Solr: Core-creation with "trusted" configset can use arbitrary untrusted files5.5Jan 27, 2025
• CVE-2024-12798JaninoEventEvaluator vulnerability7.3Dec 19, 2024
• CVE-2023-1973Undertow: unrestricted request storage leads to memory exhaustion7.5Nov 7, 2024
• CVE-2024-8698Keycloak-saml-core: improper verification of saml responses leading to privilege escalation in keycloak7.7Sep 19, 2024
• CVE-2024-7885Undertow: improper state management in proxy protocol parsing causes information leakage7.5Aug 21, 2024
• CVE-2024-5971Undertow: response write hangs in case of java 17 tlsv1.3 newsessionticket7.5Jul 8, 2024
• CVE-2024-6162Undertow: url-encoded request path information can be broken on ajp-listener7.5Jun 20, 2024
• CVE-2024-1102Jberet: jberet-core logging database credentials6.5Apr 25, 2024
• CVE-2024-1233Eap: wildfly-elytron has a ssrf security issue7.3Apr 9, 2024
• CVE-2024-1635Undertow: out-of-memory error after several closed connections with wildfly-http-client protocol7.5Feb 19, 2024