Jboss Jboss Application Server — known CVE vulnerabilities
Every CVE whose affected-product data names Jboss Jboss Application Server, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2006-5750 — CVSS 7.5 (high): Directory traversal vulnerability in the DeploymentFileRepository class in JBoss Application Server (jbossas) 3.2.4 through 4.0.5 allows…
CVE-2007-1036 — CVSS 7.5 (high): The default configuration of JBoss does not restrict access to the (1) console and (2) web management interfaces, which allows remote…
CVE-2007-1354 — CVSS 6.0 (medium): The Access Control functionality (JMXOpsAccessControlFilter) in JMX Console in JBoss Application Server 4.0.2 and 4.0.5 before 20070416…