Redhat Jboss Core Services Httpd — known CVE vulnerabilities
Every CVE whose affected-product data names Redhat Jboss Core Services Httpd, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2020-25680 — CVSS 5.4 (medium): A flaw was found in JBCS httpd in version 2.4.37 SP3, where it uses a back-end worker SSL certificate with the keystore file's ID is…
CVE-2021-3688 — CVSS 4.8 (medium): A flaw was found in Red Hat JBoss Core Services HTTP Server in all versions, where it does not properly normalize the path component of a…