Jboss
Security Risk Profile
44
/100
mediumSecurity Risk Score
Comprehensive risk assessment based on 39 vulnerabilities, EPSS scores, exploitation status, and remediation availability.
📅 Data spans from October 9, 2003 to present
39
Total CVEs
13
Critical+High
0
Exploited
10
Unpatched
Threat Assessment
Avg CVSS
4.9
Base severity
Avg EPSS
0%
Exploit probability
Unpatched
10
Critical/High
Risk Level
44/100
medium
Severity Distribution
Critical
1High
12Medium
16Low
6Exploit Likelihood
>50% chance
020-50%
05-20%
0<5%
0Age Distribution
Common Weaknesses (CWE)
1
CSRF
3
2
XSS
2
3
SQL Injection
2
4
Input Validation
1
5
Race Condition
1
Most Affected Products
1. JBoss JBoss Application Server20
2. JBOSS JBoss11
3. JBoss Undertow6
4. redhat JBoss Enterprise Application Platform4
5. redhat/jbossas4
Recent Vulnerabilities
See more →CVE-2026-28369
CVSS 9.1critical
Undertow: undertow: request smuggling via malformed http request headers
2/27/2026🔧 No Patch
REDHAT-BUG-2443261
CVSS 7.0high
2/27/2026🔧 No Patch
REDHAT-BUG-2443262
CVSS 7.0high
2/27/2026🔧 No Patch
REDHAT-BUG-2166022
CVSS 4.0medium
1/31/2023🔧 No Patch
REDHAT-BUG-1790759
CVSS 1.0low
1/14/2020🔧 No Patch
REDHAT-BUG-1573045
CVSS 4.0medium
4/30/2018🔧 No Patch
CVE-2018-1041
CVSS 7.5high
1/3/2018🔧 No Patch
REDHAT-BUG-1528361
CVSS 4.0medium
12/21/2017🔧 No Patch
REDHAT-BUG-1404782
CVSS 4.0medium
12/14/2016🔧 No Patch
REDHAT-BUG-1358523
CVSS 4.0medium
7/20/2016🔧 No Patch
Monitor Jboss in Real-Time
Get instant alerts when new vulnerabilities are discovered. Stay ahead of security threats with SecAlerts.