Where
-Infinity
0

Trending

Last week
Last month
Last year

redhat JBoss Enterprise Application PlatformUndertow: undertow: request smuggling via malformed http request headers

Risk 66
Severity
9.1
First published (updated )
CVE-2026-28369

redhat JBoss Enterprise Application PlatformUndertow: undertow: request smuggling via inconsistent header parsing

Risk 66
Severity
9.1
First published (updated )
CVE-2026-28368

redhat JBoss Enterprise Application PlatformUndertow: undertow: request smuggling via `\r\r\r` as a header block terminator

Risk 66
Severity
9.1
First published (updated )
CVE-2026-28367

redhat Enterprise LinuxUndertow: undertow: denial of service due to premature multipart/form-data parsing in get requests

Risk 43
Severity
7.5
First published (updated )
CVE-2026-3260

redhat JBoss Enterprise Application PlatformUndertow-core: undertow http server fails to reject malformed host headers leading to potential cache poisoning and ssrf

Risk 76
Severity
9.6
First published (updated )
CVE-2025-12543
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

redhat JBoss Enterprise Application PlatformInfinispan: credential leakage in infinispan cli

Risk 26
Severity
6.2
EPSS
0.01%
First published (updated )
CVE-2025-5731

maven/org.wildfly.core:wildfly-elytron-integrationOrg.wildfly.core:wildfly-elytron-integration: wildfly elytron brute force attack via cli

Risk 80
Severity
9.8
First published (updated )
CVE-2025-23368

maven/io.undertow:undertow-coreUndertow: improper state management in proxy protocol parsing causes information leakage

Risk 32
Severity
7.5
EPSS
0.10%
First published (updated )
CVE-2024-7885

maven/org.infinispan.protostream:protostreamInfinispan: circular reference on marshalling leads to dos

Risk 40
Severity
6.5
First published (updated )
CVE-2023-5236

maven/org.infinispan:infinispan-server-restInfinispan: non-admins should not be able to get cache config via rest api

Risk 40
Severity
6.5
First published (updated )
CVE-2023-3629
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

maven/org.infinispan:infinispan-server-restInfispan: rest bulk ops don't check permissions

Risk 40
Severity
6.5
First published (updated )
CVE-2023-3628

redhat/eap7-wildfly-elytronA flaw was found in Wildfly Elytron where ScramServer may be susceptible to Timing Attack if enabled…

Risk 33
Severity
5.3
First published (updated )
CVE-2021-3642

redhat/eap7-wildflyXSS

Risk 30
Severity
4.8
First published (updated )
CVE-2021-3536

infinispan infinispan-server-restCSRF

Risk 48
Severity
7.1
First published (updated )
CVE-2020-10771

redhat WildFly CoreIt was found that Wildfly users had default user permissions set incorrectly. A malicious user could…

Risk 37
Severity
5.2
First published (updated )
CVE-2019-14838
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

redhat JBoss Enterprise Application PlatformIt was found that the Apache commons-collections library permitted code execution when deserializing…

Risk 90
Severity
9.8
First published (updated )
CVE-2015-7501

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203