Where
AND
-Infinity
0

Trending

Last week
Last month
Last year

redhat JBoss Enterprise Application PlatformUndertow: undertow: request smuggling via malformed http request headers

Risk 66
Severity
9.1
First published (updated )
CVE-2026-28369

redhat JBoss Enterprise Application PlatformUndertow: undertow: request smuggling via inconsistent header parsing

Risk 66
Severity
9.1
First published (updated )
CVE-2026-28368

redhat JBoss Enterprise Application PlatformUndertow: undertow: request smuggling via `\r\r\r` as a header block terminator

Risk 66
Severity
9.1
First published (updated )
CVE-2026-28367

redhat JBoss Enterprise Application PlatformUndertow-core: undertow http server fails to reject malformed host headers leading to potential cache poisoning and ssrf

Risk 76
Severity
9.6
First published (updated )
CVE-2025-12543

maven/org.wildfly.core:wildfly-elytron-integrationOrg.wildfly.core:wildfly-elytron-integration: wildfly elytron brute force attack via cli

Risk 80
Severity
9.8
First published (updated )
CVE-2025-23368
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

redhat JBoss Enterprise Application PlatformLast updated 18 August 2025

Risk 69
Severity
9.1
First published (updated )
CVE-2019-20445

redhat JBoss Enterprise Application PlatformXSS

Risk 69
Severity
9.1
First published (updated )
CVE-2019-20444

redhat/eap7-activemq-artemisIt was found that the OpenSSL security provider does not honor TLS version in 'enabled-protocols' va…

Risk 68
Severity
9.1
First published (updated )
CVE-2019-14887

Oracle Banking PlatformInput Validation

Risk 89
Severity
9.8
First published (updated )
CVE-2019-17531

Oracle Banking PlatformInfoleak

Risk 89
Severity
9.8
First published (updated )
CVE-2019-16943
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Oracle Banking PlatformInfoleak

Risk 91
Severity
9.8
First published (updated )
CVE-2019-16942

maven/com.fasterxml.jackson.core:jackson-databindInfoleak

Risk 88
Severity
9.8
First published (updated )
CVE-2019-14892

redhat/eap7-apache-cxfInfoleak

Risk 88
Severity
9.8
First published (updated )
CVE-2019-17267

Oracle Primavera GatewayInfoleak

Risk 90
Severity
9.8
First published (updated )
CVE-2019-14540

Oracle Banking PlatformInfoleak

Risk 88
Severity
9.8
First published (updated )
CVE-2019-16335
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Oracle Banking PlatformiTMSTransporter. Multiple issues were addressed with updating FasterXML jackson-databind and Apache …

Risk 89
Severity
9.8
First published (updated )
CVE-2019-14379

redhat JBoss Enterprise Application PlatformUndertow DEBUG log for io.undertow.request.security if enabled leaks credentials to log files with l…

Risk 88
Severity
9.8
First published (updated )
CVE-2019-10212

redhat/eap7-codehaus-jacksonA series of deserialization vulnerabilities have been discovered in Codehaus 1.9.x implemented in EA…

Risk 88
Severity
9.8
First published (updated )
CVE-2019-10202

fasterxml jackson-databindXEE

Risk 89
Severity
9.8
First published (updated )
CVE-2018-14720

fasterxml jackson-databindSSRF

Risk 90
Severity
10
First published (updated )
CVE-2018-14721
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

redhat JBoss Enterprise Application PlatformXEE, SSRF

Risk 86
Severity
9.8
First published (updated )
CVE-2017-7464

maven/com.fasterxml.jackson.core:jackson-databindInput Validation

Risk 91
Severity
9.8
First published (updated )
CVE-2018-7489

Oracle Utilities FrameworkAn XML deserialization vulnerability was discovered in slf4j's EventData, which accepts an XML seria…

Risk 90
Severity
9.8
First published (updated )
CVE-2018-8088

redhat JBoss Enterprise Application PlatformAn unsafe deserialization vulnerability was found due to incomplete blacklisting of the unsafe class…

Risk 90
Severity
9.8
First published (updated )
CVE-2017-17485

redhat JBoss Enterprise Application PlatformXEE

Risk 90
Severity
9.8
First published (updated )
CVE-2017-12629
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

redhat JBoss Enterprise Application PlatformRed Hat JBoss Application Server Remote Code Execution Vulnerability

Risk 99
Severity
9.8
Exploited
First published (updated )
CVE-2017-12149

redhat Enterprise Linux Server EusInput Validation, Infoleak

Risk 68
Severity
9.1
First published (updated )
CVE-2017-9788

fasterxml jackson-databindAn unsafe deserialization vulnerability was found due to incomplete blacklisting of the unsafe eleme…

Risk 91
Severity
9.8
First published (updated )
CVE-2017-15095

redhat JBoss Enterprise Application PlatformInput Validation

Risk 91
Severity
9.8
First published (updated )
CVE-2017-7525

redhat JBoss Enterprise Application PlatformXEE, SSRF

Risk 87
Severity
9.8
First published (updated )
CVE-2017-7503
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203