Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jboss jboss 4.0.2 vulnerabilities and exploits
(subscribe to this query)
6
CVSSv2
CVE-2007-1354
The Access Control functionality (JMXOpsAccessControlFilter) in JMX Console in JBoss Application Server 4.0.2 and 4.0.5 prior to 20070416 uses a member variable to store the roles of the current user, which allows remote authenticated administrators to trigger a race condition an...
Jboss Jboss Application Server 4.0.2.ga Cp02
Jboss Jboss Application Server 4.0.2.ga Cp03
Jboss Jboss Application Server 4.0.2.ga Cp04
Jboss Jboss Application Server 4.0.5.ga
Jboss Jboss Application Server 4.0.5 Cp01
Jboss Jboss Application Server 4.0.5 Cp02
5
CVSSv2
CVE-2005-2006
JBOSS 3.2.2 up to and including 3.2.7 and 4.0.2 allows remote malicious users to obtain sensitive information via a GET request (1) with a "%." (percent dot), which reveals the installation path or (2) with a % (percent) before a filename, which reveals the contents of ...
Jboss Jboss 3.2.2
Jboss Jboss 3.2.5
Jboss Jboss 3.2.6
Jboss Jboss 3.2.7
Jboss Jboss 4.0.2
Jboss Jboss 3.2.3
Jboss Jboss 3.2.4
1 EDB exploit
2 Github repositories
6.8
CVSSv2
CVE-2014-5075
The Ignite Realtime Smack XMPP API 4.x prior to 4.0.2, and 3.x and 2.x when a custom SSLContext is used, does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the...
Redhat Jboss Fuse
Igniterealtime Smack Api
5.8
CVSSv2
CVE-2014-3577
org.apache.http.conn.ssl.AbstractVerifier in Apache HttpComponents HttpClient prior to 4.3.5 and HttpAsyncClient prior to 4.0.2 does not properly verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 cert...
Apache Httpclient
Apache Httpasyncclient
4 Github repositories
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
XXE
CVE-2024-34490
SQL injection
CVE-2024-34488
CVE-2024-4507
CVE-2023-7028
CVE-2024-23187
TCP
CVE-2024-4439
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started