Web Server

Jboss Application Server

JBoss Application Server (JBoss AS) is an open-source cross-platform Java application server developed by JBoss a division of Red Hat Inc. JBoss AS is an open-source implementation of Java 2 Enterprise Edition (J2EE) that is used for implementing Java applications and other Web-based applications and software.

Official Site:

https://developers.redhat.com/products/eap/overview/

Severity Summary:

High: 3 Medium: 3

Reference

Title

Severity

CVE-2012-1094

JBoss Application Server Exposure of Sensitive Information to an Unauthorized Actor Vulnerability

High

CVE-2012-2312

JBoss Application Server Improper Privilege Management Vulnerability

High

CVE-2006-5750

JBoss Application Server Directory Traversal Vulnerability

High

CVE-2011-3609

JBoss Application Server Cross-Site Request Forgery (CSRF) Vulnerability

Medium

CVE-2011-3606

JBoss Application Server Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability

Medium

CVE-2007-1354

JBoss Application Server Privilege Escalation Vulnerability

Medium