[UPDATE] [high] Red Hat JBoss Enterprise Application Platform: Multiple vulnerabilities
A remote anonymous attacker can exploit multiple vulnerabilities in Red Hat JBoss Enterprise Application Platform to execute arbitrary code, conduct a Cross-Site Scripting attack, disclose information, create a Denial of Service state, or bypass security measures.
CSIRTS triage
- What
- Multiple vulnerabilities in Red Hat JBoss Enterprise Application Platform can lead to arbitrary code execution, XSS, information disclosure, denial of service, and security bypass.
- Who is affected
- Remote anonymous attackers can exploit these vulnerabilities in Red Hat JBoss EAP.
- Urgency
- Remediation is critical due to the high severity and active exploitation.
- Action
- Update Red Hat JBoss Enterprise Application Platform to the latest version.
AI-assisted analysis generated from the source advisory — verify against the original.
⚡ Watch JBoss Enterprise Application Platform
Get an email when a new JBoss Enterprise Application Platform advisory drops — max one per day, one-click unsubscribe.
Details
Original advisory: https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-0239
Exploitation outlook
EPSS (FIRST.org) estimates each CVE’s probability of exploitation in the next 30 days — here is the CSIRTS.com read on those numbers.
- Elevated exploitation riskCVE-2015-925129.7% 30-day exploitation probability — well above the norm. Schedule remediation this cycle. Riskier than 98% of all scored CVEs.
- Moderate exploitation riskCVE-2016-107354.0% 30-day exploitation probability. Patch within normal cadence, watch for KEV listing. Riskier than 89% of all scored CVEs.
- Moderate exploitation riskCVE-2017-182143.7% 30-day exploitation probability. Patch within normal cadence, watch for KEV listing. Riskier than 88% of all scored CVEs.
- Moderate exploitation riskCVE-2018-140404.1% 30-day exploitation probability. Patch within normal cadence, watch for KEV listing. Riskier than 90% of all scored CVEs.
- Moderate exploitation riskCVE-2018-140414.3% 30-day exploitation probability. Patch within normal cadence, watch for KEV listing. Riskier than 90% of all scored CVEs.
- Moderate exploitation riskCVE-2018-140424.0% 30-day exploitation probability. Patch within normal cadence, watch for KEV listing. Riskier than 89% of all scored CVEs.
- Exploitation likely imminentCVE-2019-11358EPSS puts this in the most-targeted tier (87.2% 30-day exploitation probability). Prioritize alongside KEV items. Riskier than 100% of all scored CVEs.
- Elevated exploitation riskCVE-2019-833116.9% 30-day exploitation probability — well above the norm. Schedule remediation this cycle. Riskier than 97% of all scored CVEs.
- Exploitation likely imminentCVE-2020-11022EPSS puts this in the most-targeted tier (99.0% 30-day exploitation probability). Prioritize alongside KEV items. Riskier than 100% of all scored CVEs.
- Exploitation likely imminentCVE-2020-11023EPSS puts this in the most-targeted tier (83.8% 30-day exploitation probability). Prioritize alongside KEV items. Riskier than 100% of all scored CVEs.
Referenced CVEs
Same CVEs, other sources
How other CERTs, PSIRTs and databases cover the vulnerabilities in this advisory.
- medium[UPDATE] [medium] FasterXML Jackson: Multiple vulnerabilities allow Denial of Servicecert-bund
- criticalexploitedCVE-2020-11023: JQuery Cross-Site Scripting (XSS) Vulnerabilitycisa-kev
Recent advisories for Red Hat JBoss
A cluster of recent advisories against the same product widens the attack surface — attackers routinely chain freshly published CVEs on one product, so review these together.
- medium[UPDATE] [medium] Red Hat JBoss Enterprise Application Platform (bouncycastle): Vulnerability allows informati…cert-bund · 2026-07-10
- medium[NEW] [medium] Red Hat JBoss Enterprise Application Platform (io.undertow.jastow): Vulnerability allows cross-…cert-bund · 2026-07-08
- medium[UPDATE] [medium] Red Hat JBoss Enterprise Application Platform: Vulnerability allows denial of servicecert-bund · 2026-07-02
- criticalexploitedCVE-2018-14667: Red Hat JBoss RichFaces Framework Expression Language Injection Vulnerabilitycisa-kev · 2023-09-28
- criticalexploitedCVE-2010-0738: Red Hat JBoss Authentication Bypass Vulnerabilitycisa-kev · 2022-05-25
- criticalexploitedCVE-2010-1428: Red Hat JBoss Information Disclosure Vulnerabilitycisa-kev · 2022-05-25
More from CERT-Bund (BSI) Security Advisories
- medium[NEW] [medium] DENX U-Boot: Multiple vulnerabilities allow execution of arbitrary code and DoS2026-07-10
- medium[NEW] [medium] Samsung Android: Multiple vulnerabilities2026-07-10
- medium[UPDATE] [medium] Linux Kernel: Multiple vulnerabilities allow denial of service2026-07-10
- medium[UPDATE] [medium] Linux Kernel: Multiple vulnerabilities allow unspecified attack2026-07-10
- medium[UPDATE] [medium] Linux Kernel: Multiple vulnerabilities allow denial of service2026-07-10