This page lists publicly disclosed CVE vulnerabilities affecting jboss enterprise_application_platform (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2016-2094 | The HTTPS NIO Connector allows remote attackers to cause a denial of service (thread consumption) by opening a socket and not sending an SSL handshake, aka a read-timeout vulnerability. | [email protected] | 7.5 | 2.65% | 2016-05-06 | 2026-06-16 |
| CVE-2008-3273 | JBoss Enterprise Application Platform (aka JBossEAP or EAP) before 4.2.0.CP03, and 4.3.0 before 4.3.0.CP01, allows remote attackers to obtain sensitive information about "deployed web contexts" via a request to the status servlet, as demonstrated by a full=true query string. | [email protected] | 5.0 | 47.11% | 2008-08-10 | 2026-06-16 |