Vulnerabilities > Redhat > Jboss Core Services Httpd
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-08-26 | CVE-2021-3688 | Information Exposure vulnerability in Redhat Jboss Core Services Httpd 2.4.23/2.4.29/2.4.37 A flaw was found in Red Hat JBoss Core Services HTTP Server in all versions, where it does not properly normalize the path component of a request URL contains dot-dot-semicolon(s). | 4.8 |
| 2021-01-07 | CVE-2020-25680 | Improper Certificate Validation vulnerability in Redhat Jboss Core Services Httpd 2.4.37 A flaw was found in JBCS httpd in version 2.4.37 SP3, where it uses a back-end worker SSL certificate with the keystore file's ID is 'unknown'. | 5.5 |