CVE-2010-0738
Red Hat JBoss Authentication Bypass Vulnerability
CVSS
—
No CVSS
EPSS
79.4%
p100
KEV
YES
May 25, 2022
Exploit Today
80
0-100
Published: — · Last modified: —
79.4%EPSS · 30 days79.4%
2026-06-302026-07-16
Product
Red Hat / JBoss
Vulnerability
Red Hat JBoss Authentication Bypass Vulnerability
Added to KEV
May 25, 2022
Remediate by
Jun 15, 2022
Known ransomware use
Yes
Summary description
The JMX-Console web application in JBossAs in Red Hat JBoss Enterprise Application Platform performs access control only for the GET and POST methods, which allows remote attackers to send requests to this application's GET handler by using a different method.
Required action
Apply updates per vendor instructions.
Notes
https://nvd.nist.gov/vuln/detail/CVE-2010-0738
CVECVSSEPSSKEVRExploitTitleMod.
CVE-2010-1428—99.1%
KEV—80Red Hat JBoss Information Disclosure Vulnerability—