CVE-2010-0738

Known Exploited Vulnerability Entry External Catalog

Back to Catalog View Vulnerability
Entry Details

CVE-2010-0738

Confirmed

Yes

2022-05-25 00:00 UTC

Timestamps

2022-05-25

2022-05-25

Scope

KEV entry: Red Hat JBoss Authentication Bypass Vulnerability | Affected: Red Hat / JBoss | Description: The JMX-Console web application in JBossAs in Red Hat JBoss Enterprise Application Platform performs access control only for the GET and POST methods, which allows remote attackers to send requests to this application's GET handler by using a different method. | Required action: Apply updates per vendor instructions. | Due date: 2022-06-15 | Known ransomware campaign use (KEV): Known | Notes (KEV): https://nvd.nist.gov/vuln/detail/CVE-2010-0738

References
  • {'id': 'CVE-2010-0738', 'url': 'https://www.cisa.gov/known-exploited-vulnerabilities-catalog?search_api_fulltext=CVE-2010-0738'}

d69d5bfc-e5a8-4c22-aad2-e91e286bbfa0

405284c2-e461-4670-8979-7fd2c9755a60

2026-02-02 12:27 UTC

2026-02-06 07:17 UTC

Evidence (1)
Type Source Signal Confidence Details GCVE Metadata
vendor_report cisa-kev successful_exploitation 0.80
View details 
{
  "cwes": [
    "CWE-264"
  ],
  "date_added": "2022-05-25",
  "due_date": "2022-06-15",
  "feed": "CISA Known Exploited Vulnerabilities Catalog",
  "knownRansomwareCampaignUse": "Known",
  "product": "JBoss",
  "vendorProject": "Red Hat",
  "vulnerabilityName": "Red Hat JBoss Authentication Bypass Vulnerability"
}
 -
Export Options
JSON Object JSON API View Full Catalog