Tracking Added February 7, 2018
JBoss, now known as “Wildfly,” is a Linux Java-based server developed by Red Hat, Inc. Red Hat develops and provides open source software and services, including the Red Hat Linux operating system.
Vulnerability
Companies using JBoss servers that are running unpatched versions of JMX Administrative console are susceptible to a vulnerability that allows attackers to take over the machine and upload ransomware. Some newer ransomware attacks exploit this old vulnerability [CVE-2010-0738].
Remediation
To see if a company in your portfolio is vulnerable, use the “Open Ports” filter in the Portfolio page.