CVE-2024-1233 - Critical SSRF in JBoss EAP JwtValidator - How Hackers Can Exploit Vulnerable `resolvePublicKey` Logic
In early 2024, security researchers disclosed a serious Server-Side Request Forgery (SSRF) vulnerability in Red Hat’s JBoss Enterprise Application Platform (EAP). Tracked as CVE-2024-1233,