Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2024:0711
HistoryFeb 06, 2024 - 7:47 p.m.

(RHSA-2024:0711) Moderate: Red Hat JBoss Enterprise Application Platform 7.4.15 Security update

2024-02-0619:47:48
access.redhat.com
11
red hat jboss
java applications
wildfly
security update
cve-2023-4759
cve-2023-44483
cvss score
references section

6.8 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

47.7%

JSON

Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime.

This release of Red Hat JBoss Enterprise Application Platform 7.4.15 serves as a replacement for Red Hat JBoss Enterprise Application Platform 7.4.14, and includes bug fixes and enhancements. See the Red Hat JBoss Enterprise Application Platform 7.4.15 Release Notes for information about the most significant bug fixes and enhancements included in this release.

Security Fix(es):

  • jgit: arbitrary file overwrite (CVE-2023-4759)

  • santuario: Private Key disclosure in debug-log output (CVE-2023-44483)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

OSVersionArchitecturePackageVersionFilename
RedHat8noarcheap7-resteasy-json-binding-provider< 3.15.9-1.Final_redhat_00001.1.el8eapeap7-resteasy-json-binding-provider-3.15.9-1.Final_redhat_00001.1.el8eap.noarch.rpm
RedHat8noarcheap7-xml-security< 2.2.6-1.redhat_00002.1.el8eapeap7-xml-security-2.2.6-1.redhat_00002.1.el8eap.noarch.rpm
RedHat8noarcheap7-ironjacamar-deployers-common< 1.5.16-1.Final_redhat_00001.1.el8eapeap7-ironjacamar-deployers-common-1.5.16-1.Final_redhat_00001.1.el8eap.noarch.rpm
RedHat8noarcheap7-ironjacamar-common-impl< 1.5.16-1.Final_redhat_00001.1.el8eapeap7-ironjacamar-common-impl-1.5.16-1.Final_redhat_00001.1.el8eap.noarch.rpm
RedHat8noarcheap7-hibernate-entitymanager< 5.3.33-2.Final_redhat_00001.1.el8eapeap7-hibernate-entitymanager-5.3.33-2.Final_redhat_00001.1.el8eap.noarch.rpm
RedHat8noarcheap7-ironjacamar-common-spi< 1.5.16-1.Final_redhat_00001.1.el8eapeap7-ironjacamar-common-spi-1.5.16-1.Final_redhat_00001.1.el8eap.noarch.rpm
RedHat8noarcheap7-resteasy-jackson2-provider< 3.15.9-1.Final_redhat_00001.1.el8eapeap7-resteasy-jackson2-provider-3.15.9-1.Final_redhat_00001.1.el8eap.noarch.rpm
RedHat8noarcheap7-resteasy-atom-provider< 3.15.9-1.Final_redhat_00001.1.el8eapeap7-resteasy-atom-provider-3.15.9-1.Final_redhat_00001.1.el8eap.noarch.rpm
RedHat8noarcheap7-jbossws-spi< 3.4.0-4.Final_redhat_00002.1.el8eapeap7-jbossws-spi-3.4.0-4.Final_redhat_00002.1.el8eap.noarch.rpm
RedHat8noarcheap7-jboss-server-migration-core< 1.10.0-34.Final_redhat_00033.1.el8eapeap7-jboss-server-migration-core-1.10.0-34.Final_redhat_00033.1.el8eap.noarch.rpm
Rows per page:
1-10 of 551

Related

nessus 10
redhat 12
osv 3
github 2
ibm 38
prion 2
redhatcve 2
ubuntucve 2
debiancve 2
cvelist 2
cve 2
veracode 2
cgr 1
wolfi 1
atlassian 1
openvas 2
oracle 2
nessus
nessus
RHEL 8 : Red Hat JBoss Enterprise Application Platform 7.4.15 Security update (Moderate) (RHSA-2024:0711)
2024-02-07 00:00:00
RHEL 9 : Red Hat JBoss Enterprise Application Platform 7.4.15 (RHSA-2024:0712)
2024-02-07 00:00:00
RHEL 7 : Red Hat JBoss Enterprise Application Platform 7.4.15 Security update (Moderate) (RHSA-2024:0710)
2024-02-07 00:00:00
redhat
redhat
(RHSA-2024:0714) Moderate: Red Hat JBoss Enterprise Application Platform 7.4.15 Security update
2024-02-06 19:53:54
(RHSA-2024:0710) Moderate: Red Hat JBoss Enterprise Application Platform 7.4.15 Security update
2024-02-06 19:47:42
(RHSA-2024:0712) Moderate: Red Hat JBoss Enterprise Application Platform 7.4.15 security update
2024-02-06 19:47:54
osv
osv
Apache Santuario - XML Security for Java are vulnerable to private key disclosure
2023-10-20 12:31:04
CVE-2023-44483
2023-10-20 10:15:12
Arbitrary File Overwrite in Eclipse JGit
2023-09-18 15:30:18
github
github
Apache Santuario - XML Security for Java are vulnerable to private key disclosure
2023-10-20 12:31:04
Arbitrary File Overwrite in Eclipse JGit
2023-09-18 15:30:18
ibm
ibm
Security Bulletin: Information disclosure vulnerability in IBM WebSphere Application Server Liberty affect IBM Business Automation Workflow - CVE-2023-44483
2024-03-01 16:31:18
Security Bulletin: IBM Security Guardium is affected by an information leak vulnerability (CVE-2023-44483)
2024-01-24 18:45:24
Security Bulletin: IBM Maximo Application Predict Component uses WebSphere Application Server Liberty is vulnerable to information disclosure due to Apache Santuario which is vulnerable to CVE-2023-44483
2024-02-28 14:00:06
prion
prion
Code injection
2023-10-20 10:15:00
Design/Logic Flaw
2023-09-12 10:15:00
redhatcve
redhatcve
CVE-2023-44483
2023-10-27 12:29:31
CVE-2023-4759
2023-09-12 19:54:09
ubuntucve
ubuntucve
CVE-2023-44483
2023-10-20 00:00:00
CVE-2023-4759
2023-09-12 00:00:00
debiancve
debiancve
CVE-2023-44483
2023-10-20 10:15:12
CVE-2023-4759
2023-09-12 10:15:29
cvelist
cvelist
CVE-2023-44483 Apache Santuario: Private Key disclosure in debug-log output
2023-10-20 09:23:53
CVE-2023-4759 Improper handling of case insensitive filesystems in Eclipse JGit allows arbitrary file write
2023-09-12 09:12:10
cve
cve
CVE-2023-44483
2023-10-20 10:15:12
CVE-2023-4759
2023-09-12 10:15:29
veracode
veracode
Information Disclosure
2023-10-25 08:59:16
Arbitrary File Overwrite
2023-09-21 11:12:57
cgr
cgr
CVE-2023-44483 vulnerabilities
2024-05-19 03:07:16
wolfi
wolfi
CVE-2023-44483 vulnerabilities
2024-06-02 15:23:11
atlassian
atlassian
RCE (Remote Code Execution) org.eclipse.jgit:org.eclipse.jgit Dependency in Bamboo Data Center and Server
2024-05-13 10:10:37
openvas
openvas
openSUSE: Security Advisory for eclipse (SUSE-SU-2024:0057-1)
2024-03-04 00:00:00
SUSE: Security Advisory (SUSE-SU-2024:0057-1)
2024-01-09 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - January 2024
2024-01-16 00:00:00
Oracle Critical Patch Update Advisory - April 2024
2024-04-16 00:00:00

6.8 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

47.7%

JSON
Related for RHSA-2024:0711
nessus10redhat12osv3github2ibm38prion2redhatcve2ubuntucve2debiancve2cvelist2cve2veracode2cgr1wolfi1atlassian1openvas2oracle2