Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2024:0714
HistoryFeb 06, 2024 - 7:53 p.m.

(RHSA-2024:0714) Moderate: Red Hat JBoss Enterprise Application Platform 7.4.15 Security update

2024-02-0619:53:54
access.redhat.com
10
red hat jboss
java applications
wildfly
security update
cve-2023-44483
cve-2023-4759
unix

6.8 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

48.0%

JSON

Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime.

This release of Red Hat JBoss Enterprise Application Platform 7.4.15 serves as a replacement for Red Hat JBoss Enterprise Application Platform 7.4.14, and includes bug fixes and enhancements. See the Red Hat JBoss Enterprise Application Platform 7.4.15 Release Notes for information about the most significant bug fixes and enhancements included in this release.

Security Fix(es):

  • santuario: Private Key disclosure in debug-log output [eap-7.4.z] (CVE-2023-44483)

  • jgit: arbitrary file overwrite [eap-7.4.z] (CVE-2023-4759)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Related

nessus 11
redhat 12
osv 3
github 2
prion 2
redhatcve 2
ubuntucve 2
debiancve 2
ibm 39
cve 2
veracode 2
cgr 1
wolfi 1
nvd 2
atlassian 1
openvas 2
cvelist 2
oracle 2
nessus
nessus
RHEL 9 : Red Hat JBoss Enterprise Application Platform 7.4.15 (RHSA-2024:0712)
2024-02-07 00:00:00
RHEL 7 : Red Hat JBoss Enterprise Application Platform 7.4.15 Security update (Moderate) (RHSA-2024:0710)
2024-02-07 00:00:00
RHEL 8 : Red Hat JBoss Enterprise Application Platform 7.4.15 Security update (Moderate) (RHSA-2024:0711)
2024-02-07 00:00:00
redhat
redhat
(RHSA-2024:0710) Moderate: Red Hat JBoss Enterprise Application Platform 7.4.15 Security update
2024-02-06 19:47:42
(RHSA-2024:0712) Moderate: Red Hat JBoss Enterprise Application Platform 7.4.15 security update
2024-02-06 19:47:54
(RHSA-2024:0711) Moderate: Red Hat JBoss Enterprise Application Platform 7.4.15 Security update
2024-02-06 19:47:48
osv
osv
Apache Santuario - XML Security for Java are vulnerable to private key disclosure
2023-10-20 12:31:04
CVE-2023-44483
2023-10-20 10:15:12
Arbitrary File Overwrite in Eclipse JGit
2023-09-18 15:30:18
github
github
Apache Santuario - XML Security for Java are vulnerable to private key disclosure
2023-10-20 12:31:04
Arbitrary File Overwrite in Eclipse JGit
2023-09-18 15:30:18
prion
prion
Code injection
2023-10-20 10:15:00
Design/Logic Flaw
2023-09-12 10:15:00
redhatcve
redhatcve
CVE-2023-44483
2023-10-27 12:29:31
CVE-2023-4759
2023-09-12 19:54:09
ubuntucve
ubuntucve
CVE-2023-44483
2023-10-20 00:00:00
CVE-2023-4759
2023-09-12 00:00:00
debiancve
debiancve
CVE-2023-44483
2023-10-20 10:15:12
CVE-2023-4759
2023-09-12 10:15:29
ibm
ibm
Security Bulletin: IBM Tivoli Business Service Manager is vulnerable to remote attack due to Apache Santuario (CVE-2023-44483)
2024-02-02 04:15:05
Security Bulletin: Due to the use of IBM WebSphere Liberty, IBM CICS TX Standard is vulnerable to an information disclosure due to Apache Santuario (CVE-2023-44483).
2024-01-30 17:48:28
Security Bulletin: IBM Match 360 is vulnerable to Apache Santuario used within IBM WebSphere Application Server Liberty (CVE-2023-44483)
2024-02-16 13:45:09
cve
cve
CVE-2023-44483
2023-10-20 10:15:12
CVE-2023-4759
2023-09-12 10:15:29
veracode
veracode
Arbitrary File Overwrite
2023-09-21 11:12:57
Information Disclosure
2023-10-25 08:59:16
cgr
cgr
CVE-2023-44483 vulnerabilities
2024-05-19 03:07:16
wolfi
wolfi
CVE-2023-44483 vulnerabilities
2024-06-26 15:33:03
nvd
nvd
CVE-2023-44483
2023-10-20 10:15:12
CVE-2023-4759
2023-09-12 10:15:29
atlassian
atlassian
RCE (Remote Code Execution) org.eclipse.jgit:org.eclipse.jgit Dependency in Bamboo Data Center and Server
2024-05-13 10:10:37
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2024:0057-1)
2024-01-09 00:00:00
openSUSE: Security Advisory for eclipse (SUSE-SU-2024:0057-1)
2024-03-04 00:00:00
cvelist
cvelist
CVE-2023-44483 Apache Santuario: Private Key disclosure in debug-log output
2023-10-20 09:23:53
CVE-2023-4759 Improper handling of case insensitive filesystems in Eclipse JGit allows arbitrary file write
2023-09-12 09:12:10
oracle
oracle
Oracle Critical Patch Update Advisory - January 2024
2024-01-16 00:00:00
Oracle Critical Patch Update Advisory - April 2024
2024-04-16 00:00:00

6.8 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

48.0%

JSON
Related for RHSA-2024:0714
nessus11redhat12osv3github2prion2redhatcve2ubuntucve2debiancve2ibm39cve2veracode2cgr1wolfi1nvd2atlassian1openvas2cvelist2oracle2