Vulnerability Database
Blog
FAQ
Docs
RHSA-2023:4507
See a problem?
Please try reporting it
to the source
first.
Source
https://access.redhat.com/errata/RHSA-2023:4507
Import Source
https://security.access.redhat.com/data/osv/RHSA-2023:4507.json
JSON Data
https://api.osv.dev/v1/vulns/RHSA-2023:4507
Related
CVE-2021-46877
CVE-2023-1436
CVE-2023-3223
Published
2024-09-30T03:55:09Z
Modified
2024-12-23T10:05:57Z
Severity
7.5 (High)
CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CVSS Calculator
Summary
Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform security update
Details
References
https://access.redhat.com/errata/RHSA-2023:4507
https://access.redhat.com/security/updates/classification/#important
https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/7.4/
https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/7.4/html-single/installation_guide/
https://bugzilla.redhat.com/show_bug.cgi?id=2182788
https://bugzilla.redhat.com/show_bug.cgi?id=2185707
https://bugzilla.redhat.com/show_bug.cgi?id=2209689
https://issues.redhat.com/browse/JBEAP-24711
https://issues.redhat.com/browse/JBEAP-24722
https://issues.redhat.com/browse/JBEAP-24744
https://issues.redhat.com/browse/JBEAP-24745
https://issues.redhat.com/browse/JBEAP-24790
https://issues.redhat.com/browse/JBEAP-24808
https://issues.redhat.com/browse/JBEAP-24819
https://issues.redhat.com/browse/JBEAP-24820
https://issues.redhat.com/browse/JBEAP-24821
https://issues.redhat.com/browse/JBEAP-24822
https://issues.redhat.com/browse/JBEAP-24831
https://issues.redhat.com/browse/JBEAP-24832
https://issues.redhat.com/browse/JBEAP-24835
https://issues.redhat.com/browse/JBEAP-24836
https://issues.redhat.com/browse/JBEAP-24858
https://issues.redhat.com/browse/JBEAP-24973
https://issues.redhat.com/browse/JBEAP-25004
https://issues.redhat.com/browse/JBEAP-25085
https://issues.redhat.com/browse/JBEAP-25086
https://issues.redhat.com/browse/JBEAP-25204
https://issues.redhat.com/browse/JBEAP-25205
https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_4507.json
https://access.redhat.com/security/cve/CVE-2021-46877
https://www.cve.org/CVERecord?id=CVE-2021-46877
https://nvd.nist.gov/vuln/detail/CVE-2021-46877
https://access.redhat.com/security/cve/CVE-2023-1436
https://www.cve.org/CVERecord?id=CVE-2023-1436
https://nvd.nist.gov/vuln/detail/CVE-2023-1436
https://research.jfrog.com/vulnerabilities/jettison-json-array-dos-xray-427911/
https://access.redhat.com/security/cve/CVE-2023-3223
https://www.cve.org/CVERecord?id=CVE-2023-3223
https://nvd.nist.gov/vuln/detail/CVE-2023-3223
Affected packages
Red Hat:jboss_enterprise_application_platform:7.4::el9
/
eap7-wildfly
Package
Name
eap7-wildfly
Purl
pkg:rpm/redhat/eap7-wildfly
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:7.4.12-3.GA_redhat_00003.1.el9eap
Red Hat:jboss_enterprise_application_platform:7.4::el9
/
eap7-wildfly-java-jdk11
Package
Name
eap7-wildfly-java-jdk11
Purl
pkg:rpm/redhat/eap7-wildfly-java-jdk11
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:7.4.12-3.GA_redhat_00003.1.el9eap
Red Hat:jboss_enterprise_application_platform:7.4::el9
/
eap7-wildfly-java-jdk17
Package
Name
eap7-wildfly-java-jdk17
Purl
pkg:rpm/redhat/eap7-wildfly-java-jdk17
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:7.4.12-3.GA_redhat_00003.1.el9eap
Red Hat:jboss_enterprise_application_platform:7.4::el9
/
eap7-wildfly-java-jdk8
Package
Name
eap7-wildfly-java-jdk8
Purl
pkg:rpm/redhat/eap7-wildfly-java-jdk8
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:7.4.12-3.GA_redhat_00003.1.el9eap
Red Hat:jboss_enterprise_application_platform:7.4::el9
/
eap7-wildfly-javadocs
Package
Name
eap7-wildfly-javadocs
Purl
pkg:rpm/redhat/eap7-wildfly-javadocs
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:7.4.12-3.GA_redhat_00003.1.el9eap
Red Hat:jboss_enterprise_application_platform:7.4::el9
/
eap7-wildfly-modules
Package
Name
eap7-wildfly-modules
Purl
pkg:rpm/redhat/eap7-wildfly-modules
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:7.4.12-3.GA_redhat_00003.1.el9eap
Red Hat:jboss_enterprise_application_platform:7.4::el9
/
eap7-jettison
Package
Name
eap7-jettison
Purl
pkg:rpm/redhat/eap7-jettison
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:1.5.4-1.redhat_00002.1.el9eap
Red Hat:jboss_enterprise_application_platform:7.4::el9
/
eap7-undertow
Package
Name
eap7-undertow
Purl
pkg:rpm/redhat/eap7-undertow
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.2.25-3.SP3_redhat_00001.1.el9eap
RHSA-2023:4507 - OSV