RHSA-2025:10453

See a problem?
Please try reporting it to the source first.

Source

https://access.redhat.com/errata/RHSA-2025:10453

Import Source

https://security.access.redhat.com/data/osv/RHSA-2025:10453.json

JSON Data

https://api.osv.dev/v1/vulns/RHSA-2025:10453

Published

2025-07-08T10:04:12Z

Modified

2025-07-08T10:45:42.508236Z

Upstream

CVE-2025-23184

CVE-2025-2901

CVE-2025-27611

CVE-2025-48734

CVE-2025-2251

Severity

8.8 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 8.0.8 Security update

Details

References

Affected packages

Red Hat:jboss_enterprise_application_platform:8.0::el9 / eap8-activemq-artemis

Package

Name: eap8-activemq-artemis
Purl: pkg:rpm/redhat/eap8-activemq-artemis

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:2.33.0-3.redhat_00017.1.el9eap

Red Hat:jboss_enterprise_application_platform:8.0::el9 / eap8-activemq-artemis-cli

Package

Name: eap8-activemq-artemis-cli
Purl: pkg:rpm/redhat/eap8-activemq-artemis-cli

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:2.33.0-3.redhat_00017.1.el9eap

Red Hat:jboss_enterprise_application_platform:8.0::el9 / eap8-activemq-artemis-commons

Package

Name: eap8-activemq-artemis-commons
Purl: pkg:rpm/redhat/eap8-activemq-artemis-commons

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:2.33.0-3.redhat_00017.1.el9eap

Red Hat:jboss_enterprise_application_platform:8.0::el9 / eap8-activemq-artemis-core-client

Package

Name: eap8-activemq-artemis-core-client
Purl: pkg:rpm/redhat/eap8-activemq-artemis-core-client

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:2.33.0-3.redhat_00017.1.el9eap

Red Hat:jboss_enterprise_application_platform:8.0::el9 / eap8-activemq-artemis-dto

Package

Name: eap8-activemq-artemis-dto
Purl: pkg:rpm/redhat/eap8-activemq-artemis-dto

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:2.33.0-3.redhat_00017.1.el9eap

Red Hat:jboss_enterprise_application_platform:8.0::el9 / eap8-activemq-artemis-hornetq-protocol

Package

Name: eap8-activemq-artemis-hornetq-protocol
Purl: pkg:rpm/redhat/eap8-activemq-artemis-hornetq-protocol

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:2.33.0-3.redhat_00017.1.el9eap

Red Hat:jboss_enterprise_application_platform:8.0::el9 / eap8-activemq-artemis-hqclient-protocol

Package

Name: eap8-activemq-artemis-hqclient-protocol
Purl: pkg:rpm/redhat/eap8-activemq-artemis-hqclient-protocol

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:2.33.0-3.redhat_00017.1.el9eap

Red Hat:jboss_enterprise_application_platform:8.0::el9 / eap8-activemq-artemis-jakarta-client

Package

Name: eap8-activemq-artemis-jakarta-client
Purl: pkg:rpm/redhat/eap8-activemq-artemis-jakarta-client

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:2.33.0-3.redhat_00017.1.el9eap

Red Hat:jboss_enterprise_application_platform:8.0::el9 / eap8-activemq-artemis-jakarta-ra

Package

Name: eap8-activemq-artemis-jakarta-ra
Purl: pkg:rpm/redhat/eap8-activemq-artemis-jakarta-ra

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:2.33.0-3.redhat_00017.1.el9eap

Red Hat:jboss_enterprise_application_platform:8.0::el9 / eap8-activemq-artemis-jakarta-server

Package

Name: eap8-activemq-artemis-jakarta-server
Purl: pkg:rpm/redhat/eap8-activemq-artemis-jakarta-server

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:2.33.0-3.redhat_00017.1.el9eap

Red Hat:jboss_enterprise_application_platform:8.0::el9 / eap8-activemq-artemis-jakarta-service-extensions

Package

Name: eap8-activemq-artemis-jakarta-service-extensions
Purl: pkg:rpm/redhat/eap8-activemq-artemis-jakarta-service-extensions

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:2.33.0-3.redhat_00017.1.el9eap

Red Hat:jboss_enterprise_application_platform:8.0::el9 / eap8-activemq-artemis-jdbc-store

Package

Name: eap8-activemq-artemis-jdbc-store
Purl: pkg:rpm/redhat/eap8-activemq-artemis-jdbc-store

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:2.33.0-3.redhat_00017.1.el9eap

Red Hat:jboss_enterprise_application_platform:8.0::el9 / eap8-activemq-artemis-journal

Package

Name: eap8-activemq-artemis-journal
Purl: pkg:rpm/redhat/eap8-activemq-artemis-journal

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:2.33.0-3.redhat_00017.1.el9eap

Red Hat:jboss_enterprise_application_platform:8.0::el9 / eap8-activemq-artemis-selector

Package

Name: eap8-activemq-artemis-selector
Purl: pkg:rpm/redhat/eap8-activemq-artemis-selector

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:2.33.0-3.redhat_00017.1.el9eap

Red Hat:jboss_enterprise_application_platform:8.0::el9 / eap8-activemq-artemis-server

Package

Name: eap8-activemq-artemis-server
Purl: pkg:rpm/redhat/eap8-activemq-artemis-server

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:2.33.0-3.redhat_00017.1.el9eap

Red Hat:jboss_enterprise_application_platform:8.0::el9 / eap8-apache-commons-beanutils

Package

Name: eap8-apache-commons-beanutils
Purl: pkg:rpm/redhat/eap8-apache-commons-beanutils

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:1.11.0-1.redhat_00001.1.el9eap

Red Hat:jboss_enterprise_application_platform:8.0::el9 / eap8-apache-cxf

Package

Name: eap8-apache-cxf
Purl: pkg:rpm/redhat/eap8-apache-cxf

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:4.0.6-2.redhat_00001.1.el9eap

Red Hat:jboss_enterprise_application_platform:8.0::el9 / eap8-apache-cxf-rt

Package

Name: eap8-apache-cxf-rt
Purl: pkg:rpm/redhat/eap8-apache-cxf-rt

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:4.0.6-2.redhat_00001.1.el9eap

Red Hat:jboss_enterprise_application_platform:8.0::el9 / eap8-apache-cxf-services

Package

Name: eap8-apache-cxf-services
Purl: pkg:rpm/redhat/eap8-apache-cxf-services

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:4.0.6-2.redhat_00001.1.el9eap

Red Hat:jboss_enterprise_application_platform:8.0::el9 / eap8-apache-cxf-tools

Package

Name: eap8-apache-cxf-tools
Purl: pkg:rpm/redhat/eap8-apache-cxf-tools

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:4.0.6-2.redhat_00001.1.el9eap

Red Hat:jboss_enterprise_application_platform:8.0::el9 / eap8-apache-mime4j

Package

Name: eap8-apache-mime4j
Purl: pkg:rpm/redhat/eap8-apache-mime4j

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:0.8.12-1.redhat_00001.1.el9eap

Red Hat:jboss_enterprise_application_platform:8.0::el9 / eap8-apache-mime4j-dom

Package

Name: eap8-apache-mime4j-dom
Purl: pkg:rpm/redhat/eap8-apache-mime4j-dom

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:0.8.12-1.redhat_00001.1.el9eap

Red Hat:jboss_enterprise_application_platform:8.0::el9 / eap8-apache-mime4j-storage

Package

Name: eap8-apache-mime4j-storage
Purl: pkg:rpm/redhat/eap8-apache-mime4j-storage

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:0.8.12-1.redhat_00001.1.el9eap

Red Hat:jboss_enterprise_application_platform:8.0::el9 / eap8-eap-product-conf-parent

Package

Name: eap8-eap-product-conf-parent
Purl: pkg:rpm/redhat/eap8-eap-product-conf-parent

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:800.8.0-1.GA_redhat_00001.1.el9eap

Red Hat:jboss_enterprise_application_platform:8.0::el9 / eap8-eap-product-conf-wildfly-ee-feature-pack

Package

Name: eap8-eap-product-conf-wildfly-ee-feature-pack
Purl: pkg:rpm/redhat/eap8-eap-product-conf-wildfly-ee-feature-pack

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:800.8.0-1.GA_redhat_00001.1.el9eap

Red Hat:jboss_enterprise_application_platform:8.0::el9 / eap8-elytron-web

Package

Name: eap8-elytron-web
Purl: pkg:rpm/redhat/eap8-elytron-web

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:4.0.3-1.Final_redhat_00001.1.el9eap

Red Hat:jboss_enterprise_application_platform:8.0::el9 / eap8-fastinfoset

Package

Name: eap8-fastinfoset
Purl: pkg:rpm/redhat/eap8-fastinfoset

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:2.1.1-1.redhat_00001.1.el9eap

Red Hat:jboss_enterprise_application_platform:8.0::el9 / eap8-hal-console

Package

Name: eap8-hal-console
Purl: pkg:rpm/redhat/eap8-hal-console

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:3.6.24-1.Final_redhat_00001.1.el9eap

Red Hat:jboss_enterprise_application_platform:8.0::el9 / eap8-hibernate

Package

Name: eap8-hibernate
Purl: pkg:rpm/redhat/eap8-hibernate

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:6.2.36-1.Final_redhat_00001.1.el9eap

Red Hat:jboss_enterprise_application_platform:8.0::el9 / eap8-hibernate-core

Package

Name: eap8-hibernate-core
Purl: pkg:rpm/redhat/eap8-hibernate-core

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:6.2.36-1.Final_redhat_00001.1.el9eap

Red Hat:jboss_enterprise_application_platform:8.0::el9 / eap8-hibernate-envers

Package

Name: eap8-hibernate-envers
Purl: pkg:rpm/redhat/eap8-hibernate-envers

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:6.2.36-1.Final_redhat_00001.1.el9eap

Red Hat:jboss_enterprise_application_platform:8.0::el9 / eap8-httpcomponents-asyncclient

Package

Name: eap8-httpcomponents-asyncclient
Purl: pkg:rpm/redhat/eap8-httpcomponents-asyncclient

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:4.1.5-4.redhat_00006.1.el9eap

Red Hat:jboss_enterprise_application_platform:8.0::el9 / eap8-jboss-remoting

Package

Name: eap8-jboss-remoting
Purl: pkg:rpm/redhat/eap8-jboss-remoting

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:5.0.31-1.Final_redhat_00001.1.el9eap

Red Hat:jboss_enterprise_application_platform:8.0::el9 / eap8-jbossws-cxf

Package

Name: eap8-jbossws-cxf
Purl: pkg:rpm/redhat/eap8-jbossws-cxf

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:7.3.3-1.Final_redhat_00001.1.el9eap

Red Hat:jboss_enterprise_application_platform:8.0::el9 / eap8-narayana

Package

Name: eap8-narayana
Purl: pkg:rpm/redhat/eap8-narayana

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:6.0.6-1.Final_redhat_00001.1.el9eap

Red Hat:jboss_enterprise_application_platform:8.0::el9 / eap8-narayana-jbosstxbridge

Package

Name: eap8-narayana-jbosstxbridge
Purl: pkg:rpm/redhat/eap8-narayana-jbosstxbridge

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:6.0.6-1.Final_redhat_00001.1.el9eap

Red Hat:jboss_enterprise_application_platform:8.0::el9 / eap8-narayana-jbossxts

Package

Name: eap8-narayana-jbossxts
Purl: pkg:rpm/redhat/eap8-narayana-jbossxts

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:6.0.6-1.Final_redhat_00001.1.el9eap

Red Hat:jboss_enterprise_application_platform:8.0::el9 / eap8-narayana-jts-idlj

Package

Name: eap8-narayana-jts-idlj
Purl: pkg:rpm/redhat/eap8-narayana-jts-idlj

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:6.0.6-1.Final_redhat_00001.1.el9eap

Red Hat:jboss_enterprise_application_platform:8.0::el9 / eap8-narayana-jts-integration

Package

Name: eap8-narayana-jts-integration
Purl: pkg:rpm/redhat/eap8-narayana-jts-integration

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:6.0.6-1.Final_redhat_00001.1.el9eap

Red Hat:jboss_enterprise_application_platform:8.0::el9 / eap8-narayana-restat-api

Package

Name: eap8-narayana-restat-api
Purl: pkg:rpm/redhat/eap8-narayana-restat-api

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:6.0.6-1.Final_redhat_00001.1.el9eap

Red Hat:jboss_enterprise_application_platform:8.0::el9 / eap8-narayana-restat-bridge

Package

Name: eap8-narayana-restat-bridge
Purl: pkg:rpm/redhat/eap8-narayana-restat-bridge

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:6.0.6-1.Final_redhat_00001.1.el9eap

Red Hat:jboss_enterprise_application_platform:8.0::el9 / eap8-narayana-restat-integration

Package

Name: eap8-narayana-restat-integration
Purl: pkg:rpm/redhat/eap8-narayana-restat-integration

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:6.0.6-1.Final_redhat_00001.1.el9eap

Red Hat:jboss_enterprise_application_platform:8.0::el9 / eap8-narayana-restat-util

Package

Name: eap8-narayana-restat-util
Purl: pkg:rpm/redhat/eap8-narayana-restat-util

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:6.0.6-1.Final_redhat_00001.1.el9eap

Red Hat:jboss_enterprise_application_platform:8.0::el9 / eap8-neethi

Package

Name: eap8-neethi
Purl: pkg:rpm/redhat/eap8-neethi

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:3.2.1-1.redhat_00002.1.el9eap

Red Hat:jboss_enterprise_application_platform:8.0::el9 / eap8-reactivex-rxjava2

Package

Name: eap8-reactivex-rxjava2
Purl: pkg:rpm/redhat/eap8-reactivex-rxjava2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:2.2.21-3.redhat_00002.1.el9eap

Red Hat:jboss_enterprise_application_platform:8.0::el9 / eap8-slf4j

Package

Name: eap8-slf4j
Purl: pkg:rpm/redhat/eap8-slf4j

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:2.0.17-1.redhat_00001.1.el9eap

Red Hat:jboss_enterprise_application_platform:8.0::el9 / eap8-slf4j-api

Package

Name: eap8-slf4j-api
Purl: pkg:rpm/redhat/eap8-slf4j-api

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:2.0.17-1.redhat_00001.1.el9eap

Red Hat:jboss_enterprise_application_platform:8.0::el9 / eap8-velocity

Package

Name: eap8-velocity
Purl: pkg:rpm/redhat/eap8-velocity

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:2.3.0-4.redhat_00010.1.el9eap

Red Hat:jboss_enterprise_application_platform:8.0::el9 / eap8-velocity-engine-core

Package

Name: eap8-velocity-engine-core
Purl: pkg:rpm/redhat/eap8-velocity-engine-core

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:2.3.0-4.redhat_00010.1.el9eap

Red Hat:jboss_enterprise_application_platform:8.0::el9 / eap8-wildfly

Package

Name: eap8-wildfly
Purl: pkg:rpm/redhat/eap8-wildfly

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:8.0.8-4.GA_redhat_00006.1.el9eap

Red Hat:jboss_enterprise_application_platform:8.0::el9 / eap8-wildfly-elytron

Package

Name: eap8-wildfly-elytron
Purl: pkg:rpm/redhat/eap8-wildfly-elytron

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:2.2.11-1.Final_redhat_00001.1.el9eap

Red Hat:jboss_enterprise_application_platform:8.0::el9 / eap8-wildfly-elytron-tool

Package

Name: eap8-wildfly-elytron-tool
Purl: pkg:rpm/redhat/eap8-wildfly-elytron-tool

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:2.2.11-1.Final_redhat_00001.1.el9eap

Red Hat:jboss_enterprise_application_platform:8.0::el9 / eap8-wildfly-java-jdk11

Package

Name: eap8-wildfly-java-jdk11
Purl: pkg:rpm/redhat/eap8-wildfly-java-jdk11

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:8.0.8-4.GA_redhat_00006.1.el9eap

Red Hat:jboss_enterprise_application_platform:8.0::el9 / eap8-wildfly-java-jdk17

Package

Name: eap8-wildfly-java-jdk17
Purl: pkg:rpm/redhat/eap8-wildfly-java-jdk17

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:8.0.8-4.GA_redhat_00006.1.el9eap

Red Hat:jboss_enterprise_application_platform:8.0::el9 / eap8-wildfly-java-jdk21

Package

Name: eap8-wildfly-java-jdk21
Purl: pkg:rpm/redhat/eap8-wildfly-java-jdk21

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:8.0.8-4.GA_redhat_00006.1.el9eap

Red Hat:jboss_enterprise_application_platform:8.0::el9 / eap8-wildfly-modules

Package

Name: eap8-wildfly-modules
Purl: pkg:rpm/redhat/eap8-wildfly-modules

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:8.0.8-4.GA_redhat_00006.1.el9eap