Search
Find a vulnerability
Search criteria
4123 vulnerabilities by RED HAT
CVE-2026-59692 (GCVE-0-2026-59692)
Vulnerability from nvd – Published: 2026-07-09 09:35 – Updated: 2026-07-09 14:39
VLAI
EPSS
VEX
Title
Gstreamer: gstreamer: dtls certificate subject dn stack buffer overflow in openssl_verify_callback
Summary
A stack buffer overflow vulnerability was found in GStreamer's DTLS plugin. During a DTLS handshake, the peer certificate Subject Distinguished Name is printed into a fixed-size 2048-byte stack buffer without bounds checking. A remote unauthenticated attacker can send a certificate with an oversized Subject DN that exceeds the buffer, causing a stack buffer overflow and process crash, resulting in denial of service.
Severity
7.5 (High)
SSVC
Exploitation: none
Automatable: yes
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
- CWE-121 - Stack-based Buffer Overflow
Assigner
References
4 references
| URL | Tags |
|---|---|
| https://access.redhat.com/security/cve/CVE-2026-59692 | vdb-entryx_refsource_REDHAT |
| https://bugzilla.redhat.com/show_bug.cgi?id=2497344 | issue-trackingx_refsource_REDHAT |
| https://gitlab.freedesktop.org/gstreamer/gstreame… | |
| https://gitlab.freedesktop.org/gstreamer/gstreame… |
Impacted products
5 products
| Vendor | Product | Version | |
|---|---|---|---|
| Red Hat | Red Hat Enterprise Linux 10 |
cpe:/o:redhat:enterprise_linux:10 |
|
| Red Hat | Red Hat Enterprise Linux 6 |
cpe:/o:redhat:enterprise_linux:6 |
|
| Red Hat | Red Hat Enterprise Linux 7 |
cpe:/o:redhat:enterprise_linux:7 |
|
| Red Hat | Red Hat Enterprise Linux 8 |
cpe:/o:redhat:enterprise_linux:8 |
|
| Red Hat | Red Hat Enterprise Linux 9 |
cpe:/o:redhat:enterprise_linux:9 |
Date Public
2026-07-08 00:00
Credits
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-59692",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "yes"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-07-09T13:33:46.281179Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-07-09T14:39:16.678Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:10"
],
"defaultStatus": "affected",
"packageName": "gstreamer1-plugins-bad-free",
"product": "Red Hat Enterprise Linux 10",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:6"
],
"defaultStatus": "affected",
"packageName": "gstreamer-plugins-bad-free",
"product": "Red Hat Enterprise Linux 6",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:7"
],
"defaultStatus": "affected",
"packageName": "gstreamer1-plugins-bad-free",
"product": "Red Hat Enterprise Linux 7",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:7"
],
"defaultStatus": "affected",
"packageName": "gstreamer-plugins-bad-free",
"product": "Red Hat Enterprise Linux 7",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:8"
],
"defaultStatus": "affected",
"packageName": "gstreamer1-plugins-bad-free",
"product": "Red Hat Enterprise Linux 8",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:9"
],
"defaultStatus": "affected",
"packageName": "gstreamer1-plugins-bad-free",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat"
}
],
"credits": [
{
"lang": "en",
"value": "Red Hat would like to thank Clouditera Security (Clouditera), NSFOCUS (NSFOCUS), and Z.ai Security (Z.ai) for reporting this issue."
}
],
"datePublic": "2026-07-08T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "A stack buffer overflow vulnerability was found in GStreamer\u0027s DTLS plugin. During a DTLS handshake, the peer certificate Subject Distinguished Name is printed into a fixed-size 2048-byte stack buffer without bounds checking. A remote unauthenticated attacker can send a certificate with an oversized Subject DN that exceeds the buffer, causing a stack buffer overflow and process crash, resulting in denial of service."
}
],
"metrics": [
{
"other": {
"content": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"value": "Important"
},
"type": "Red Hat severity rating"
}
},
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"format": "CVSS"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-121",
"description": "Stack-based Buffer Overflow",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-07-09T09:35:31.557Z",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"tags": [
"vdb-entry",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/security/cve/CVE-2026-59692"
},
{
"name": "RHBZ#2497344",
"tags": [
"issue-tracking",
"x_refsource_REDHAT"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2497344"
},
{
"url": "https://gitlab.freedesktop.org/gstreamer/gstreamer-security/-/merge_requests/99"
},
{
"url": "https://gitlab.freedesktop.org/gstreamer/gstreamer/-/work_items/5172"
}
],
"timeline": [
{
"lang": "en",
"time": "2026-07-06T00:00:00.000Z",
"value": "Reported to Red Hat."
},
{
"lang": "en",
"time": "2026-07-08T00:00:00.000Z",
"value": "Made public."
}
],
"title": "Gstreamer: gstreamer: dtls certificate subject dn stack buffer overflow in openssl_verify_callback",
"workarounds": [
{
"lang": "en",
"value": "There is no complete mitigation for this vulnerability. The following measures can reduce risk:\n\n1. If WebRTC/DTLS functionality is not required, remove the DTLS plugin shared object from the GStreamer plugins directory (typically /usr/lib64/gstreamer-1.0/libgstdtls.so).\n2. Restrict network access to WebRTC/DTLS endpoints to trusted peers only via firewall rules.\n3. Deploy GStreamer WebRTC services behind a reverse proxy or media server that validates DTLS certificates before forwarding."
}
],
"x_generator": {
"engine": "cvelib 1.8.0"
},
"x_redhatCweChain": "CWE-121: Stack-based Buffer Overflow"
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2026-59692",
"datePublished": "2026-07-09T09:35:31.557Z",
"dateReserved": "2026-07-06T13:40:46.923Z",
"dateUpdated": "2026-07-09T14:39:16.678Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
CVE-2026-59691 (GCVE-0-2026-59691)
Vulnerability from nvd – Published: 2026-07-09 09:34 – Updated: 2026-07-09 13:50
VLAI
EPSS
VEX
Title
Gstreamer: gstreamer: rfbsrc/librfb hextile heap out-of-bounds write with 16bpp framebuffer
Summary
A heap buffer overflow vulnerability was found in GStreamer's rfbsrc plugin. When a client connects to a malicious RFB/VNC server that advertises a 16bpp framebuffer and sends Hextile-encoded updates, the Hextile background fill path writes 32-bit pixel values into a buffer allocated for 16-bit pixels. This type mismatch causes an out-of-bounds heap write that can lead to denial of service (process crash) and potential memory corruption.
Severity
7.1 (High)
SSVC
Exploitation: none
Automatable: no
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
- CWE-787 - Out-of-bounds Write
Assigner
References
4 references
| URL | Tags |
|---|---|
| https://access.redhat.com/security/cve/CVE-2026-59691 | vdb-entryx_refsource_REDHAT |
| https://bugzilla.redhat.com/show_bug.cgi?id=2497343 | issue-trackingx_refsource_REDHAT |
| https://gitlab.freedesktop.org/gstreamer/gstreame… | |
| https://gitlab.freedesktop.org/gstreamer/gstreame… |
Impacted products
5 products
| Vendor | Product | Version | |
|---|---|---|---|
| Red Hat | Red Hat Enterprise Linux 10 |
cpe:/o:redhat:enterprise_linux:10 |
|
| Red Hat | Red Hat Enterprise Linux 6 |
cpe:/o:redhat:enterprise_linux:6 |
|
| Red Hat | Red Hat Enterprise Linux 7 |
cpe:/o:redhat:enterprise_linux:7 |
|
| Red Hat | Red Hat Enterprise Linux 8 |
cpe:/o:redhat:enterprise_linux:8 |
|
| Red Hat | Red Hat Enterprise Linux 9 |
cpe:/o:redhat:enterprise_linux:9 |
Date Public
2026-07-08 00:00
Credits
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-59691",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-07-09T13:50:29.784295Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-07-09T13:50:41.903Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:10"
],
"defaultStatus": "affected",
"packageName": "gstreamer1-plugins-bad-free",
"product": "Red Hat Enterprise Linux 10",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:6"
],
"defaultStatus": "affected",
"packageName": "gstreamer-plugins-bad-free",
"product": "Red Hat Enterprise Linux 6",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:7"
],
"defaultStatus": "affected",
"packageName": "gstreamer1-plugins-bad-free",
"product": "Red Hat Enterprise Linux 7",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:7"
],
"defaultStatus": "affected",
"packageName": "gstreamer-plugins-bad-free",
"product": "Red Hat Enterprise Linux 7",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:8"
],
"defaultStatus": "affected",
"packageName": "gstreamer1-plugins-bad-free",
"product": "Red Hat Enterprise Linux 8",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:9"
],
"defaultStatus": "affected",
"packageName": "gstreamer1-plugins-bad-free",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat"
}
],
"credits": [
{
"lang": "en",
"value": "Red Hat would like to thank Clouditera Security (Clouditera), NSFOCUS (NSFOCUS), and Z.ai Security (Z.ai) for reporting this issue."
}
],
"datePublic": "2026-07-08T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "A heap buffer overflow vulnerability was found in GStreamer\u0027s rfbsrc plugin. When a client connects to a malicious RFB/VNC server that advertises a 16bpp framebuffer and sends Hextile-encoded updates, the Hextile background fill path writes 32-bit pixel values into a buffer allocated for 16-bit pixels. This type mismatch causes an out-of-bounds heap write that can lead to denial of service (process crash) and potential memory corruption."
}
],
"metrics": [
{
"other": {
"content": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"value": "Important"
},
"type": "Red Hat severity rating"
}
},
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"format": "CVSS"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-787",
"description": "Out-of-bounds Write",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-07-09T09:34:47.743Z",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"tags": [
"vdb-entry",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/security/cve/CVE-2026-59691"
},
{
"name": "RHBZ#2497343",
"tags": [
"issue-tracking",
"x_refsource_REDHAT"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2497343"
},
{
"url": "https://gitlab.freedesktop.org/gstreamer/gstreamer-security/-/merge_requests/100"
},
{
"url": "https://gitlab.freedesktop.org/gstreamer/gstreamer/-/work_items/5173"
}
],
"timeline": [
{
"lang": "en",
"time": "2026-07-06T00:00:00.000Z",
"value": "Reported to Red Hat."
},
{
"lang": "en",
"time": "2026-07-08T00:00:00.000Z",
"value": "Made public."
}
],
"title": "Gstreamer: gstreamer: rfbsrc/librfb hextile heap out-of-bounds write with 16bpp framebuffer",
"workarounds": [
{
"lang": "en",
"value": "There is no complete mitigation for this vulnerability. The following measures can reduce risk:\n\n1. Do not connect GStreamer pipelines using rfbsrc to untrusted or unknown VNC servers.\n2. If the rfbsrc plugin is not required, remove the librfb plugin shared object from the GStreamer plugins directory (typically /usr/lib64/gstreamer-1.0/libgstrfbsrc.so).\n3. Network-level controls (firewall rules) can restrict outbound VNC connections to trusted servers only."
}
],
"x_generator": {
"engine": "cvelib 1.8.0"
},
"x_redhatCweChain": "CWE-787: Out-of-bounds Write"
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2026-59691",
"datePublished": "2026-07-09T09:34:47.743Z",
"dateReserved": "2026-07-06T13:40:46.923Z",
"dateUpdated": "2026-07-09T13:50:41.903Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
CVE-2026-15154 (GCVE-0-2026-15154)
Vulnerability from nvd – Published: 2026-07-08 19:50 – Updated: 2026-07-08 20:38
VLAI
EPSS
VEX
Title
Guardrails-detectors: guardrails-detectors: unauthenticated regular-expression denial of service (redos) via detector_params.regex
Summary
A flaw was found in `guardrails-detectors`, a component of Red Hat OpenShift AI. This vulnerability, known as Regular Expression Denial of Service (ReDoS), allows a remote attacker to provide specially crafted regular expressions to the public detection API. This can cause catastrophic backtracking, leading to a worker process consuming 100% CPU indefinitely and resulting in a denial of service for the entire guardrails-mediated LLM pipeline.
Severity
6.5 (Medium)
SSVC
Exploitation: none
Automatable: no
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
- CWE-1333 - Inefficient Regular Expression Complexity
Assigner
References
2 references
| URL | Tags |
|---|---|
| https://access.redhat.com/security/cve/CVE-2026-15154 | vdb-entryx_refsource_REDHAT |
| https://bugzilla.redhat.com/show_bug.cgi?id=2498188 | issue-trackingx_refsource_REDHAT |
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| Red Hat | Red Hat OpenShift AI (RHOAI) |
cpe:/a:redhat:openshift_ai |
Date Public
2026-07-08 18:43
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-15154",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-07-08T20:38:40.332330Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-07-08T20:38:46.315Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift_ai"
],
"defaultStatus": "affected",
"packageName": "rhoai/odh-built-in-detector-rhel9",
"product": "Red Hat OpenShift AI (RHOAI)",
"vendor": "Red Hat"
}
],
"datePublic": "2026-07-08T18:43:36.000Z",
"descriptions": [
{
"lang": "en",
"value": "A flaw was found in `guardrails-detectors`, a component of Red Hat OpenShift AI. This vulnerability, known as Regular Expression Denial of Service (ReDoS), allows a remote attacker to provide specially crafted regular expressions to the public detection API. This can cause catastrophic backtracking, leading to a worker process consuming 100% CPU indefinitely and resulting in a denial of service for the entire guardrails-mediated LLM pipeline."
}
],
"metrics": [
{
"other": {
"content": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"value": "Moderate"
},
"type": "Red Hat severity rating"
}
},
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"format": "CVSS"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-1333",
"description": "Inefficient Regular Expression Complexity",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-07-08T19:50:51.563Z",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"tags": [
"vdb-entry",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/security/cve/CVE-2026-15154"
},
{
"name": "RHBZ#2498188",
"tags": [
"issue-tracking",
"x_refsource_REDHAT"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2498188"
}
],
"timeline": [
{
"lang": "en",
"time": "2026-06-26T12:47:20.317Z",
"value": "Reported to Red Hat."
},
{
"lang": "en",
"time": "2026-07-08T18:43:36.000Z",
"value": "Made public."
}
],
"title": "Guardrails-detectors: guardrails-detectors: unauthenticated regular-expression denial of service (redos) via detector_params.regex",
"x_generator": {
"engine": "cvelib 1.8.0"
},
"x_redhatCweChain": "CWE-1333: Inefficient Regular Expression Complexity"
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2026-15154",
"datePublished": "2026-07-08T19:50:51.563Z",
"dateReserved": "2026-07-08T19:44:43.020Z",
"dateUpdated": "2026-07-08T20:38:46.315Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
CVE-2026-15063 (GCVE-0-2026-15063)
Vulnerability from nvd – Published: 2026-07-08 14:58 – Updated: 2026-07-08 15:56
VLAI
EPSS
VEX
Title
Trustyai-service-operator: trustyai service operator: gorch port bypass when auth is enabled
Summary
A flaw was found in the gorch service template, which is part of the trustyai-service-operator. Even when authentication is enabled, the gorch service exposes unproxied orchestrator and detector metrics ports. This allows any pod on the cluster network to directly access these ports, bypassing the kube-rbac-proxy and its authentication mechanisms. This could lead to unauthorized access to the orchestrator and detector metrics.
Severity
6.3 (Medium)
SSVC
Exploitation: none
Automatable: no
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
- CWE-306 - Missing Authentication for Critical Function
Assigner
References
2 references
| URL | Tags |
|---|---|
| https://access.redhat.com/security/cve/CVE-2026-15063 | vdb-entryx_refsource_REDHAT |
| https://bugzilla.redhat.com/show_bug.cgi?id=2498058 | issue-trackingx_refsource_REDHAT |
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| Red Hat | Red Hat OpenShift AI (RHOAI) |
cpe:/a:redhat:openshift_ai |
Date Public
2026-07-08 00:00
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-15063",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-07-08T15:56:03.613145Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-07-08T15:56:34.556Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift_ai"
],
"defaultStatus": "affected",
"packageName": "rhoai/odh-trustyai-service-operator-rhel9",
"product": "Red Hat OpenShift AI (RHOAI)",
"vendor": "Red Hat"
}
],
"datePublic": "2026-07-08T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "A flaw was found in the gorch service template, which is part of the trustyai-service-operator. Even when authentication is enabled, the gorch service exposes unproxied orchestrator and detector metrics ports. This allows any pod on the cluster network to directly access these ports, bypassing the kube-rbac-proxy and its authentication mechanisms. This could lead to unauthorized access to the orchestrator and detector metrics."
}
],
"metrics": [
{
"other": {
"content": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"value": "Moderate"
},
"type": "Red Hat severity rating"
}
},
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N",
"version": "3.1"
},
"format": "CVSS"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-306",
"description": "Missing Authentication for Critical Function",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-07-08T14:58:12.105Z",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"tags": [
"vdb-entry",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/security/cve/CVE-2026-15063"
},
{
"name": "RHBZ#2498058",
"tags": [
"issue-tracking",
"x_refsource_REDHAT"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2498058"
}
],
"timeline": [
{
"lang": "en",
"time": "2026-07-08T14:30:11.515Z",
"value": "Reported to Red Hat."
},
{
"lang": "en",
"time": "2026-07-08T00:00:00.000Z",
"value": "Made public."
}
],
"title": "Trustyai-service-operator: trustyai service operator: gorch port bypass when auth is enabled",
"x_generator": {
"engine": "cvelib 1.8.0"
},
"x_redhatCweChain": "CWE-306: Missing Authentication for Critical Function"
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2026-15063",
"datePublished": "2026-07-08T14:58:12.105Z",
"dateReserved": "2026-07-08T14:31:24.772Z",
"dateUpdated": "2026-07-08T15:56:34.556Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
CVE-2026-15044 (GCVE-0-2026-15044)
Vulnerability from nvd – Published: 2026-07-08 14:37 – Updated: 2026-07-09 13:41
VLAI
EPSS
VEX
Title
Trustyai-service-operator: trustyai service operator: unauthenticated access to ai guardrails and orchestrator apis
Summary
A flaw was found in the TrustyAI Service Operator. When deploying services like gorch or NemoGuardrails, if a specific security setting is not enabled, these services can expose their communication channels without requiring users to prove their identity. This allows any other program within the cluster to access the AI guardrails and orchestrator without proper authorization. An attacker could exploit this to gain unauthorized access to sensitive information and potentially make limited changes to the AI models.
Severity
6.3 (Medium)
SSVC
Exploitation: none
Automatable: no
Technical Impact: partial
CISA Coordinator (v2.0.3)
Assigner
References
2 references
| URL | Tags |
|---|---|
| https://access.redhat.com/security/cve/CVE-2026-15044 | vdb-entryx_refsource_REDHAT |
| https://bugzilla.redhat.com/show_bug.cgi?id=2498039 | issue-trackingx_refsource_REDHAT |
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| Red Hat | Red Hat OpenShift AI (RHOAI) |
cpe:/a:redhat:openshift_ai |
Date Public
2026-07-08 00:00
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-15044",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-07-09T13:41:04.256259Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-07-09T13:41:14.585Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift_ai"
],
"defaultStatus": "affected",
"packageName": "rhoai/odh-trustyai-service-operator-rhel9",
"product": "Red Hat OpenShift AI (RHOAI)",
"vendor": "Red Hat"
}
],
"datePublic": "2026-07-08T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "A flaw was found in the TrustyAI Service Operator. When deploying services like gorch or NemoGuardrails, if a specific security setting is not enabled, these services can expose their communication channels without requiring users to prove their identity. This allows any other program within the cluster to access the AI guardrails and orchestrator without proper authorization. An attacker could exploit this to gain unauthorized access to sensitive information and potentially make limited changes to the AI models."
}
],
"metrics": [
{
"other": {
"content": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"value": "Moderate"
},
"type": "Red Hat severity rating"
}
},
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N",
"version": "3.1"
},
"format": "CVSS"
}
],
"providerMetadata": {
"dateUpdated": "2026-07-08T14:37:22.054Z",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"tags": [
"vdb-entry",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/security/cve/CVE-2026-15044"
},
{
"name": "RHBZ#2498039",
"tags": [
"issue-tracking",
"x_refsource_REDHAT"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2498039"
}
],
"timeline": [
{
"lang": "en",
"time": "2026-07-08T12:07:14.502Z",
"value": "Reported to Red Hat."
},
{
"lang": "en",
"time": "2026-07-08T00:00:00.000Z",
"value": "Made public."
}
],
"title": "Trustyai-service-operator: trustyai service operator: unauthenticated access to ai guardrails and orchestrator apis",
"x_generator": {
"engine": "cvelib 1.8.0"
}
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2026-15044",
"datePublished": "2026-07-08T14:37:22.054Z",
"dateReserved": "2026-07-08T12:13:56.870Z",
"dateUpdated": "2026-07-09T13:41:14.585Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
CVE-2026-15041 (GCVE-0-2026-15041)
Vulnerability from nvd – Published: 2026-07-08 10:15 – Updated: 2026-07-08 13:44
VLAI
EPSS
VEX
Title
389-ds-base: 389-ds-base: non-constant-time comparison in pbkdf2-sha256 password verification
Summary
A flaw was found in 389 Directory Server. The PBKDF2-SHA256 password verification function uses standard memcmp() for comparing password hashes instead of a constant-time comparison function. A remote attacker could potentially use timing measurements of LDAP bind attempts to infer partial hash information, though practical exploitation is extremely difficult due to PBKDF2 computational overhead.
Severity
SSVC
Exploitation: none
Automatable: no
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
- CWE-208 - Observable Timing Discrepancy
Assigner
References
2 references
| URL | Tags |
|---|---|
| https://access.redhat.com/security/cve/CVE-2026-15041 | vdb-entryx_refsource_REDHAT |
| https://bugzilla.redhat.com/show_bug.cgi?id=2498022 | issue-trackingx_refsource_REDHAT |
Impacted products
8 products
| Vendor | Product | Version | |
|---|---|---|---|
| Red Hat | Red Hat Directory Server 11 |
cpe:/a:redhat:directory_server:11 |
|
| Red Hat | Red Hat Directory Server 12 |
cpe:/a:redhat:directory_server:12 |
|
| Red Hat | Red Hat Directory Server 13 |
cpe:/a:redhat:directory_server:13 |
|
| Red Hat | Red Hat Enterprise Linux 10 |
cpe:/o:redhat:enterprise_linux:10 |
|
| Red Hat | Red Hat Enterprise Linux 6 |
cpe:/o:redhat:enterprise_linux:6 |
|
| Red Hat | Red Hat Enterprise Linux 7 |
cpe:/o:redhat:enterprise_linux:7 |
|
| Red Hat | Red Hat Enterprise Linux 8 |
cpe:/o:redhat:enterprise_linux:8 |
|
| Red Hat | Red Hat Enterprise Linux 9 |
cpe:/o:redhat:enterprise_linux:9 |
Date Public
2026-07-08 09:58
Credits
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-15041",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-07-08T13:44:08.886989Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-07-08T13:44:19.153Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:directory_server:11"
],
"defaultStatus": "affected",
"packageName": "redhat-ds:11/389-ds-base",
"product": "Red Hat Directory Server 11",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:directory_server:12"
],
"defaultStatus": "affected",
"packageName": "redhat-ds:12/389-ds-base",
"product": "Red Hat Directory Server 12",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:directory_server:13"
],
"defaultStatus": "affected",
"packageName": "389-ds-base",
"product": "Red Hat Directory Server 13",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:10"
],
"defaultStatus": "affected",
"packageName": "389-ds-base",
"product": "Red Hat Enterprise Linux 10",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:6"
],
"defaultStatus": "unaffected",
"packageName": "389-ds-base",
"product": "Red Hat Enterprise Linux 6",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:7"
],
"defaultStatus": "affected",
"packageName": "389-ds-base",
"product": "Red Hat Enterprise Linux 7",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:8"
],
"defaultStatus": "affected",
"packageName": "389-ds:1.4/389-ds-base",
"product": "Red Hat Enterprise Linux 8",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:9"
],
"defaultStatus": "affected",
"packageName": "389-ds-base",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat"
}
],
"credits": [
{
"lang": "en",
"value": "Red Hat would like to thank Andrew Rukin (Arenadata) for reporting this issue."
}
],
"datePublic": "2026-07-08T09:58:21.463Z",
"descriptions": [
{
"lang": "en",
"value": "A flaw was found in 389 Directory Server. The PBKDF2-SHA256 password verification function uses standard memcmp() for comparing password hashes instead of a constant-time comparison function. A remote attacker could potentially use timing measurements of LDAP bind attempts to infer partial hash information, though practical exploitation is extremely difficult due to PBKDF2 computational overhead."
}
],
"metrics": [
{
"other": {
"content": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"value": "Low"
},
"type": "Red Hat severity rating"
}
},
{
"cvssV3_1": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 3.7,
"baseSeverity": "LOW",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"format": "CVSS"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-208",
"description": "Observable Timing Discrepancy",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-07-08T11:06:57.873Z",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"tags": [
"vdb-entry",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/security/cve/CVE-2026-15041"
},
{
"name": "RHBZ#2498022",
"tags": [
"issue-tracking",
"x_refsource_REDHAT"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2498022"
}
],
"timeline": [
{
"lang": "en",
"time": "2026-07-08T09:55:42.287Z",
"value": "Reported to Red Hat."
},
{
"lang": "en",
"time": "2026-07-08T09:58:21.463Z",
"value": "Made public."
}
],
"title": "389-ds-base: 389-ds-base: non-constant-time comparison in pbkdf2-sha256 password verification",
"workarounds": [
{
"lang": "en",
"value": "If possible, configure 389 Directory Server to use an alternative password storage scheme (e.g., SSHA512 or GOST-Yescrypt) which uses constant-time comparison."
}
],
"x_generator": {
"engine": "cvelib 1.8.0"
},
"x_redhatCweChain": "CWE-208: Observable Timing Discrepancy"
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2026-15041",
"datePublished": "2026-07-08T10:15:30.480Z",
"dateReserved": "2026-07-08T10:00:02.126Z",
"dateUpdated": "2026-07-08T13:44:19.153Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
CVE-2025-12799 (GCVE-0-2025-12799)
Vulnerability from nvd – Published: 2026-07-07 16:18 – Updated: 2026-07-09 14:42
VLAI
EPSS
VEX
Title
Jastow: jastow cross-site scripting attack due to unsanitized uri
Summary
A flaw was found in Jastow. Jastow is vulnerable to Cross-Site Scripting (XSS) attack. If using a set of combined configuration to allow unescaped characters in URL with embedded Undertow and Jastow, a server might be vulnerable to improper input handling.
Severity
6.5 (Medium)
SSVC
Exploitation: none
Automatable: no
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
- CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Assigner
References
6 references
| URL | Tags |
|---|---|
| https://access.redhat.com/errata/RHSA-2026:36342 | vendor-advisoryx_refsource_REDHAT |
| https://access.redhat.com/errata/RHSA-2026:36343 | vendor-advisoryx_refsource_REDHAT |
| https://access.redhat.com/errata/RHSA-2026:36344 | vendor-advisoryx_refsource_REDHAT |
| https://access.redhat.com/errata/RHSA-2026:36345 | vendor-advisoryx_refsource_REDHAT |
| https://access.redhat.com/security/cve/CVE-2025-12799 | vdb-entryx_refsource_REDHAT |
| https://bugzilla.redhat.com/show_bug.cgi?id=2413071 | issue-trackingx_refsource_REDHAT |
Impacted products
215 products
| Vendor | Product | Version | |
|---|---|---|---|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 |
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el9 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1-9.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.40.0-7.redhat_00015.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
1:2.0.0-2.redhat_00005.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.8.0-2.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.4.0-1.redhat_00002.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.3.0-1.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.0.5-1.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.0.3-1.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:4.13.2-1.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.11.0-1.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.9.0-1.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.17.2-1.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.2.2-28.redhat_2.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.16.1-2.redhat_00002.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.18.0-2.redhat_00003.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:4.0.10-3.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:4.1.0-1.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:0.8.12-1.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.14.0-4.redhat_00003.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.0.4-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:0.1.0-2.redhat_00010.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.0.1-5.redhat_00007.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.30.32-3.redhat_00003.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:8.6.6-5.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.84.0-1.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.14.18-2.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.1.8-2.redhat_00002.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.0.0-2.Final_redhat_1.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.2.5-2.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:801.7.0-1.GA_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
1:3.33.0-1.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:6.10.1.202505221210-1.r_redhat_00002.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:8.15.4-4.redhat_00003.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:4.1.2-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.0.1-3.redhat_00003.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:5.0.0-6.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.1.1-1.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.2.0-4.redhat_00007.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.1.0-4.redhat_00007.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.0.13-4.redhat_5.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.10.1-2.redhat_00005.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.0.3-1.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:33.0.0-3.jre_redhat_00004.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.2.224-4.redhat_00003.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.7.19-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:6.6.50-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:7.0.3-3.Final_redhat_00002.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:7.2.6-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:8.0.2-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.4.11-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:0.10.0-2.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:4.1.5-4.redhat_00006.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:4.5.14-5.redhat_00016.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:4.4.16-6.redhat_00011.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:15.0.21-1.Final_redhat_00002.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.1.3-2.redhat_00002.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.1.1-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.0.18-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.18.4-2.redhat_00002.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.18.4-1.redhat_00002.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.8.0-3.redhat_00002.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.1.4-1.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.1.1-5.redhat_00005.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.0.0-3.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.1.0-3.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.1.1-3.redhat_00003.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:4.0.1-2.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.0.2-1.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.0.3-1.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.1.0-5.redhat_00003.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.1.0-4.redhat_00003.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.1.6-5.redhat_00003.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.1.3-1.redhat_00002.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.1.3-3.redhat_00003.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.1.0-2.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.0.0-2.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:6.0.0-6.redhat_00007.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.1.1-1.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.0.1-3.redhat_00004.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.0.2-3.redhat_00006.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.1.0-5.redhat_00003.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:4.0.4-1.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.2.7-1.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.4.1-2.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.9.3-4.redhat_00004.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.6.0-1.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.1.0-4.redhat_00002.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.0.3-2.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.2.3-1.redhat_00002.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:6.0.0-8.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:4.0.6-1.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.0.1-2.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.1.0-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.4.0-2.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.3.1-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.0.1-2.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.7.0-2.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.4.0-2.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:5.0.8-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:4.0.2-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.0.0-3.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.0.1-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.0.0-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.6.2-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.1.19-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.2.3-2.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:16.1.0-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.1.6-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.5.5-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:10.1.1-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:5.0.31-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.1.0-3.Final_redhat_00002.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.1.0-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.5.0-1.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:8.0.0-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.3.2-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:5.0.0-4.SP3_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.0.0-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:5.1.0-2.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.1.0-2.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:7.3.8-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.0.0-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:5.0.0-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.8.16-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.0.0-3.redhat_00009.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
1:5.3.23-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.0.1-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.0.2-1.Final_redhat_00002.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.0.2-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.12.7-1.redhat_00002.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:0.9.6-2.redhat_00002.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:4.0.11-1.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.0.1-2.redhat_00002.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.9.0-3.redhat_00002.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.0.1-1.Final_redhat_3.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.23.1-2.redhat_00002.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:9.11.1-1.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:7.1.2-2.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.2.1-1.redhat_00002.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:4.1.132-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:0.1.10-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:9.37.3-1.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:9.7.1-3.redhat_00002.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:4.3.2-2.redhat_00002.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.1.7-3.redhat_00003.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.4.0-1.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.6.1-1.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:4.0.3-2.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:5.0.14-2.Final_redhat_00002.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.0.4-4.redhat_00005.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.1.12-1.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.2.21-5.redhat_00003.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.2.0-2.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:6.2.15-1.Final_redhat_00002.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.0.1-3.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.2.0-3.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.0.4-2.redhat_00002.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:8.0.0-6.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.0.17-1.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.3.0-1.redhat_00002.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:4.2.2-2.redhat_00003.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.1.0-3.redhat_00003.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.5.0-2.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:4.1.2-2.redhat_00003.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.3.24-4.SP3_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.2.9-1.SP1_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.1.6-3.redhat_1.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.3.0-7.redhat_00010.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:5.1.6-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:8.1.7-4.GA_redhat_00003.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.0.1-4.Final_redhat_00002.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:5.0.12-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.7.0-2.Final_redhat_00003.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.3.0-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.6.9-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.1.4-2.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.1.4-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:8.1.1-11.GA_redhat_00019.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.3.0-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.3.0-1.Final.redhat.00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.0.5-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:7.0.0-1.redhat_00002.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.3.0-2.redhat_00002.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.6.3-5.redhat_00008.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.0.4-1.redhat_00002.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.2.0-2.redhat_12.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.0.5-1.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.0.4-5.redhat_00007.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 8 |
Unaffected:
0:4.0.10-3.redhat_00001.1.el8eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el8 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 8 |
Unaffected:
0:2.0.4-1.Final_redhat_00001.1.el8eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el8 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 8 |
Unaffected:
0:801.7.0-1.GA_redhat_00001.1.el8eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el8 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 8 |
Unaffected:
0:6.6.50-1.Final_redhat_00001.1.el8eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el8 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 8 |
Unaffected:
0:7.3.8-1.Final_redhat_00001.1.el8eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el8 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 8 |
Unaffected:
1:5.3.23-1.Final_redhat_00001.1.el8eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el8 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 8 |
Unaffected:
0:2.3.24-4.SP3_redhat_00001.1.el8eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el8 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 8 |
Unaffected:
0:2.2.9-1.SP1_redhat_00001.1.el8eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el8 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 8 |
Unaffected:
0:8.1.7-4.GA_redhat_00003.1.el8eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el8 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 8 |
Unaffected:
0:2.6.9-1.Final_redhat_00001.1.el8eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el8 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 8 |
Unaffected:
0:8.1.1-11.GA_redhat_00019.1.el8eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el8 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 9 |
Unaffected:
0:4.0.10-3.redhat_00001.1.el9eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el9 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 9 |
Unaffected:
0:2.0.4-1.Final_redhat_00001.1.el9eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el9 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 9 |
Unaffected:
0:801.7.0-1.GA_redhat_00001.1.el9eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el9 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 9 |
Unaffected:
0:6.6.50-1.Final_redhat_00001.1.el9eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el9 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 9 |
Unaffected:
0:7.3.8-1.Final_redhat_00001.1.el9eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el9 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 9 |
Unaffected:
1:5.3.23-1.Final_redhat_00001.1.el9eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el9 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 9 |
Unaffected:
0:2.3.24-4.SP3_redhat_00001.1.el9eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el9 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 9 |
Unaffected:
0:2.2.9-1.SP1_redhat_00001.1.el9eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el9 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 9 |
Unaffected:
0:8.1.7-4.GA_redhat_00003.1.el9eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el9 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 9 |
Unaffected:
0:2.6.9-1.Final_redhat_00001.1.el9eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el9 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 9 |
Unaffected:
0:8.1.1-11.GA_redhat_00019.1.el9eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el9 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 7 |
cpe:/a:redhat:jboss_enterprise_application_platform:7 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8 |
cpe:/a:redhat:jboss_enterprise_application_platform:8 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform Expansion Pack |
cpe:/a:redhat:jbosseapxp |
|
| Red Hat | Red Hat Single Sign-On 7 |
cpe:/a:redhat:red_hat_single_sign_on:7 |
Date Public
2026-07-07 00:00
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2025-12799",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-07-09T13:34:16.067117Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-07-09T14:42:47.239Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el9"
],
"defaultStatus": "unaffected",
"packageName": "io.undertow.jastow-jastow",
"product": "Red Hat JBoss Enterprise Application Platform 8.1",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1-9.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-activemq-artemis",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.40.0-7.redhat_00015.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-activemq-artemis-native",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "1:2.0.0-2.redhat_00005.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-aesh-extensions",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.8.0-2.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-aesh-readline",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.4.0-1.redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-agroal",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.3.0-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-angus",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.0.5-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-angus-activation",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.0.3-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-antlr4",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:4.13.2-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-apache-commons-beanutils",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.11.0-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-apache-commons-cli",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.9.0-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-apache-commons-codec",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.17.2-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-apache-commons-collections",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.2.2-28.redhat_2.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-apache-commons-io",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.16.1-2.redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-apache-commons-lang",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.18.0-2.redhat_00003.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-apache-cxf",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:4.0.10-3.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-apache-cxf-xjc-utils",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:4.1.0-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-apache-mime4j",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:0.8.12-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-apache-sshd",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.14.0-4.redhat_00003.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-artemis-native",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "1:2.0.0-2.redhat_00005.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-artemis-wildfly-integration",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.0.4-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-asyncutil",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:0.1.0-2.redhat_00010.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-atinject",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.0.1-5.redhat_00007.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-aws-java-sdk",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.30.32-3.redhat_00003.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-azure-storage",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:8.6.6-5.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-bouncycastle",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.84.0-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-byte-buddy",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.14.18-2.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-caffeine",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.1.8-2.redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-commons-logging-jboss-logging",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.0.0-2.Final_redhat_1.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-cryptacular",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.2.5-2.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-eap-product-conf-parent",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:801.7.0-1.GA_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-ecj",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "1:3.33.0-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-eclipse-jgit",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:6.10.1.202505221210-1.r_redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-elasticsearch",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:8.15.4-4.redhat_00003.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-elytron-web",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:4.1.2-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-eventstream",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.0.1-3.redhat_00003.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-expressly",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:5.0.0-6.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-fastinfoset",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.1.1-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-fge-btf",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.2.0-4.redhat_00007.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-fge-msg-simple",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.1.0-4.redhat_00007.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-gnu-getopt",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.0.13-4.redhat_5.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-gson",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.10.1-2.redhat_00005.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-guava-failureaccess",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.0.3-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-guava-libraries",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:33.0.0-3.jre_redhat_00004.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-h2database",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.2.224-4.redhat_00003.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-hal-console",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.7.19-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-hibernate",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:6.6.50-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-hibernate-commons-annotations",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:7.0.3-3.Final_redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-hibernate-search",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:7.2.6-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-hibernate-validator",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:8.0.2-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-hornetq",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.4.11-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-hppc",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:0.10.0-2.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-httpcomponents-asyncclient",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:4.1.5-4.redhat_00006.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-httpcomponents-client",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:4.5.14-5.redhat_00016.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-httpcomponents-core",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:4.4.16-6.redhat_00011.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-infinispan",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:15.0.21-1.Final_redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-insights-java-client",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.1.3-2.redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-installation-manager-api",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.1.1-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-ironjacamar",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.0.18-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jackson-annotations",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.18.4-2.redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jackson-core",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.18.4-1.redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jackson-coreutils",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.8.0-3.redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jackson-databind",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.18.4-1.redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jackson-dataformats-text",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.18.4-2.redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jackson-jaxrs-providers",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.18.4-2.redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jackson-modules-base",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.18.4-2.redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jackson-modules-java8",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.18.4-2.redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jakarta-activation",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.1.4-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jakarta-annotation-api",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.1.1-5.redhat_00005.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jakarta-authentication-api",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.0.0-3.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jakarta-authorization-api",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.1.0-3.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jakarta-batch-api",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.1.1-3.redhat_00003.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jakarta-ejb-api",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:4.0.1-2.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jakarta-enterprise-concurrent",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.0.2-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jakarta-enterprise-concurrent-api",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.0.3-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jakarta-enterprise-lang-model",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:4.0.1-2.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jakarta-interceptor-api",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.1.0-5.redhat_00003.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jakarta-jms-api",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.1.0-4.redhat_00003.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jakarta-json",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.1.6-5.redhat_00003.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jakarta-json-api",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.1.3-1.redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jakarta-mail",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.1.3-3.redhat_00003.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jakarta-resource-api",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.1.0-2.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jakarta-security-enterprise-api",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.0.0-2.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jakarta-servlet-api",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:6.0.0-6.redhat_00007.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jakarta-servlet-jsp-api",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.1.1-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jakarta-servlet-jsp-jstl-api",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.0.2-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jakarta-transaction-api",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.0.1-3.redhat_00004.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jakarta-validation-api",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.0.2-3.redhat_00006.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jakarta-websocket",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.1.1-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jakarta-ws-rs-api",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.1.0-5.redhat_00003.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jakarta-xml-bind-api",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:4.0.4-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jandex",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.2.7-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jansi",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.4.1-2.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jasypt",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.9.3-4.redhat_00004.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-java-classmate",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.6.0-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-javaee-jpa-spec",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.1.0-4.redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-javaee-security-soteria",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.0.3-2.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-javaewah",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.2.3-1.redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-javapackages-tools",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:6.0.0-8.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jaxb",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:4.0.6-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jaxbintros",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.0.1-2.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jberet",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.1.0-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jboss-aesh",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.4.0-2.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jboss-cert-helper",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.1.3-2.redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jboss-classfilewriter",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.3.1-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jboss-common-beans",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.0.1-2.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jboss-dmr",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.7.0-2.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jboss-ejb3-ext-api",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.4.0-2.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jboss-ejb-client",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:5.0.8-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jboss-el-api_5.0_spec",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:4.0.2-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jboss-genericjms",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.0.0-3.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jboss-iiop-client",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.0.1-2.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jboss-invocation",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.0.1-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jboss-jakarta-xml-ws-api_4.0_spec",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.0.0-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jboss-logging",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.6.2-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jboss-logmanager",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.1.19-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jboss-marshalling",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.2.3-2.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jboss-metadata",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:16.1.0-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jboss-modules",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.1.6-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jboss-msc",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.5.5-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jboss-openjdk-orb",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:10.1.1-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jboss-remoting",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:5.0.31-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jboss-remoting-jmx",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.1.0-3.Final_redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jboss-saaj-api_3.0_spec",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.0.0-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jboss-stdio",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.1.0-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jboss-threads",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.5.0-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jboss-transaction-spi",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:8.0.0-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jboss-vfs",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.3.2-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jboss-weld-api",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:5.0.0-4.SP3_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jbossws-api",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.0.0-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jbossws-common",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:5.1.0-2.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jbossws-common-tools",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.1.0-2.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jbossws-cxf",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:7.3.8-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jbossws-jaxws-undertow-httpspi",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.0.0-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jbossws-spi",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:5.0.0-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jboss-xnio-base",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.8.16-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jcip-annotations",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.0.0-3.redhat_00009.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jctools",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:4.0.6-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jgroups",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "1:5.3.23-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jgroups-aws",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.0.1-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jgroups-azure",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.0.2-1.Final_redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jgroups-kubernetes",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.0.2-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-joda-time",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.12.7-1.redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jose4j",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:0.9.6-2.redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jsf-impl",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:4.0.11-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jsonb-spec",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.0.1-2.redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-json-patch",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.9.0-3.redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jul-to-slf4j-stub",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.0.1-1.Final_redhat_3.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-log4j",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.23.1-2.redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-log4j2-jboss-logmanager",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.0.1-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-lucene-solr",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:9.11.1-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-mod_cluster",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.1.0-2.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-narayana",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:7.1.2-2.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-neethi",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.2.1-1.redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-netty",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:4.1.132-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-netty-transport-native-epoll",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:4.1.132-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-netty-xnio-transport",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:0.1.10-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-nimbus-jose-jwt",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:9.37.3-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-objectweb-asm",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:9.7.1-3.redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-opensaml",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:4.3.2-2.redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-parsson",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.1.7-3.redhat_00003.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-pem-keystore",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.4.0-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-plexus-utils",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.6.1-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-protoparser",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:4.0.3-2.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-protostream",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:5.0.14-2.Final_redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-reactive-streams",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.0.4-4.redhat_00005.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-reactivex-rxjava",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.1.12-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-reactivex-rxjava2",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.2.21-5.redhat_00003.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-resilience4j",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.2.0-2.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-resteasy",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:6.2.15-1.Final_redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-resteasy-extensions",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.0.1-3.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-resteasy-spring",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.2.0-3.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-saaj-impl",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.0.4-2.redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-shibboleth-java-support",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:8.0.0-6.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-slf4j",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.0.17-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-slf4j-jboss-logmanager",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.0.2-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-snakeyaml",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.3.0-1.redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-stax2-api",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:4.2.2-2.redhat_00003.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-stax-ex",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.1.0-3.redhat_00003.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-staxmapper",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.5.0-2.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-sun-istack-commons",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:4.1.2-2.redhat_00003.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-undertow",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.3.24-4.SP3_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-undertow-jastow",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.2.9-1.SP1_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-vdx",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.1.6-3.redhat_1.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-velocity",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.3.0-7.redhat_00010.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-weld-core",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:5.1.6-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-wildfly",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:8.1.7-4.GA_redhat_00003.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-wildfly-client-config",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.0.1-4.Final_redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-wildfly-clustering",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:5.0.12-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-wildfly-common",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.7.0-2.Final_redhat_00003.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-wildfly-discovery",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.3.0-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-wildfly-elytron",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.6.9-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-wildfly-elytron-ee",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.1.4-2.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-wildfly-http-client",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.1.4-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-wildfly-javadocs",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:8.1.1-11.GA_redhat_00019.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-wildfly-naming-client",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.0.1-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-wildfly-openssl",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.3.0-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-wildfly-openssl-el10-x86_64",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.3.0-1.Final.redhat.00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-wildfly-transaction-client",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.0.5-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-woodstox-core",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:7.0.0-1.redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-ws-commons-XmlSchema",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.3.0-2.redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-wsdl4j",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.6.3-5.redhat_00008.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-wss4j",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.0.4-1.redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-xml-commons-resolver",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.2.0-2.redhat_12.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-xml-security",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.0.5-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-yasson",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.0.4-5.redhat_00007.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el8"
],
"defaultStatus": "affected",
"packageName": "eap8-apache-cxf",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 8",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:4.0.10-3.redhat_00001.1.el8eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el8"
],
"defaultStatus": "affected",
"packageName": "eap8-artemis-wildfly-integration",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 8",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.0.4-1.Final_redhat_00001.1.el8eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el8"
],
"defaultStatus": "affected",
"packageName": "eap8-eap-product-conf-parent",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 8",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:801.7.0-1.GA_redhat_00001.1.el8eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el8"
],
"defaultStatus": "affected",
"packageName": "eap8-hibernate",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 8",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:6.6.50-1.Final_redhat_00001.1.el8eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el8"
],
"defaultStatus": "affected",
"packageName": "eap8-jbossws-cxf",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 8",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:7.3.8-1.Final_redhat_00001.1.el8eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el8"
],
"defaultStatus": "affected",
"packageName": "eap8-jgroups",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 8",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "1:5.3.23-1.Final_redhat_00001.1.el8eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el8"
],
"defaultStatus": "affected",
"packageName": "eap8-undertow",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 8",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.3.24-4.SP3_redhat_00001.1.el8eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el8"
],
"defaultStatus": "affected",
"packageName": "eap8-undertow-jastow",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 8",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.2.9-1.SP1_redhat_00001.1.el8eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el8"
],
"defaultStatus": "affected",
"packageName": "eap8-wildfly",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 8",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:8.1.7-4.GA_redhat_00003.1.el8eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el8"
],
"defaultStatus": "affected",
"packageName": "eap8-wildfly-elytron",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 8",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.6.9-1.Final_redhat_00001.1.el8eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el8"
],
"defaultStatus": "affected",
"packageName": "eap8-wildfly-javadocs",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 8",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:8.1.1-11.GA_redhat_00019.1.el8eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el9"
],
"defaultStatus": "affected",
"packageName": "eap8-apache-cxf",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:4.0.10-3.redhat_00001.1.el9eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el9"
],
"defaultStatus": "affected",
"packageName": "eap8-artemis-wildfly-integration",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.0.4-1.Final_redhat_00001.1.el9eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el9"
],
"defaultStatus": "affected",
"packageName": "eap8-eap-product-conf-parent",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:801.7.0-1.GA_redhat_00001.1.el9eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el9"
],
"defaultStatus": "affected",
"packageName": "eap8-hibernate",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:6.6.50-1.Final_redhat_00001.1.el9eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el9"
],
"defaultStatus": "affected",
"packageName": "eap8-jbossws-cxf",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:7.3.8-1.Final_redhat_00001.1.el9eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el9"
],
"defaultStatus": "affected",
"packageName": "eap8-jgroups",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "1:5.3.23-1.Final_redhat_00001.1.el9eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el9"
],
"defaultStatus": "affected",
"packageName": "eap8-undertow",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.3.24-4.SP3_redhat_00001.1.el9eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el9"
],
"defaultStatus": "affected",
"packageName": "eap8-undertow-jastow",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.2.9-1.SP1_redhat_00001.1.el9eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el9"
],
"defaultStatus": "affected",
"packageName": "eap8-wildfly",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:8.1.7-4.GA_redhat_00003.1.el9eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el9"
],
"defaultStatus": "affected",
"packageName": "eap8-wildfly-elytron",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.6.9-1.Final_redhat_00001.1.el9eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el9"
],
"defaultStatus": "affected",
"packageName": "eap8-wildfly-javadocs",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:8.1.1-11.GA_redhat_00019.1.el9eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:7"
],
"defaultStatus": "affected",
"packageName": "eap74-els-openjdk11-openshift-rhel8/eap74-els-openjdk11-openshift-rhel8",
"product": "Red Hat JBoss Enterprise Application Platform 7",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:7"
],
"defaultStatus": "affected",
"packageName": "eap74-els-openjdk17-openshift-rhel8/eap74-els-openjdk17-openshift-rhel8",
"product": "Red Hat JBoss Enterprise Application Platform 7",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:7"
],
"defaultStatus": "affected",
"packageName": "eap74-els-openjdk8-openshift-rhel8/eap74-els-openjdk8-openshift-rhel8",
"product": "Red Hat JBoss Enterprise Application Platform 7",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:7"
],
"defaultStatus": "affected",
"packageName": "io.undertow.jastow-jastow",
"product": "Red Hat JBoss Enterprise Application Platform 7",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:7"
],
"defaultStatus": "affected",
"packageName": "jastow",
"product": "Red Hat JBoss Enterprise Application Platform 7",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:7"
],
"defaultStatus": "affected",
"packageName": "jboss-eap-7/eap74-els-openjdk17-openshift-rhel8",
"product": "Red Hat JBoss Enterprise Application Platform 7",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:7"
],
"defaultStatus": "affected",
"packageName": "jboss-eap-7/eap74-els-openjdk8-openshift-rhel8",
"product": "Red Hat JBoss Enterprise Application Platform 7",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8"
],
"defaultStatus": "affected",
"packageName": "jastow",
"product": "Red Hat JBoss Enterprise Application Platform 8",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html",
"cpes": [
"cpe:/a:redhat:jbosseapxp"
],
"defaultStatus": "unaffected",
"packageName": "io.undertow.jastow-jastow",
"product": "Red Hat JBoss Enterprise Application Platform Expansion Pack",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html",
"cpes": [
"cpe:/a:redhat:jbosseapxp"
],
"defaultStatus": "affected",
"packageName": "jastow",
"product": "Red Hat JBoss Enterprise Application Platform Expansion Pack",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:red_hat_single_sign_on:7"
],
"defaultStatus": "affected",
"packageName": "jastow",
"product": "Red Hat Single Sign-On 7",
"vendor": "Red Hat"
}
],
"datePublic": "2026-07-07T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "A flaw was found in Jastow. Jastow is vulnerable to Cross-Site Scripting (XSS) attack. If using a set of combined configuration to allow unescaped characters in URL with embedded Undertow and Jastow, a server might be vulnerable to improper input handling."
}
],
"metrics": [
{
"other": {
"content": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"value": "Moderate"
},
"type": "Red Hat severity rating"
}
},
{
"cvssV3_1": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:H/A:N",
"version": "3.1"
},
"format": "CVSS"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-79",
"description": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-07-08T00:00:08.461Z",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"name": "RHSA-2026:36342",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:36342"
},
{
"name": "RHSA-2026:36343",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:36343"
},
{
"name": "RHSA-2026:36344",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:36344"
},
{
"name": "RHSA-2026:36345",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:36345"
},
{
"tags": [
"vdb-entry",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/security/cve/CVE-2025-12799"
},
{
"name": "RHBZ#2413071",
"tags": [
"issue-tracking",
"x_refsource_REDHAT"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2413071"
}
],
"timeline": [
{
"lang": "en",
"time": "2025-11-06T11:09:24.742Z",
"value": "Reported to Red Hat."
},
{
"lang": "en",
"time": "2026-07-07T00:00:00.000Z",
"value": "Made public."
}
],
"title": "Jastow: jastow cross-site scripting attack due to unsanitized uri",
"workarounds": [
{
"lang": "en",
"value": "It is possible to contruct successful attack vector if and only if customer or client is using embedded Undertow and Jastow together in their application and the following conditions are met:\n * Undertow was configured with UndertowOptions.ALLOW_UNESCAPED_CHARACTERS_IN_URL set to \u0027true\u0027 value\n * DeploymentInfo configured with setEscapeErrorMessage(true) method was passed to Undertow\u0027s Servlet Container instance"
}
],
"x_generator": {
"engine": "cvelib 1.8.0"
},
"x_redhatCweChain": "CWE-79: Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2025-12799",
"datePublished": "2026-07-07T16:18:57.555Z",
"dateReserved": "2025-11-06T11:15:12.378Z",
"dateUpdated": "2026-07-09T14:42:47.239Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
CVE-2026-14969 (GCVE-0-2026-14969)
Vulnerability from nvd – Published: 2026-07-07 15:48 – Updated: 2026-07-07 16:11
VLAI
EPSS
VEX
Title
389-ds-base: 389-ds-base: static initialization vector in aes-cbc/3des-cbc attribute encryption
Summary
A flaw was found in 389-ds-base where the LDBM backend attribute encryption uses a hardcoded static initialization vector for AES-CBC and 3DES-CBC operations, allowing an attacker with privileged filesystem access to detect plaintext equality across encrypted entries by comparing ciphertext blocks.
Severity
4.4 (Medium)
SSVC
Exploitation: none
Automatable: no
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
- CWE-329 - Generation of Predictable IV with CBC Mode
Assigner
References
2 references
| URL | Tags |
|---|---|
| https://access.redhat.com/security/cve/CVE-2026-14969 | vdb-entryx_refsource_REDHAT |
| https://bugzilla.redhat.com/show_bug.cgi?id=2497735 | issue-trackingx_refsource_REDHAT |
Impacted products
8 products
| Vendor | Product | Version | |
|---|---|---|---|
| Red Hat | Red Hat Directory Server 11 |
cpe:/a:redhat:directory_server:11 |
|
| Red Hat | Red Hat Directory Server 12 |
cpe:/a:redhat:directory_server:12 |
|
| Red Hat | Red Hat Directory Server 13 |
cpe:/a:redhat:directory_server:13 |
|
| Red Hat | Red Hat Enterprise Linux 10 |
cpe:/o:redhat:enterprise_linux:10 |
|
| Red Hat | Red Hat Enterprise Linux 6 |
cpe:/o:redhat:enterprise_linux:6 |
|
| Red Hat | Red Hat Enterprise Linux 7 |
cpe:/o:redhat:enterprise_linux:7 |
|
| Red Hat | Red Hat Enterprise Linux 8 |
cpe:/o:redhat:enterprise_linux:8 |
|
| Red Hat | Red Hat Enterprise Linux 9 |
cpe:/o:redhat:enterprise_linux:9 |
Date Public
2026-07-07 15:32
Credits
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-14969",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-07-07T16:11:32.041523Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-07-07T16:11:40.145Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:directory_server:11"
],
"defaultStatus": "affected",
"packageName": "redhat-ds:11/389-ds-base",
"product": "Red Hat Directory Server 11",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:directory_server:12"
],
"defaultStatus": "affected",
"packageName": "redhat-ds:12/389-ds-base",
"product": "Red Hat Directory Server 12",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:directory_server:13"
],
"defaultStatus": "affected",
"packageName": "389-ds-base",
"product": "Red Hat Directory Server 13",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:10"
],
"defaultStatus": "affected",
"packageName": "389-ds-base",
"product": "Red Hat Enterprise Linux 10",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:6"
],
"defaultStatus": "unknown",
"packageName": "389-ds-base",
"product": "Red Hat Enterprise Linux 6",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:7"
],
"defaultStatus": "affected",
"packageName": "389-ds-base",
"product": "Red Hat Enterprise Linux 7",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:8"
],
"defaultStatus": "affected",
"packageName": "389-ds:1.4/389-ds-base",
"product": "Red Hat Enterprise Linux 8",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:9"
],
"defaultStatus": "affected",
"packageName": "389-ds-base",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat"
}
],
"credits": [
{
"lang": "en",
"value": "Red Hat would like to thank Andrew Rukin (Arenadata) for reporting this issue."
}
],
"datePublic": "2026-07-07T15:32:28.365Z",
"descriptions": [
{
"lang": "en",
"value": "A flaw was found in 389-ds-base where the LDBM backend attribute encryption uses a hardcoded static initialization vector for AES-CBC and 3DES-CBC operations, allowing an attacker with privileged filesystem access to detect plaintext equality across encrypted entries by comparing ciphertext blocks."
}
],
"metrics": [
{
"other": {
"content": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"value": "Moderate"
},
"type": "Red Hat severity rating"
}
},
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"format": "CVSS"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-329",
"description": "Generation of Predictable IV with CBC Mode",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-07-07T15:48:04.478Z",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"tags": [
"vdb-entry",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/security/cve/CVE-2026-14969"
},
{
"name": "RHBZ#2497735",
"tags": [
"issue-tracking",
"x_refsource_REDHAT"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2497735"
}
],
"timeline": [
{
"lang": "en",
"time": "2026-07-07T14:53:34.580Z",
"value": "Reported to Red Hat."
},
{
"lang": "en",
"time": "2026-07-07T15:32:28.365Z",
"value": "Made public."
}
],
"title": "389-ds-base: 389-ds-base: static initialization vector in aes-cbc/3des-cbc attribute encryption",
"workarounds": [
{
"lang": "en",
"value": "Disable attribute encryption if it is not required for the deployment. If attribute encryption is required, restrict filesystem access to the LDBM database directory (/var/lib/dirsrv/slapd-\u003cinstance\u003e/db/) to ensure only authorized administrators can read database files."
}
],
"x_generator": {
"engine": "cvelib 1.8.0"
},
"x_redhatCweChain": "CWE-329: Generation of Predictable IV with CBC Mode"
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2026-14969",
"datePublished": "2026-07-07T15:48:04.478Z",
"dateReserved": "2026-07-07T15:32:40.440Z",
"dateUpdated": "2026-07-07T16:11:40.145Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
CVE-2026-14935 (GCVE-0-2026-14935)
Vulnerability from nvd – Published: 2026-07-07 15:37 – Updated: 2026-07-07 16:13
VLAI
EPSS
VEX
Title
Gstreamer: gstreamer: webrtcbin accepts remote sdp without a=fingerprint due to inverted presence check
Summary
A logic vulnerability was found in GStreamer's webrtcbin component. The _check_sdp_crypto() function contains an inverted boolean condition that causes it to accept remote SDP offers or answers that lack the required a=fingerprint attribute, while incorrectly rejecting those that include it. An attacker with the ability to intercept and modify WebRTC signaling messages could exploit this to bypass the SDP-level DTLS certificate fingerprint binding, weakening defenses against man-in-the-middle attacks on media streams.
Severity
SSVC
Exploitation: none
Automatable: no
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
- CWE-670 - Always-Incorrect Control Flow Implementation
Assigner
References
4 references
| URL | Tags |
|---|---|
| https://access.redhat.com/security/cve/CVE-2026-14935 | vdb-entryx_refsource_REDHAT |
| https://bugzilla.redhat.com/show_bug.cgi?id=2497679 | issue-trackingx_refsource_REDHAT |
| https://gitlab.freedesktop.org/gstreamer/gstreame… | |
| https://gitlab.freedesktop.org/gstreamer/gstreame… |
Impacted products
5 products
| Vendor | Product | Version | |
|---|---|---|---|
| Red Hat | Red Hat Enterprise Linux 10 |
cpe:/o:redhat:enterprise_linux:10 |
|
| Red Hat | Red Hat Enterprise Linux 6 |
cpe:/o:redhat:enterprise_linux:6 |
|
| Red Hat | Red Hat Enterprise Linux 7 |
cpe:/o:redhat:enterprise_linux:7 |
|
| Red Hat | Red Hat Enterprise Linux 8 |
cpe:/o:redhat:enterprise_linux:8 |
|
| Red Hat | Red Hat Enterprise Linux 9 |
cpe:/o:redhat:enterprise_linux:9 |
Date Public
2026-07-07 15:25
Credits
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-14935",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-07-07T16:13:21.634704Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-07-07T16:13:27.854Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:10"
],
"defaultStatus": "affected",
"packageName": "gstreamer1-plugins-bad-free",
"product": "Red Hat Enterprise Linux 10",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:6"
],
"defaultStatus": "affected",
"packageName": "gstreamer-plugins-bad-free",
"product": "Red Hat Enterprise Linux 6",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:7"
],
"defaultStatus": "affected",
"packageName": "gstreamer1-plugins-bad-free",
"product": "Red Hat Enterprise Linux 7",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:7"
],
"defaultStatus": "affected",
"packageName": "gstreamer-plugins-bad-free",
"product": "Red Hat Enterprise Linux 7",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:8"
],
"defaultStatus": "affected",
"packageName": "gstreamer1-plugins-bad-free",
"product": "Red Hat Enterprise Linux 8",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:9"
],
"defaultStatus": "affected",
"packageName": "gstreamer1-plugins-bad-free",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat"
}
],
"credits": [
{
"lang": "en",
"value": "Red Hat would like to thank Clouditera Security (Clouditera), NSFOCUS (NSFOCUS), and Z.ai Security (Z.ai) for reporting this issue."
}
],
"datePublic": "2026-07-07T15:25:24.763Z",
"descriptions": [
{
"lang": "en",
"value": "A logic vulnerability was found in GStreamer\u0027s webrtcbin component. The _check_sdp_crypto() function contains an inverted boolean condition that causes it to accept remote SDP offers or answers that lack the required a=fingerprint attribute, while incorrectly rejecting those that include it. An attacker with the ability to intercept and modify WebRTC signaling messages could exploit this to bypass the SDP-level DTLS certificate fingerprint binding, weakening defenses against man-in-the-middle attacks on media streams."
}
],
"metrics": [
{
"other": {
"content": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"value": "Low"
},
"type": "Red Hat severity rating"
}
},
{
"cvssV3_1": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 3.7,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"format": "CVSS"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-670",
"description": "Always-Incorrect Control Flow Implementation",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-07-07T15:37:58.898Z",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"tags": [
"vdb-entry",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/security/cve/CVE-2026-14935"
},
{
"name": "RHBZ#2497679",
"tags": [
"issue-tracking",
"x_refsource_REDHAT"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2497679"
},
{
"url": "https://gitlab.freedesktop.org/gstreamer/gstreamer-security/-/merge_requests/98"
},
{
"url": "https://gitlab.freedesktop.org/gstreamer/gstreamer/-/work_items/5171"
}
],
"timeline": [
{
"lang": "en",
"time": "2026-07-07T00:00:00.000Z",
"value": "Reported to Red Hat."
},
{
"lang": "en",
"time": "2026-07-07T15:25:24.763Z",
"value": "Made public."
}
],
"title": "Gstreamer: gstreamer: webrtcbin accepts remote sdp without a=fingerprint due to inverted presence check",
"workarounds": [
{
"lang": "en",
"value": "There is no complete mitigation for this vulnerability. The following measures can reduce risk:\n\n1. Ensure WebRTC signaling channels use TLS encryption to prevent SDP modification in transit.\n2. If WebRTC functionality is not required, remove the webrtcbin plugin shared object from the GStreamer plugins directory (typically /usr/lib64/gstreamer-1.0/libgstwebrtc.so)."
}
],
"x_generator": {
"engine": "cvelib 1.8.0"
},
"x_redhatCweChain": "CWE-670: Always-Incorrect Control Flow Implementation"
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2026-14935",
"datePublished": "2026-07-07T15:37:58.898Z",
"dateReserved": "2026-07-07T11:25:35.489Z",
"dateUpdated": "2026-07-07T16:13:27.854Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
CVE-2026-14940 (GCVE-0-2026-14940)
Vulnerability from nvd – Published: 2026-07-07 13:54 – Updated: 2026-07-07 15:35
VLAI
EPSS
VEX
Title
389-ds-base: 389-ds-base: heap-buffer-overflow in dn normalization via quoted multivalued rdn
Summary
A heap-buffer-overflow flaw was found in 389 Directory Server (389-ds-base). When
normalizing a Distinguished Name (DN) that contains a legacy-quoted value encoding a
multivalued nested Relative Distinguished Name (RDN), the server can write past the
end of a heap allocation while sorting RDN attribute-value pairs. An unauthenticated
remote attacker can trigger this condition by sending an LDAP operation whose DN
reaches the DN normalization routine, such as a search with a crafted base DN. This
can corrupt heap memory and may cause denial of service.
Severity
5.3 (Medium)
SSVC
Exploitation: none
Automatable: yes
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
- CWE-122 - Heap-based Buffer Overflow
Assigner
References
2 references
| URL | Tags |
|---|---|
| https://access.redhat.com/security/cve/CVE-2026-14940 | vdb-entryx_refsource_REDHAT |
| https://bugzilla.redhat.com/show_bug.cgi?id=2497697 | issue-trackingx_refsource_REDHAT |
Impacted products
8 products
| Vendor | Product | Version | |
|---|---|---|---|
| Red Hat | Red Hat Directory Server 11 |
cpe:/a:redhat:directory_server:11 |
|
| Red Hat | Red Hat Directory Server 12 |
cpe:/a:redhat:directory_server:12 |
|
| Red Hat | Red Hat Directory Server 13 |
cpe:/a:redhat:directory_server:13 |
|
| Red Hat | Red Hat Enterprise Linux 10 |
cpe:/o:redhat:enterprise_linux:10 |
|
| Red Hat | Red Hat Enterprise Linux 6 |
cpe:/o:redhat:enterprise_linux:6 |
|
| Red Hat | Red Hat Enterprise Linux 7 |
cpe:/o:redhat:enterprise_linux:7 |
|
| Red Hat | Red Hat Enterprise Linux 8 |
cpe:/o:redhat:enterprise_linux:8 |
|
| Red Hat | Red Hat Enterprise Linux 9 |
cpe:/o:redhat:enterprise_linux:9 |
Date Public
2026-07-07 12:01
Credits
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-14940",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "yes"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-07-07T15:35:34.392277Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-07-07T15:35:45.502Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:directory_server:11"
],
"defaultStatus": "affected",
"packageName": "redhat-ds:11/389-ds-base",
"product": "Red Hat Directory Server 11",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:directory_server:12"
],
"defaultStatus": "affected",
"packageName": "redhat-ds:12/389-ds-base",
"product": "Red Hat Directory Server 12",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:directory_server:13"
],
"defaultStatus": "affected",
"packageName": "389-ds-base",
"product": "Red Hat Directory Server 13",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:10"
],
"defaultStatus": "affected",
"packageName": "389-ds-base",
"product": "Red Hat Enterprise Linux 10",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:6"
],
"defaultStatus": "unknown",
"packageName": "389-ds-base",
"product": "Red Hat Enterprise Linux 6",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:7"
],
"defaultStatus": "affected",
"packageName": "389-ds-base",
"product": "Red Hat Enterprise Linux 7",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:8"
],
"defaultStatus": "affected",
"packageName": "389-ds:1.4/389-ds-base",
"product": "Red Hat Enterprise Linux 8",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:9"
],
"defaultStatus": "affected",
"packageName": "389-ds-base",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat"
}
],
"credits": [
{
"lang": "en",
"value": "Red Hat would like to thank Denis Rastyogin (ALT Linux) for reporting this issue."
}
],
"datePublic": "2026-07-07T12:01:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "A heap-buffer-overflow flaw was found in 389 Directory Server (389-ds-base). When\nnormalizing a Distinguished Name (DN) that contains a legacy-quoted value encoding a\nmultivalued nested Relative Distinguished Name (RDN), the server can write past the\nend of a heap allocation while sorting RDN attribute-value pairs. An unauthenticated\nremote attacker can trigger this condition by sending an LDAP operation whose DN\nreaches the DN normalization routine, such as a search with a crafted base DN. This\ncan corrupt heap memory and may cause denial of service."
}
],
"metrics": [
{
"other": {
"content": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"value": "Moderate"
},
"type": "Red Hat severity rating"
}
},
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"format": "CVSS"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-122",
"description": "Heap-based Buffer Overflow",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-07-07T13:54:20.688Z",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"tags": [
"vdb-entry",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/security/cve/CVE-2026-14940"
},
{
"name": "RHBZ#2497697",
"tags": [
"issue-tracking",
"x_refsource_REDHAT"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2497697"
}
],
"timeline": [
{
"lang": "en",
"time": "2026-06-02T00:00:00.000Z",
"value": "Reported to Red Hat."
},
{
"lang": "en",
"time": "2026-07-07T12:01:00.000Z",
"value": "Made public."
}
],
"title": "389-ds-base: 389-ds-base: heap-buffer-overflow in dn normalization via quoted multivalued rdn",
"workarounds": [
{
"lang": "en",
"value": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability."
}
],
"x_generator": {
"engine": "cvelib 1.8.0"
},
"x_redhatCweChain": "CWE-122: Heap-based Buffer Overflow"
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2026-14940",
"datePublished": "2026-07-07T13:54:20.688Z",
"dateReserved": "2026-07-07T12:01:04.779Z",
"dateUpdated": "2026-07-07T15:35:45.502Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
CVE-2026-14476 (GCVE-0-2026-14476)
Vulnerability from nvd – Published: 2026-07-07 09:12 – Updated: 2026-07-07 14:34
VLAI
EPSS
VEX
Title
Sssd: sssd: gpo cache path traversal via unsanitized gpcfilesyspath allows kerberos authentication bypass
Summary
A path traversal flaw was found in SSSD's AD GPO provider. The ad_gpo_extract_smb_components() function does not sanitize .. sequences in the gPCFileSysPath LDAP attribute, allowing an attacker with AD GPO management access to write files outside the GPO cache directory as root. On default RHEL configurations with SELinux enforcing, this can be used to inject Kerberos configuration leading to authentication bypass.
Severity
SSVC
Exploitation: none
Automatable: no
Technical Impact: total
CISA Coordinator (v2.0.3)
CWE
- CWE-23 - Relative Path Traversal
Assigner
References
2 references
| URL | Tags |
|---|---|
| https://access.redhat.com/security/cve/CVE-2026-14476 | vdb-entryx_refsource_REDHAT |
| https://bugzilla.redhat.com/show_bug.cgi?id=2496581 | issue-trackingx_refsource_REDHAT |
Impacted products
6 products
| Vendor | Product | Version | |
|---|---|---|---|
| Red Hat | Red Hat Enterprise Linux 10 |
cpe:/o:redhat:enterprise_linux:10 |
|
| Red Hat | Red Hat Enterprise Linux 6 |
cpe:/o:redhat:enterprise_linux:6 |
|
| Red Hat | Red Hat Enterprise Linux 7 |
cpe:/o:redhat:enterprise_linux:7 |
|
| Red Hat | Red Hat Enterprise Linux 8 |
cpe:/o:redhat:enterprise_linux:8 |
|
| Red Hat | Red Hat Enterprise Linux 9 |
cpe:/o:redhat:enterprise_linux:9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4 |
cpe:/a:redhat:openshift:4 |
Date Public
2026-07-07 09:00
Credits
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-14476",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-07-07T14:34:29.054689Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-07-07T14:34:38.153Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:10"
],
"defaultStatus": "affected",
"packageName": "sssd",
"product": "Red Hat Enterprise Linux 10",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:6"
],
"defaultStatus": "unknown",
"packageName": "sssd",
"product": "Red Hat Enterprise Linux 6",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:7"
],
"defaultStatus": "affected",
"packageName": "sssd",
"product": "Red Hat Enterprise Linux 7",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:8"
],
"defaultStatus": "affected",
"packageName": "sssd",
"product": "Red Hat Enterprise Linux 8",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:9"
],
"defaultStatus": "affected",
"packageName": "sssd",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4"
],
"defaultStatus": "affected",
"packageName": "rhcos",
"product": "Red Hat OpenShift Container Platform 4",
"vendor": "Red Hat"
}
],
"credits": [
{
"lang": "en",
"value": "This issue was discovered by Ian Murphy (Red Hat)."
}
],
"datePublic": "2026-07-07T09:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "A path traversal flaw was found in SSSD\u0027s AD GPO provider. The ad_gpo_extract_smb_components() function does not sanitize .. sequences in the gPCFileSysPath LDAP attribute, allowing an attacker with AD GPO management access to write files outside the GPO cache directory as root. On default RHEL configurations with SELinux enforcing, this can be used to inject Kerberos configuration leading to authentication bypass."
}
],
"metrics": [
{
"other": {
"content": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"value": "Moderate"
},
"type": "Red Hat severity rating"
}
},
{
"cvssV3_1": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"format": "CVSS"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-23",
"description": "Relative Path Traversal",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-07-07T11:09:17.309Z",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"tags": [
"vdb-entry",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/security/cve/CVE-2026-14476"
},
{
"name": "RHBZ#2496581",
"tags": [
"issue-tracking",
"x_refsource_REDHAT"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2496581"
}
],
"timeline": [
{
"lang": "en",
"time": "2026-04-28T00:00:00.000Z",
"value": "Reported to Red Hat."
},
{
"lang": "en",
"time": "2026-07-07T09:00:00.000Z",
"value": "Made public."
}
],
"title": "Sssd: sssd: gpo cache path traversal via unsanitized gpcfilesyspath allows kerberos authentication bypass",
"workarounds": [
{
"lang": "en",
"value": "Set ad_gpo_access_control = disabled in /etc/sssd/sssd.conf to disable GPO fetching entirely. Note that this removes GPO-based login policy enforcement."
}
],
"x_generator": {
"engine": "cvelib 1.8.0"
},
"x_redhatCweChain": "CWE-23: Relative Path Traversal"
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2026-14476",
"datePublished": "2026-07-07T09:12:52.180Z",
"dateReserved": "2026-07-02T15:18:56.861Z",
"dateUpdated": "2026-07-07T14:34:38.153Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
CVE-2026-14474 (GCVE-0-2026-14474)
Vulnerability from nvd – Published: 2026-07-07 09:12 – Updated: 2026-07-07 13:42
VLAI
EPSS
VEX
Title
Sssd: sssd: sudo ldap provider searches entire directory tree for sudorole objects by default, enabling privilege escalation
Summary
A flaw was found in SSSD's LDAP sudo provider. When the ldap_sudo_search_base option is not explicitly configured, SSSD searches the entire LDAP directory tree for sudoRole objects. An authenticated attacker with write access to any subtree can inject a sudoRole object granting root-level sudo privileges on all SSSD-enrolled hosts.
Severity
8.8 (High)
SSVC
Exploitation: none
Automatable: no
Technical Impact: total
CISA Coordinator (v2.0.3)
CWE
- CWE-1188 - Initialization of a Resource with an Insecure Default
Assigner
References
2 references
| URL | Tags |
|---|---|
| https://access.redhat.com/security/cve/CVE-2026-14474 | vdb-entryx_refsource_REDHAT |
| https://bugzilla.redhat.com/show_bug.cgi?id=2496556 | issue-trackingx_refsource_REDHAT |
Impacted products
6 products
| Vendor | Product | Version | |
|---|---|---|---|
| Red Hat | Red Hat Enterprise Linux 10 |
cpe:/o:redhat:enterprise_linux:10 |
|
| Red Hat | Red Hat Enterprise Linux 6 |
cpe:/o:redhat:enterprise_linux:6 |
|
| Red Hat | Red Hat Enterprise Linux 7 |
cpe:/o:redhat:enterprise_linux:7 |
|
| Red Hat | Red Hat Enterprise Linux 8 |
cpe:/o:redhat:enterprise_linux:8 |
|
| Red Hat | Red Hat Enterprise Linux 9 |
cpe:/o:redhat:enterprise_linux:9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4 |
cpe:/a:redhat:openshift:4 |
Date Public
2026-07-07 09:00
Credits
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-14474",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-07-07T13:41:44.076680Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-07-07T13:42:01.577Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:10"
],
"defaultStatus": "affected",
"packageName": "sssd",
"product": "Red Hat Enterprise Linux 10",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:6"
],
"defaultStatus": "unknown",
"packageName": "sssd",
"product": "Red Hat Enterprise Linux 6",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:7"
],
"defaultStatus": "affected",
"packageName": "sssd",
"product": "Red Hat Enterprise Linux 7",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:8"
],
"defaultStatus": "affected",
"packageName": "sssd",
"product": "Red Hat Enterprise Linux 8",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:9"
],
"defaultStatus": "affected",
"packageName": "sssd",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4"
],
"defaultStatus": "affected",
"packageName": "rhcos",
"product": "Red Hat OpenShift Container Platform 4",
"vendor": "Red Hat"
}
],
"credits": [
{
"lang": "en",
"value": "This issue was discovered by Ian Murphy (Red Hat)."
}
],
"datePublic": "2026-07-07T09:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "A flaw was found in SSSD\u0027s LDAP sudo provider. When the ldap_sudo_search_base option is not explicitly configured, SSSD searches the entire LDAP directory tree for sudoRole objects. An authenticated attacker with write access to any subtree can inject a sudoRole object granting root-level sudo privileges on all SSSD-enrolled hosts."
}
],
"metrics": [
{
"other": {
"content": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"value": "Important"
},
"type": "Red Hat severity rating"
}
},
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"format": "CVSS"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-1188",
"description": "Initialization of a Resource with an Insecure Default",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-07-07T09:12:33.200Z",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"tags": [
"vdb-entry",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/security/cve/CVE-2026-14474"
},
{
"name": "RHBZ#2496556",
"tags": [
"issue-tracking",
"x_refsource_REDHAT"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2496556"
}
],
"timeline": [
{
"lang": "en",
"time": "2026-04-28T00:00:00.000Z",
"value": "Reported to Red Hat."
},
{
"lang": "en",
"time": "2026-07-07T09:00:00.000Z",
"value": "Made public."
}
],
"title": "Sssd: sssd: sudo ldap provider searches entire directory tree for sudorole objects by default, enabling privilege escalation",
"workarounds": [
{
"lang": "en",
"value": "Set ldap_sudo_search_base explicitly in /etc/sssd/sssd.conf to restrict the search to the designated sudoers container:\n\n[domain/example.com] ldap_sudo_search_base = ou=sudoers,dc=example,dc=com\n\nAdditionally, restrict LDAP ACLs to prevent non-admin principals from creating sudoRole objects outside the designated sudoers container."
}
],
"x_generator": {
"engine": "cvelib 1.8.0"
},
"x_redhatCweChain": "CWE-1188: Initialization of a Resource with an Insecure Default"
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2026-14474",
"datePublished": "2026-07-07T09:12:33.200Z",
"dateReserved": "2026-07-02T14:49:31.316Z",
"dateUpdated": "2026-07-07T13:42:01.577Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
CVE-2026-11610 (GCVE-0-2026-11610)
Vulnerability from nvd – Published: 2026-07-07 09:17 – Updated: 2026-07-08 21:02
VLAI
EPSS
VEX
Title
389-ds-base: 389-ds-base: heap buffer overflow in sasl_io_recv() via padded sasl unbind
Summary
A heap buffer overflow flaw was found in the SASL I/O layer of 389 Directory Server
(389-ds-base). After a successful SASL bind with integrity protection (SSF > 0),
an authenticated attacker can send a specially crafted oversized LDAP UNBIND packet
that is copied into a 512-byte heap receive buffer without a bounds check in
sasl_io_recv() in sasl_io.c. This allows up to approximately 2 megabytes of
attacker-controlled data to overflow the buffer, causing a denial of service (server
crash). In FreeIPA and Red Hat Identity Management deployments, any domain user with
a valid Kerberos ticket, any enrolled host, or any service account can trigger this
vulnerability over the network after authenticating via GSSAPI.
The vulnerable code path has existed since approximately 2013 (389-ds-base 1.3.2) and
was not addressed by the CVE-2025-14905 fix, which patched a separate heap overflow
in schema.c only.
Severity
8.8 (High)
SSVC
Exploitation: none
Automatable: no
Technical Impact: total
CISA Coordinator (v2.0.3)
CWE
- CWE-122 - Heap-based Buffer Overflow
Assigner
References
19 references
Impacted products
24 products
| Vendor | Product | Version | |
|---|---|---|---|
| 389ds | 389-ds-base |
Affected:
1.3.2 , ≤ 3.3.0
(semver)
|
|
| Red Hat | Red Hat Directory Server 11.5 E4S for RHEL 8 |
Unaffected:
8060020260702180044.0ca98e7e , < *
(rpm)
cpe:/a:redhat:directory_server_e4s:11.5::el8 |
|
| Red Hat | Red Hat Directory Server 11.7 E4S for RHEL 8 |
Unaffected:
8080020260702180836.f969626e , < *
(rpm)
cpe:/a:redhat:directory_server_e4s:11.7::el8 |
|
| Red Hat | Red Hat Directory Server 11.9 for RHEL 8 |
Unaffected:
8100020260702145313.37ed7c03 , < *
(rpm)
cpe:/a:redhat:directory_server:11.9::el8 |
|
| Red Hat | Red Hat Directory Server 12.2 E4S for RHEL 9 |
Unaffected:
9020020260703060155.1674d574 , < *
(rpm)
cpe:/a:redhat:directory_server_e4s:12.2::el9 |
|
| Red Hat | Red Hat Directory Server 12.4 E4S for RHEL 9 |
Unaffected:
9040020260703055735.1674d574 , < *
(rpm)
cpe:/a:redhat:directory_server_e4s:12.4::el9 |
|
| Red Hat | Red Hat Enterprise Linux 10 |
Unaffected:
0:3.2.0-8.el10_2 , < *
(rpm)
cpe:/o:redhat:enterprise_linux:10.2 |
|
| Red Hat | Red Hat Enterprise Linux 10.0 Extended Update Support |
Unaffected:
0:3.0.6-19.el10_0 , < *
(rpm)
cpe:/o:redhat:enterprise_linux_eus:10.0 |
|
| Red Hat | Red Hat Enterprise Linux 7 Extended Lifecycle Support |
Unaffected:
0:1.3.11.1-13.el7_9 , < *
(rpm)
cpe:/o:redhat:rhel_els:7 |
|
| Red Hat | Red Hat Enterprise Linux 8 |
Unaffected:
8100020260626120929.25e700aa , < *
(rpm)
cpe:/a:redhat:enterprise_linux:8::appstream |
|
| Red Hat | Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support |
Unaffected:
8040020260629123121.96015a92 , < *
(rpm)
cpe:/a:redhat:rhel_aus:8.4::appstream cpe:/a:redhat:rhel_eus_long_life:8.4::appstream |
|
| Red Hat | Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On |
Unaffected:
8040020260629123121.96015a92 , < *
(rpm)
cpe:/a:redhat:rhel_aus:8.4::appstream cpe:/a:redhat:rhel_eus_long_life:8.4::appstream |
|
| Red Hat | Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support |
Unaffected:
8060020260626130540.824efc52 , < *
(rpm)
cpe:/a:redhat:rhel_aus:8.6::appstream cpe:/a:redhat:rhel_eus_long_life:8.6::appstream |
|
| Red Hat | Red Hat Enterprise Linux 8.6 Extended Update Support Long-Life Add-On |
Unaffected:
8060020260626130540.824efc52 , < *
(rpm)
cpe:/a:redhat:rhel_aus:8.6::appstream cpe:/a:redhat:rhel_eus_long_life:8.6::appstream |
|
| Red Hat | Red Hat Enterprise Linux 8.8 Telecommunications Update Service |
Unaffected:
8080020260630025241.6dbb3803 , < *
(rpm)
cpe:/a:redhat:rhel_e4s:8.8::appstream cpe:/a:redhat:rhel_tus:8.8::appstream |
|
| Red Hat | Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions |
Unaffected:
8080020260630025241.6dbb3803 , < *
(rpm)
cpe:/a:redhat:rhel_e4s:8.8::appstream cpe:/a:redhat:rhel_tus:8.8::appstream |
|
| Red Hat | Red Hat Enterprise Linux 9 |
Unaffected:
0:2.8.0-8.el9_8 , < *
(rpm)
cpe:/a:redhat:enterprise_linux:9::appstream cpe:/a:redhat:enterprise_linux:9::crb |
|
| Red Hat | Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions |
Unaffected:
0:2.2.4-19.el9_2 , < *
(rpm)
cpe:/a:redhat:rhel_e4s:9.2::appstream |
|
| Red Hat | Red Hat Enterprise Linux 9.4 Update Services for SAP Solutions |
Unaffected:
0:2.4.5-26.el9_4 , < *
(rpm)
cpe:/a:redhat:rhel_e4s:9.4::appstream |
|
| Red Hat | Red Hat Enterprise Linux 9.6 Extended Update Support |
Unaffected:
0:2.6.1-22.el9_6 , < *
(rpm)
cpe:/a:redhat:rhel_eus:9.6::appstream cpe:/a:redhat:rhel_eus:9.6::crb |
|
| Red Hat | Red Hat Directory Server 13.2 |
Unaffected:
1783452100 , < *
(rpm)
cpe:/a:redhat:directory_server:13.2::el10 |
|
| Red Hat | Red Hat Directory Server 12 |
cpe:/a:redhat:directory_server:12 |
|
| Red Hat | Red Hat Directory Server 13 |
cpe:/a:redhat:directory_server:13 |
|
| Red Hat | Red Hat Enterprise Linux 6 |
cpe:/o:redhat:enterprise_linux:6 |
Date Public
2026-07-07 09:00
Credits
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-11610",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-07-08T21:02:20.457715Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-07-08T21:02:28.863Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"collectionURL": "https://github.com/389ds/389-ds-base",
"defaultStatus": "unaffected",
"packageName": "389-ds-base",
"product": "389-ds-base",
"vendor": "389ds",
"versions": [
{
"lessThanOrEqual": "3.3.0",
"status": "affected",
"version": "1.3.2",
"versionType": "semver"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:directory_server_e4s:11.5::el8"
],
"defaultStatus": "affected",
"packageName": "redhat-ds:11",
"product": "Red Hat Directory Server 11.5 E4S for RHEL 8",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "8060020260702180044.0ca98e7e",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:directory_server_e4s:11.7::el8"
],
"defaultStatus": "affected",
"packageName": "redhat-ds:11",
"product": "Red Hat Directory Server 11.7 E4S for RHEL 8",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "8080020260702180836.f969626e",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:directory_server:11.9::el8"
],
"defaultStatus": "affected",
"packageName": "redhat-ds:11",
"product": "Red Hat Directory Server 11.9 for RHEL 8",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "8100020260702145313.37ed7c03",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:directory_server_e4s:12.2::el9"
],
"defaultStatus": "affected",
"packageName": "redhat-ds:12",
"product": "Red Hat Directory Server 12.2 E4S for RHEL 9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "9020020260703060155.1674d574",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:directory_server_e4s:12.4::el9"
],
"defaultStatus": "affected",
"packageName": "redhat-ds:12",
"product": "Red Hat Directory Server 12.4 E4S for RHEL 9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "9040020260703055735.1674d574",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:10.2"
],
"defaultStatus": "affected",
"packageName": "389-ds-base",
"product": "Red Hat Enterprise Linux 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.2.0-8.el10_2",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux_eus:10.0"
],
"defaultStatus": "affected",
"packageName": "389-ds-base",
"product": "Red Hat Enterprise Linux 10.0 Extended Update Support",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.0.6-19.el10_0",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:rhel_els:7"
],
"defaultStatus": "affected",
"packageName": "389-ds-base",
"product": "Red Hat Enterprise Linux 7 Extended Lifecycle Support",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.3.11.1-13.el7_9",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:enterprise_linux:8::appstream"
],
"defaultStatus": "affected",
"packageName": "389-ds:1.4",
"product": "Red Hat Enterprise Linux 8",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "8100020260626120929.25e700aa",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:rhel_aus:8.4::appstream",
"cpe:/a:redhat:rhel_eus_long_life:8.4::appstream"
],
"defaultStatus": "affected",
"packageName": "389-ds:1.4",
"product": "Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "8040020260629123121.96015a92",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:rhel_aus:8.4::appstream",
"cpe:/a:redhat:rhel_eus_long_life:8.4::appstream"
],
"defaultStatus": "affected",
"packageName": "389-ds:1.4",
"product": "Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "8040020260629123121.96015a92",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:rhel_aus:8.6::appstream",
"cpe:/a:redhat:rhel_eus_long_life:8.6::appstream"
],
"defaultStatus": "affected",
"packageName": "389-ds:1.4",
"product": "Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "8060020260626130540.824efc52",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:rhel_aus:8.6::appstream",
"cpe:/a:redhat:rhel_eus_long_life:8.6::appstream"
],
"defaultStatus": "affected",
"packageName": "389-ds:1.4",
"product": "Red Hat Enterprise Linux 8.6 Extended Update Support Long-Life Add-On",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "8060020260626130540.824efc52",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:rhel_e4s:8.8::appstream",
"cpe:/a:redhat:rhel_tus:8.8::appstream"
],
"defaultStatus": "affected",
"packageName": "389-ds:1.4",
"product": "Red Hat Enterprise Linux 8.8 Telecommunications Update Service",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "8080020260630025241.6dbb3803",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:rhel_e4s:8.8::appstream",
"cpe:/a:redhat:rhel_tus:8.8::appstream"
],
"defaultStatus": "affected",
"packageName": "389-ds:1.4",
"product": "Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "8080020260630025241.6dbb3803",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:enterprise_linux:9::appstream",
"cpe:/a:redhat:enterprise_linux:9::crb"
],
"defaultStatus": "affected",
"packageName": "389-ds-base",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.8.0-8.el9_8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:rhel_e4s:9.2::appstream"
],
"defaultStatus": "affected",
"packageName": "389-ds-base",
"product": "Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.2.4-19.el9_2",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:rhel_e4s:9.4::appstream"
],
"defaultStatus": "affected",
"packageName": "389-ds-base",
"product": "Red Hat Enterprise Linux 9.4 Update Services for SAP Solutions",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.4.5-26.el9_4",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:rhel_eus:9.6::appstream",
"cpe:/a:redhat:rhel_eus:9.6::crb"
],
"defaultStatus": "affected",
"packageName": "389-ds-base",
"product": "Red Hat Enterprise Linux 9.6 Extended Update Support",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.6.1-22.el9_6",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:directory_server:13.2::el10"
],
"defaultStatus": "affected",
"packageName": "dirsrv/dirsrv-container-rhel10",
"product": "Red Hat Directory Server 13.2",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "1783452100",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:directory_server:12"
],
"defaultStatus": "affected",
"packageName": "redhat-ds:12/389-ds-base",
"product": "Red Hat Directory Server 12",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:directory_server:13"
],
"defaultStatus": "unaffected",
"packageName": "389-ds-base",
"product": "Red Hat Directory Server 13",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:6"
],
"defaultStatus": "affected",
"packageName": "389-ds-base",
"product": "Red Hat Enterprise Linux 6",
"vendor": "Red Hat"
}
],
"credits": [
{
"lang": "en",
"value": "This issue was discovered by Ian Murphy (Red Hat)."
}
],
"datePublic": "2026-07-07T09:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "A heap buffer overflow flaw was found in the SASL I/O layer of 389 Directory Server\n(389-ds-base). After a successful SASL bind with integrity protection (SSF \u003e 0),\nan authenticated attacker can send a specially crafted oversized LDAP UNBIND packet\nthat is copied into a 512-byte heap receive buffer without a bounds check in\nsasl_io_recv() in sasl_io.c. This allows up to approximately 2 megabytes of\nattacker-controlled data to overflow the buffer, causing a denial of service (server\ncrash). In FreeIPA and Red Hat Identity Management deployments, any domain user with\na valid Kerberos ticket, any enrolled host, or any service account can trigger this\nvulnerability over the network after authenticating via GSSAPI.\nThe vulnerable code path has existed since approximately 2013 (389-ds-base 1.3.2) and\nwas not addressed by the CVE-2025-14905 fix, which patched a separate heap overflow\nin schema.c only."
}
],
"metrics": [
{
"other": {
"content": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"value": "Important"
},
"type": "Red Hat severity rating"
}
},
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"format": "CVSS"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-122",
"description": "Heap-based Buffer Overflow",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-07-08T13:01:19.304Z",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"name": "RHSA-2026:36195",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:36195"
},
{
"name": "RHSA-2026:36196",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:36196"
},
{
"name": "RHSA-2026:36197",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:36197"
},
{
"name": "RHSA-2026:36198",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:36198"
},
{
"name": "RHSA-2026:36200",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:36200"
},
{
"name": "RHSA-2026:36201",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:36201"
},
{
"name": "RHSA-2026:36202",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:36202"
},
{
"name": "RHSA-2026:36204",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:36204"
},
{
"name": "RHSA-2026:36205",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:36205"
},
{
"name": "RHSA-2026:36206",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:36206"
},
{
"name": "RHSA-2026:36208",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:36208"
},
{
"name": "RHSA-2026:36209",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:36209"
},
{
"name": "RHSA-2026:36585",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:36585"
},
{
"name": "RHSA-2026:36641",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:36641"
},
{
"name": "RHSA-2026:36660",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:36660"
},
{
"name": "RHSA-2026:36670",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:36670"
},
{
"name": "RHSA-2026:36671",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:36671"
},
{
"tags": [
"vdb-entry",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/security/cve/CVE-2026-11610"
},
{
"name": "RHBZ#2484414",
"tags": [
"issue-tracking",
"x_refsource_REDHAT"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2484414"
}
],
"timeline": [
{
"lang": "en",
"time": "2026-04-22T00:00:00.000Z",
"value": "Reported to Red Hat."
},
{
"lang": "en",
"time": "2026-07-07T09:00:00.000Z",
"value": "Made public."
}
],
"title": "389-ds-base: 389-ds-base: heap buffer overflow in sasl_io_recv() via padded sasl unbind",
"workarounds": [
{
"lang": "en",
"value": "There is no complete workaround for this flaw.\nMitigations that reduce exposure:\n1. Restrict network access to LDAP ports (389/636) to trusted networks only.\n Note: In FreeIPA/IdM deployments, enrolled clients require LDAP access and\n this may not be practical.\n2. If DIGEST-MD5 is not required, disable it via nsslapd-allowed-sasl-mechanisms\n in cn=config. GSSAPI/Kerberos cannot be disabled in FreeIPA/IdM without breaking\n domain authentication.\n3. Monitor for oversized LDAP UNBIND packets (standard UNBIND is 7 bytes; alert on\n UNBIND packets exceeding ~100 bytes).\n4. Lowering nsslapd-maxbersize reduces maximum overflow size but does not eliminate\n the vulnerability."
}
],
"x_generator": {
"engine": "cvelib 1.8.0"
},
"x_redhatCweChain": "CWE-122: Heap-based Buffer Overflow"
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2026-11610",
"datePublished": "2026-07-07T09:17:36.519Z",
"dateReserved": "2026-06-08T16:13:02.502Z",
"dateUpdated": "2026-07-08T21:02:28.863Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
CVE-2026-58384 (GCVE-0-2026-58384)
Vulnerability from nvd – Published: 2026-07-07 07:44 – Updated: 2026-07-07 13:31
VLAI
EPSS
VEX
Title
Gimp: gimp: integer overflow in read_rle_channel()
Summary
A flaw was found in GIMP's PSD parser. An integer overflow in read_RLE_channel() can cause an undersized heap allocation for the RLE row-length table, after which subsequent per-row writes corrupt heap memory. This could lead to memory corruption, potentially resulting in denial of service or arbitrary code execution.
Severity
7.3 (High)
SSVC
Exploitation: none
Automatable: no
Technical Impact: total
CISA Coordinator (v2.0.3)
CWE
- CWE-190 - Integer Overflow or Wraparound
Assigner
References
4 references
| URL | Tags |
|---|---|
| https://access.redhat.com/security/cve/CVE-2026-58384 | vdb-entryx_refsource_REDHAT |
| https://bugzilla.redhat.com/show_bug.cgi?id=2497431 | issue-trackingx_refsource_REDHAT |
| https://gitlab.gnome.org/GNOME/gimp/-/commit/da29e217 | |
| https://gitlab.gnome.org/GNOME/gimp/-/issues/16216 |
Impacted products
4 products
| Vendor | Product | Version | |
|---|---|---|---|
| Red Hat | Red Hat Enterprise Linux 6 |
cpe:/o:redhat:enterprise_linux:6 |
|
| Red Hat | Red Hat Enterprise Linux 7 |
cpe:/o:redhat:enterprise_linux:7 |
|
| Red Hat | Red Hat Enterprise Linux 8 |
cpe:/o:redhat:enterprise_linux:8 |
|
| Red Hat | Red Hat Enterprise Linux 9 |
cpe:/o:redhat:enterprise_linux:9 |
Date Public
2026-04-11 00:00
Credits
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-58384",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-07-07T13:30:05.659315Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-07-07T13:31:00.757Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:6"
],
"defaultStatus": "unaffected",
"packageName": "gimp",
"product": "Red Hat Enterprise Linux 6",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:7"
],
"defaultStatus": "unaffected",
"packageName": "gimp",
"product": "Red Hat Enterprise Linux 7",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:8"
],
"defaultStatus": "unaffected",
"packageName": "gimp:2.8/gimp",
"product": "Red Hat Enterprise Linux 8",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:9"
],
"defaultStatus": "affected",
"packageName": "gimp",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat"
}
],
"credits": [
{
"lang": "en",
"value": "Red Hat would like to thank bb1abu for reporting this issue."
}
],
"datePublic": "2026-04-11T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "A flaw was found in GIMP\u0027s PSD parser. An integer overflow in read_RLE_channel() can cause an undersized heap allocation for the RLE row-length table, after which subsequent per-row writes corrupt heap memory. This could lead to memory corruption, potentially resulting in denial of service or arbitrary code execution."
}
],
"metrics": [
{
"other": {
"content": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"value": "Important"
},
"type": "Red Hat severity rating"
}
},
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"format": "CVSS"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-190",
"description": "Integer Overflow or Wraparound",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-07-07T07:44:28.139Z",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"tags": [
"vdb-entry",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/security/cve/CVE-2026-58384"
},
{
"name": "RHBZ#2497431",
"tags": [
"issue-tracking",
"x_refsource_REDHAT"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2497431"
},
{
"url": "https://gitlab.gnome.org/GNOME/gimp/-/commit/da29e217"
},
{
"url": "https://gitlab.gnome.org/GNOME/gimp/-/issues/16216"
}
],
"timeline": [
{
"lang": "en",
"time": "2026-04-11T00:00:00.000Z",
"value": "Reported to Red Hat."
},
{
"lang": "en",
"time": "2026-04-11T00:00:00.000Z",
"value": "Made public."
}
],
"title": "Gimp: gimp: integer overflow in read_rle_channel()",
"workarounds": [
{
"lang": "en",
"value": "None \u2014 requires opening a crafted PSD file."
}
],
"x_generator": {
"engine": "cvelib 1.8.0"
},
"x_redhatCweChain": "CWE-190: Integer Overflow or Wraparound"
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2026-58384",
"datePublished": "2026-07-07T07:44:28.139Z",
"dateReserved": "2026-06-30T16:54:04.312Z",
"dateUpdated": "2026-07-07T13:31:00.757Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
CVE-2026-59089 (GCVE-0-2026-59089)
Vulnerability from nvd – Published: 2026-07-06 19:38 – Updated: 2026-07-06 19:48
VLAI
EPSS
VEX
Title
Gimp: gimp: denial of service via integer overflow in playstation tim loader
Summary
A flaw was found in GIMP. The PlayStation TIM loader, responsible for handling PlayStation image files, incorrectly calculates the size of the Color Look-Up Table (CLUT) due to an integer overflow. This occurs when multiplying num_colors and num_cluts, both 16-bit unsigned short integers, resulting in a value exceeding the maximum integer limit. An attacker could exploit this by providing a specially crafted image file, leading to undefined behavior and causing the GIMP plug-in to abort, effectively resulting in a denial of service.
Severity
5.5 (Medium)
SSVC
Exploitation: poc
Automatable: no
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
- CWE-190 - Integer Overflow or Wraparound
Assigner
References
3 references
| URL | Tags |
|---|---|
| https://access.redhat.com/security/cve/CVE-2026-59089 | vdb-entryx_refsource_REDHAT |
| https://bugzilla.redhat.com/show_bug.cgi?id=2496583 | issue-trackingx_refsource_REDHAT |
| https://gitlab.gnome.org/GNOME/gimp/-/work_items/16493 |
Impacted products
4 products
| Vendor | Product | Version | |
|---|---|---|---|
| Red Hat | Red Hat Enterprise Linux 6 |
cpe:/o:redhat:enterprise_linux:6 |
|
| Red Hat | Red Hat Enterprise Linux 7 |
cpe:/o:redhat:enterprise_linux:7 |
|
| Red Hat | Red Hat Enterprise Linux 8 |
cpe:/o:redhat:enterprise_linux:8 |
|
| Red Hat | Red Hat Enterprise Linux 9 |
cpe:/o:redhat:enterprise_linux:9 |
Date Public
2026-06-15 00:00
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-59089",
"options": [
{
"Exploitation": "poc"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-07-06T19:48:49.016983Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-07-06T19:48:53.313Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"references": [
{
"tags": [
"exploit"
],
"url": "https://gitlab.gnome.org/GNOME/gimp/-/work_items/16493"
}
],
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:6"
],
"defaultStatus": "unknown",
"packageName": "gimp",
"product": "Red Hat Enterprise Linux 6",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:7"
],
"defaultStatus": "unknown",
"packageName": "gimp",
"product": "Red Hat Enterprise Linux 7",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:8"
],
"defaultStatus": "affected",
"packageName": "gimp",
"product": "Red Hat Enterprise Linux 8",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:9"
],
"defaultStatus": "affected",
"packageName": "gimp",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat"
}
],
"datePublic": "2026-06-15T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "A flaw was found in GIMP. The PlayStation TIM loader, responsible for handling PlayStation image files, incorrectly calculates the size of the Color Look-Up Table (CLUT) due to an integer overflow. This occurs when multiplying num_colors and num_cluts, both 16-bit unsigned short integers, resulting in a value exceeding the maximum integer limit. An attacker could exploit this by providing a specially crafted image file, leading to undefined behavior and causing the GIMP plug-in to abort, effectively resulting in a denial of service."
}
],
"metrics": [
{
"other": {
"content": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"value": "Moderate"
},
"type": "Red Hat severity rating"
}
},
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"format": "CVSS"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-190",
"description": "Integer Overflow or Wraparound",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-07-06T19:38:16.905Z",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"tags": [
"vdb-entry",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/security/cve/CVE-2026-59089"
},
{
"name": "RHBZ#2496583",
"tags": [
"issue-tracking",
"x_refsource_REDHAT"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2496583"
},
{
"url": "https://gitlab.gnome.org/GNOME/gimp/-/work_items/16493"
}
],
"timeline": [
{
"lang": "en",
"time": "2026-07-02T15:36:51.520Z",
"value": "Reported to Red Hat."
},
{
"lang": "en",
"time": "2026-06-15T00:00:00.000Z",
"value": "Made public."
}
],
"title": "Gimp: gimp: denial of service via integer overflow in playstation tim loader",
"workarounds": [
{
"lang": "en",
"value": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability."
}
],
"x_generator": {
"engine": "cvelib 1.8.0"
},
"x_redhatCweChain": "CWE-190: Integer Overflow or Wraparound"
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2026-59089",
"datePublished": "2026-07-06T19:38:16.905Z",
"dateReserved": "2026-07-02T15:11:12.820Z",
"dateUpdated": "2026-07-06T19:48:53.313Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
CVE-2026-59692 (GCVE-0-2026-59692)
Vulnerability from cvelistv5 – Published: 2026-07-09 09:35 – Updated: 2026-07-09 14:39
VLAI
EPSS
VEX
Title
Gstreamer: gstreamer: dtls certificate subject dn stack buffer overflow in openssl_verify_callback
Summary
A stack buffer overflow vulnerability was found in GStreamer's DTLS plugin. During a DTLS handshake, the peer certificate Subject Distinguished Name is printed into a fixed-size 2048-byte stack buffer without bounds checking. A remote unauthenticated attacker can send a certificate with an oversized Subject DN that exceeds the buffer, causing a stack buffer overflow and process crash, resulting in denial of service.
Severity
7.5 (High)
SSVC
Exploitation: none
Automatable: yes
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
- CWE-121 - Stack-based Buffer Overflow
Assigner
References
4 references
| URL | Tags |
|---|---|
| https://access.redhat.com/security/cve/CVE-2026-59692 | vdb-entryx_refsource_REDHAT |
| https://bugzilla.redhat.com/show_bug.cgi?id=2497344 | issue-trackingx_refsource_REDHAT |
| https://gitlab.freedesktop.org/gstreamer/gstreame… | |
| https://gitlab.freedesktop.org/gstreamer/gstreame… |
Impacted products
5 products
| Vendor | Product | Version | |
|---|---|---|---|
| Red Hat | Red Hat Enterprise Linux 10 |
cpe:/o:redhat:enterprise_linux:10 |
|
| Red Hat | Red Hat Enterprise Linux 6 |
cpe:/o:redhat:enterprise_linux:6 |
|
| Red Hat | Red Hat Enterprise Linux 7 |
cpe:/o:redhat:enterprise_linux:7 |
|
| Red Hat | Red Hat Enterprise Linux 8 |
cpe:/o:redhat:enterprise_linux:8 |
|
| Red Hat | Red Hat Enterprise Linux 9 |
cpe:/o:redhat:enterprise_linux:9 |
Date Public
2026-07-08 00:00
Credits
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-59692",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "yes"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-07-09T13:33:46.281179Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-07-09T14:39:16.678Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:10"
],
"defaultStatus": "affected",
"packageName": "gstreamer1-plugins-bad-free",
"product": "Red Hat Enterprise Linux 10",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:6"
],
"defaultStatus": "affected",
"packageName": "gstreamer-plugins-bad-free",
"product": "Red Hat Enterprise Linux 6",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:7"
],
"defaultStatus": "affected",
"packageName": "gstreamer1-plugins-bad-free",
"product": "Red Hat Enterprise Linux 7",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:7"
],
"defaultStatus": "affected",
"packageName": "gstreamer-plugins-bad-free",
"product": "Red Hat Enterprise Linux 7",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:8"
],
"defaultStatus": "affected",
"packageName": "gstreamer1-plugins-bad-free",
"product": "Red Hat Enterprise Linux 8",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:9"
],
"defaultStatus": "affected",
"packageName": "gstreamer1-plugins-bad-free",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat"
}
],
"credits": [
{
"lang": "en",
"value": "Red Hat would like to thank Clouditera Security (Clouditera), NSFOCUS (NSFOCUS), and Z.ai Security (Z.ai) for reporting this issue."
}
],
"datePublic": "2026-07-08T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "A stack buffer overflow vulnerability was found in GStreamer\u0027s DTLS plugin. During a DTLS handshake, the peer certificate Subject Distinguished Name is printed into a fixed-size 2048-byte stack buffer without bounds checking. A remote unauthenticated attacker can send a certificate with an oversized Subject DN that exceeds the buffer, causing a stack buffer overflow and process crash, resulting in denial of service."
}
],
"metrics": [
{
"other": {
"content": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"value": "Important"
},
"type": "Red Hat severity rating"
}
},
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"format": "CVSS"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-121",
"description": "Stack-based Buffer Overflow",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-07-09T09:35:31.557Z",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"tags": [
"vdb-entry",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/security/cve/CVE-2026-59692"
},
{
"name": "RHBZ#2497344",
"tags": [
"issue-tracking",
"x_refsource_REDHAT"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2497344"
},
{
"url": "https://gitlab.freedesktop.org/gstreamer/gstreamer-security/-/merge_requests/99"
},
{
"url": "https://gitlab.freedesktop.org/gstreamer/gstreamer/-/work_items/5172"
}
],
"timeline": [
{
"lang": "en",
"time": "2026-07-06T00:00:00.000Z",
"value": "Reported to Red Hat."
},
{
"lang": "en",
"time": "2026-07-08T00:00:00.000Z",
"value": "Made public."
}
],
"title": "Gstreamer: gstreamer: dtls certificate subject dn stack buffer overflow in openssl_verify_callback",
"workarounds": [
{
"lang": "en",
"value": "There is no complete mitigation for this vulnerability. The following measures can reduce risk:\n\n1. If WebRTC/DTLS functionality is not required, remove the DTLS plugin shared object from the GStreamer plugins directory (typically /usr/lib64/gstreamer-1.0/libgstdtls.so).\n2. Restrict network access to WebRTC/DTLS endpoints to trusted peers only via firewall rules.\n3. Deploy GStreamer WebRTC services behind a reverse proxy or media server that validates DTLS certificates before forwarding."
}
],
"x_generator": {
"engine": "cvelib 1.8.0"
},
"x_redhatCweChain": "CWE-121: Stack-based Buffer Overflow"
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2026-59692",
"datePublished": "2026-07-09T09:35:31.557Z",
"dateReserved": "2026-07-06T13:40:46.923Z",
"dateUpdated": "2026-07-09T14:39:16.678Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
CVE-2026-59691 (GCVE-0-2026-59691)
Vulnerability from cvelistv5 – Published: 2026-07-09 09:34 – Updated: 2026-07-09 13:50
VLAI
EPSS
VEX
Title
Gstreamer: gstreamer: rfbsrc/librfb hextile heap out-of-bounds write with 16bpp framebuffer
Summary
A heap buffer overflow vulnerability was found in GStreamer's rfbsrc plugin. When a client connects to a malicious RFB/VNC server that advertises a 16bpp framebuffer and sends Hextile-encoded updates, the Hextile background fill path writes 32-bit pixel values into a buffer allocated for 16-bit pixels. This type mismatch causes an out-of-bounds heap write that can lead to denial of service (process crash) and potential memory corruption.
Severity
7.1 (High)
SSVC
Exploitation: none
Automatable: no
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
- CWE-787 - Out-of-bounds Write
Assigner
References
4 references
| URL | Tags |
|---|---|
| https://access.redhat.com/security/cve/CVE-2026-59691 | vdb-entryx_refsource_REDHAT |
| https://bugzilla.redhat.com/show_bug.cgi?id=2497343 | issue-trackingx_refsource_REDHAT |
| https://gitlab.freedesktop.org/gstreamer/gstreame… | |
| https://gitlab.freedesktop.org/gstreamer/gstreame… |
Impacted products
5 products
| Vendor | Product | Version | |
|---|---|---|---|
| Red Hat | Red Hat Enterprise Linux 10 |
cpe:/o:redhat:enterprise_linux:10 |
|
| Red Hat | Red Hat Enterprise Linux 6 |
cpe:/o:redhat:enterprise_linux:6 |
|
| Red Hat | Red Hat Enterprise Linux 7 |
cpe:/o:redhat:enterprise_linux:7 |
|
| Red Hat | Red Hat Enterprise Linux 8 |
cpe:/o:redhat:enterprise_linux:8 |
|
| Red Hat | Red Hat Enterprise Linux 9 |
cpe:/o:redhat:enterprise_linux:9 |
Date Public
2026-07-08 00:00
Credits
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-59691",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-07-09T13:50:29.784295Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-07-09T13:50:41.903Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:10"
],
"defaultStatus": "affected",
"packageName": "gstreamer1-plugins-bad-free",
"product": "Red Hat Enterprise Linux 10",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:6"
],
"defaultStatus": "affected",
"packageName": "gstreamer-plugins-bad-free",
"product": "Red Hat Enterprise Linux 6",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:7"
],
"defaultStatus": "affected",
"packageName": "gstreamer1-plugins-bad-free",
"product": "Red Hat Enterprise Linux 7",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:7"
],
"defaultStatus": "affected",
"packageName": "gstreamer-plugins-bad-free",
"product": "Red Hat Enterprise Linux 7",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:8"
],
"defaultStatus": "affected",
"packageName": "gstreamer1-plugins-bad-free",
"product": "Red Hat Enterprise Linux 8",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:9"
],
"defaultStatus": "affected",
"packageName": "gstreamer1-plugins-bad-free",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat"
}
],
"credits": [
{
"lang": "en",
"value": "Red Hat would like to thank Clouditera Security (Clouditera), NSFOCUS (NSFOCUS), and Z.ai Security (Z.ai) for reporting this issue."
}
],
"datePublic": "2026-07-08T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "A heap buffer overflow vulnerability was found in GStreamer\u0027s rfbsrc plugin. When a client connects to a malicious RFB/VNC server that advertises a 16bpp framebuffer and sends Hextile-encoded updates, the Hextile background fill path writes 32-bit pixel values into a buffer allocated for 16-bit pixels. This type mismatch causes an out-of-bounds heap write that can lead to denial of service (process crash) and potential memory corruption."
}
],
"metrics": [
{
"other": {
"content": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"value": "Important"
},
"type": "Red Hat severity rating"
}
},
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"format": "CVSS"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-787",
"description": "Out-of-bounds Write",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-07-09T09:34:47.743Z",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"tags": [
"vdb-entry",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/security/cve/CVE-2026-59691"
},
{
"name": "RHBZ#2497343",
"tags": [
"issue-tracking",
"x_refsource_REDHAT"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2497343"
},
{
"url": "https://gitlab.freedesktop.org/gstreamer/gstreamer-security/-/merge_requests/100"
},
{
"url": "https://gitlab.freedesktop.org/gstreamer/gstreamer/-/work_items/5173"
}
],
"timeline": [
{
"lang": "en",
"time": "2026-07-06T00:00:00.000Z",
"value": "Reported to Red Hat."
},
{
"lang": "en",
"time": "2026-07-08T00:00:00.000Z",
"value": "Made public."
}
],
"title": "Gstreamer: gstreamer: rfbsrc/librfb hextile heap out-of-bounds write with 16bpp framebuffer",
"workarounds": [
{
"lang": "en",
"value": "There is no complete mitigation for this vulnerability. The following measures can reduce risk:\n\n1. Do not connect GStreamer pipelines using rfbsrc to untrusted or unknown VNC servers.\n2. If the rfbsrc plugin is not required, remove the librfb plugin shared object from the GStreamer plugins directory (typically /usr/lib64/gstreamer-1.0/libgstrfbsrc.so).\n3. Network-level controls (firewall rules) can restrict outbound VNC connections to trusted servers only."
}
],
"x_generator": {
"engine": "cvelib 1.8.0"
},
"x_redhatCweChain": "CWE-787: Out-of-bounds Write"
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2026-59691",
"datePublished": "2026-07-09T09:34:47.743Z",
"dateReserved": "2026-07-06T13:40:46.923Z",
"dateUpdated": "2026-07-09T13:50:41.903Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
CVE-2026-15154 (GCVE-0-2026-15154)
Vulnerability from cvelistv5 – Published: 2026-07-08 19:50 – Updated: 2026-07-08 20:38
VLAI
EPSS
VEX
Title
Guardrails-detectors: guardrails-detectors: unauthenticated regular-expression denial of service (redos) via detector_params.regex
Summary
A flaw was found in `guardrails-detectors`, a component of Red Hat OpenShift AI. This vulnerability, known as Regular Expression Denial of Service (ReDoS), allows a remote attacker to provide specially crafted regular expressions to the public detection API. This can cause catastrophic backtracking, leading to a worker process consuming 100% CPU indefinitely and resulting in a denial of service for the entire guardrails-mediated LLM pipeline.
Severity
6.5 (Medium)
SSVC
Exploitation: none
Automatable: no
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
- CWE-1333 - Inefficient Regular Expression Complexity
Assigner
References
2 references
| URL | Tags |
|---|---|
| https://access.redhat.com/security/cve/CVE-2026-15154 | vdb-entryx_refsource_REDHAT |
| https://bugzilla.redhat.com/show_bug.cgi?id=2498188 | issue-trackingx_refsource_REDHAT |
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| Red Hat | Red Hat OpenShift AI (RHOAI) |
cpe:/a:redhat:openshift_ai |
Date Public
2026-07-08 18:43
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-15154",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-07-08T20:38:40.332330Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-07-08T20:38:46.315Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift_ai"
],
"defaultStatus": "affected",
"packageName": "rhoai/odh-built-in-detector-rhel9",
"product": "Red Hat OpenShift AI (RHOAI)",
"vendor": "Red Hat"
}
],
"datePublic": "2026-07-08T18:43:36.000Z",
"descriptions": [
{
"lang": "en",
"value": "A flaw was found in `guardrails-detectors`, a component of Red Hat OpenShift AI. This vulnerability, known as Regular Expression Denial of Service (ReDoS), allows a remote attacker to provide specially crafted regular expressions to the public detection API. This can cause catastrophic backtracking, leading to a worker process consuming 100% CPU indefinitely and resulting in a denial of service for the entire guardrails-mediated LLM pipeline."
}
],
"metrics": [
{
"other": {
"content": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"value": "Moderate"
},
"type": "Red Hat severity rating"
}
},
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"format": "CVSS"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-1333",
"description": "Inefficient Regular Expression Complexity",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-07-08T19:50:51.563Z",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"tags": [
"vdb-entry",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/security/cve/CVE-2026-15154"
},
{
"name": "RHBZ#2498188",
"tags": [
"issue-tracking",
"x_refsource_REDHAT"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2498188"
}
],
"timeline": [
{
"lang": "en",
"time": "2026-06-26T12:47:20.317Z",
"value": "Reported to Red Hat."
},
{
"lang": "en",
"time": "2026-07-08T18:43:36.000Z",
"value": "Made public."
}
],
"title": "Guardrails-detectors: guardrails-detectors: unauthenticated regular-expression denial of service (redos) via detector_params.regex",
"x_generator": {
"engine": "cvelib 1.8.0"
},
"x_redhatCweChain": "CWE-1333: Inefficient Regular Expression Complexity"
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2026-15154",
"datePublished": "2026-07-08T19:50:51.563Z",
"dateReserved": "2026-07-08T19:44:43.020Z",
"dateUpdated": "2026-07-08T20:38:46.315Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
CVE-2026-15063 (GCVE-0-2026-15063)
Vulnerability from cvelistv5 – Published: 2026-07-08 14:58 – Updated: 2026-07-08 15:56
VLAI
EPSS
VEX
Title
Trustyai-service-operator: trustyai service operator: gorch port bypass when auth is enabled
Summary
A flaw was found in the gorch service template, which is part of the trustyai-service-operator. Even when authentication is enabled, the gorch service exposes unproxied orchestrator and detector metrics ports. This allows any pod on the cluster network to directly access these ports, bypassing the kube-rbac-proxy and its authentication mechanisms. This could lead to unauthorized access to the orchestrator and detector metrics.
Severity
6.3 (Medium)
SSVC
Exploitation: none
Automatable: no
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
- CWE-306 - Missing Authentication for Critical Function
Assigner
References
2 references
| URL | Tags |
|---|---|
| https://access.redhat.com/security/cve/CVE-2026-15063 | vdb-entryx_refsource_REDHAT |
| https://bugzilla.redhat.com/show_bug.cgi?id=2498058 | issue-trackingx_refsource_REDHAT |
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| Red Hat | Red Hat OpenShift AI (RHOAI) |
cpe:/a:redhat:openshift_ai |
Date Public
2026-07-08 00:00
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-15063",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-07-08T15:56:03.613145Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-07-08T15:56:34.556Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift_ai"
],
"defaultStatus": "affected",
"packageName": "rhoai/odh-trustyai-service-operator-rhel9",
"product": "Red Hat OpenShift AI (RHOAI)",
"vendor": "Red Hat"
}
],
"datePublic": "2026-07-08T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "A flaw was found in the gorch service template, which is part of the trustyai-service-operator. Even when authentication is enabled, the gorch service exposes unproxied orchestrator and detector metrics ports. This allows any pod on the cluster network to directly access these ports, bypassing the kube-rbac-proxy and its authentication mechanisms. This could lead to unauthorized access to the orchestrator and detector metrics."
}
],
"metrics": [
{
"other": {
"content": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"value": "Moderate"
},
"type": "Red Hat severity rating"
}
},
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N",
"version": "3.1"
},
"format": "CVSS"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-306",
"description": "Missing Authentication for Critical Function",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-07-08T14:58:12.105Z",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"tags": [
"vdb-entry",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/security/cve/CVE-2026-15063"
},
{
"name": "RHBZ#2498058",
"tags": [
"issue-tracking",
"x_refsource_REDHAT"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2498058"
}
],
"timeline": [
{
"lang": "en",
"time": "2026-07-08T14:30:11.515Z",
"value": "Reported to Red Hat."
},
{
"lang": "en",
"time": "2026-07-08T00:00:00.000Z",
"value": "Made public."
}
],
"title": "Trustyai-service-operator: trustyai service operator: gorch port bypass when auth is enabled",
"x_generator": {
"engine": "cvelib 1.8.0"
},
"x_redhatCweChain": "CWE-306: Missing Authentication for Critical Function"
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2026-15063",
"datePublished": "2026-07-08T14:58:12.105Z",
"dateReserved": "2026-07-08T14:31:24.772Z",
"dateUpdated": "2026-07-08T15:56:34.556Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
CVE-2026-15044 (GCVE-0-2026-15044)
Vulnerability from cvelistv5 – Published: 2026-07-08 14:37 – Updated: 2026-07-09 13:41
VLAI
EPSS
VEX
Title
Trustyai-service-operator: trustyai service operator: unauthenticated access to ai guardrails and orchestrator apis
Summary
A flaw was found in the TrustyAI Service Operator. When deploying services like gorch or NemoGuardrails, if a specific security setting is not enabled, these services can expose their communication channels without requiring users to prove their identity. This allows any other program within the cluster to access the AI guardrails and orchestrator without proper authorization. An attacker could exploit this to gain unauthorized access to sensitive information and potentially make limited changes to the AI models.
Severity
6.3 (Medium)
SSVC
Exploitation: none
Automatable: no
Technical Impact: partial
CISA Coordinator (v2.0.3)
Assigner
References
2 references
| URL | Tags |
|---|---|
| https://access.redhat.com/security/cve/CVE-2026-15044 | vdb-entryx_refsource_REDHAT |
| https://bugzilla.redhat.com/show_bug.cgi?id=2498039 | issue-trackingx_refsource_REDHAT |
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| Red Hat | Red Hat OpenShift AI (RHOAI) |
cpe:/a:redhat:openshift_ai |
Date Public
2026-07-08 00:00
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-15044",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-07-09T13:41:04.256259Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-07-09T13:41:14.585Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift_ai"
],
"defaultStatus": "affected",
"packageName": "rhoai/odh-trustyai-service-operator-rhel9",
"product": "Red Hat OpenShift AI (RHOAI)",
"vendor": "Red Hat"
}
],
"datePublic": "2026-07-08T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "A flaw was found in the TrustyAI Service Operator. When deploying services like gorch or NemoGuardrails, if a specific security setting is not enabled, these services can expose their communication channels without requiring users to prove their identity. This allows any other program within the cluster to access the AI guardrails and orchestrator without proper authorization. An attacker could exploit this to gain unauthorized access to sensitive information and potentially make limited changes to the AI models."
}
],
"metrics": [
{
"other": {
"content": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"value": "Moderate"
},
"type": "Red Hat severity rating"
}
},
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N",
"version": "3.1"
},
"format": "CVSS"
}
],
"providerMetadata": {
"dateUpdated": "2026-07-08T14:37:22.054Z",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"tags": [
"vdb-entry",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/security/cve/CVE-2026-15044"
},
{
"name": "RHBZ#2498039",
"tags": [
"issue-tracking",
"x_refsource_REDHAT"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2498039"
}
],
"timeline": [
{
"lang": "en",
"time": "2026-07-08T12:07:14.502Z",
"value": "Reported to Red Hat."
},
{
"lang": "en",
"time": "2026-07-08T00:00:00.000Z",
"value": "Made public."
}
],
"title": "Trustyai-service-operator: trustyai service operator: unauthenticated access to ai guardrails and orchestrator apis",
"x_generator": {
"engine": "cvelib 1.8.0"
}
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2026-15044",
"datePublished": "2026-07-08T14:37:22.054Z",
"dateReserved": "2026-07-08T12:13:56.870Z",
"dateUpdated": "2026-07-09T13:41:14.585Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
CVE-2026-15041 (GCVE-0-2026-15041)
Vulnerability from cvelistv5 – Published: 2026-07-08 10:15 – Updated: 2026-07-08 13:44
VLAI
EPSS
VEX
Title
389-ds-base: 389-ds-base: non-constant-time comparison in pbkdf2-sha256 password verification
Summary
A flaw was found in 389 Directory Server. The PBKDF2-SHA256 password verification function uses standard memcmp() for comparing password hashes instead of a constant-time comparison function. A remote attacker could potentially use timing measurements of LDAP bind attempts to infer partial hash information, though practical exploitation is extremely difficult due to PBKDF2 computational overhead.
Severity
SSVC
Exploitation: none
Automatable: no
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
- CWE-208 - Observable Timing Discrepancy
Assigner
References
2 references
| URL | Tags |
|---|---|
| https://access.redhat.com/security/cve/CVE-2026-15041 | vdb-entryx_refsource_REDHAT |
| https://bugzilla.redhat.com/show_bug.cgi?id=2498022 | issue-trackingx_refsource_REDHAT |
Impacted products
8 products
| Vendor | Product | Version | |
|---|---|---|---|
| Red Hat | Red Hat Directory Server 11 |
cpe:/a:redhat:directory_server:11 |
|
| Red Hat | Red Hat Directory Server 12 |
cpe:/a:redhat:directory_server:12 |
|
| Red Hat | Red Hat Directory Server 13 |
cpe:/a:redhat:directory_server:13 |
|
| Red Hat | Red Hat Enterprise Linux 10 |
cpe:/o:redhat:enterprise_linux:10 |
|
| Red Hat | Red Hat Enterprise Linux 6 |
cpe:/o:redhat:enterprise_linux:6 |
|
| Red Hat | Red Hat Enterprise Linux 7 |
cpe:/o:redhat:enterprise_linux:7 |
|
| Red Hat | Red Hat Enterprise Linux 8 |
cpe:/o:redhat:enterprise_linux:8 |
|
| Red Hat | Red Hat Enterprise Linux 9 |
cpe:/o:redhat:enterprise_linux:9 |
Date Public
2026-07-08 09:58
Credits
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-15041",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-07-08T13:44:08.886989Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-07-08T13:44:19.153Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:directory_server:11"
],
"defaultStatus": "affected",
"packageName": "redhat-ds:11/389-ds-base",
"product": "Red Hat Directory Server 11",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:directory_server:12"
],
"defaultStatus": "affected",
"packageName": "redhat-ds:12/389-ds-base",
"product": "Red Hat Directory Server 12",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:directory_server:13"
],
"defaultStatus": "affected",
"packageName": "389-ds-base",
"product": "Red Hat Directory Server 13",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:10"
],
"defaultStatus": "affected",
"packageName": "389-ds-base",
"product": "Red Hat Enterprise Linux 10",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:6"
],
"defaultStatus": "unaffected",
"packageName": "389-ds-base",
"product": "Red Hat Enterprise Linux 6",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:7"
],
"defaultStatus": "affected",
"packageName": "389-ds-base",
"product": "Red Hat Enterprise Linux 7",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:8"
],
"defaultStatus": "affected",
"packageName": "389-ds:1.4/389-ds-base",
"product": "Red Hat Enterprise Linux 8",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:9"
],
"defaultStatus": "affected",
"packageName": "389-ds-base",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat"
}
],
"credits": [
{
"lang": "en",
"value": "Red Hat would like to thank Andrew Rukin (Arenadata) for reporting this issue."
}
],
"datePublic": "2026-07-08T09:58:21.463Z",
"descriptions": [
{
"lang": "en",
"value": "A flaw was found in 389 Directory Server. The PBKDF2-SHA256 password verification function uses standard memcmp() for comparing password hashes instead of a constant-time comparison function. A remote attacker could potentially use timing measurements of LDAP bind attempts to infer partial hash information, though practical exploitation is extremely difficult due to PBKDF2 computational overhead."
}
],
"metrics": [
{
"other": {
"content": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"value": "Low"
},
"type": "Red Hat severity rating"
}
},
{
"cvssV3_1": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 3.7,
"baseSeverity": "LOW",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"format": "CVSS"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-208",
"description": "Observable Timing Discrepancy",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-07-08T11:06:57.873Z",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"tags": [
"vdb-entry",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/security/cve/CVE-2026-15041"
},
{
"name": "RHBZ#2498022",
"tags": [
"issue-tracking",
"x_refsource_REDHAT"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2498022"
}
],
"timeline": [
{
"lang": "en",
"time": "2026-07-08T09:55:42.287Z",
"value": "Reported to Red Hat."
},
{
"lang": "en",
"time": "2026-07-08T09:58:21.463Z",
"value": "Made public."
}
],
"title": "389-ds-base: 389-ds-base: non-constant-time comparison in pbkdf2-sha256 password verification",
"workarounds": [
{
"lang": "en",
"value": "If possible, configure 389 Directory Server to use an alternative password storage scheme (e.g., SSHA512 or GOST-Yescrypt) which uses constant-time comparison."
}
],
"x_generator": {
"engine": "cvelib 1.8.0"
},
"x_redhatCweChain": "CWE-208: Observable Timing Discrepancy"
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2026-15041",
"datePublished": "2026-07-08T10:15:30.480Z",
"dateReserved": "2026-07-08T10:00:02.126Z",
"dateUpdated": "2026-07-08T13:44:19.153Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
CVE-2025-12799 (GCVE-0-2025-12799)
Vulnerability from cvelistv5 – Published: 2026-07-07 16:18 – Updated: 2026-07-09 14:42
VLAI
EPSS
VEX
Title
Jastow: jastow cross-site scripting attack due to unsanitized uri
Summary
A flaw was found in Jastow. Jastow is vulnerable to Cross-Site Scripting (XSS) attack. If using a set of combined configuration to allow unescaped characters in URL with embedded Undertow and Jastow, a server might be vulnerable to improper input handling.
Severity
6.5 (Medium)
SSVC
Exploitation: none
Automatable: no
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
- CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Assigner
References
6 references
| URL | Tags |
|---|---|
| https://access.redhat.com/errata/RHSA-2026:36342 | vendor-advisoryx_refsource_REDHAT |
| https://access.redhat.com/errata/RHSA-2026:36343 | vendor-advisoryx_refsource_REDHAT |
| https://access.redhat.com/errata/RHSA-2026:36344 | vendor-advisoryx_refsource_REDHAT |
| https://access.redhat.com/errata/RHSA-2026:36345 | vendor-advisoryx_refsource_REDHAT |
| https://access.redhat.com/security/cve/CVE-2025-12799 | vdb-entryx_refsource_REDHAT |
| https://bugzilla.redhat.com/show_bug.cgi?id=2413071 | issue-trackingx_refsource_REDHAT |
Impacted products
215 products
| Vendor | Product | Version | |
|---|---|---|---|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 |
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el9 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1-9.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.40.0-7.redhat_00015.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
1:2.0.0-2.redhat_00005.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.8.0-2.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.4.0-1.redhat_00002.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.3.0-1.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.0.5-1.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.0.3-1.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:4.13.2-1.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.11.0-1.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.9.0-1.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.17.2-1.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.2.2-28.redhat_2.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.16.1-2.redhat_00002.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.18.0-2.redhat_00003.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:4.0.10-3.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:4.1.0-1.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:0.8.12-1.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.14.0-4.redhat_00003.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.0.4-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:0.1.0-2.redhat_00010.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.0.1-5.redhat_00007.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.30.32-3.redhat_00003.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:8.6.6-5.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.84.0-1.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.14.18-2.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.1.8-2.redhat_00002.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.0.0-2.Final_redhat_1.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.2.5-2.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:801.7.0-1.GA_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
1:3.33.0-1.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:6.10.1.202505221210-1.r_redhat_00002.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:8.15.4-4.redhat_00003.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:4.1.2-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.0.1-3.redhat_00003.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:5.0.0-6.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.1.1-1.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.2.0-4.redhat_00007.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.1.0-4.redhat_00007.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.0.13-4.redhat_5.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.10.1-2.redhat_00005.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.0.3-1.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:33.0.0-3.jre_redhat_00004.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.2.224-4.redhat_00003.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.7.19-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:6.6.50-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:7.0.3-3.Final_redhat_00002.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:7.2.6-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:8.0.2-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.4.11-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:0.10.0-2.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:4.1.5-4.redhat_00006.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:4.5.14-5.redhat_00016.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:4.4.16-6.redhat_00011.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:15.0.21-1.Final_redhat_00002.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.1.3-2.redhat_00002.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.1.1-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.0.18-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.18.4-2.redhat_00002.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.18.4-1.redhat_00002.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.8.0-3.redhat_00002.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.1.4-1.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.1.1-5.redhat_00005.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.0.0-3.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.1.0-3.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.1.1-3.redhat_00003.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:4.0.1-2.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.0.2-1.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.0.3-1.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.1.0-5.redhat_00003.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.1.0-4.redhat_00003.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.1.6-5.redhat_00003.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.1.3-1.redhat_00002.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.1.3-3.redhat_00003.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.1.0-2.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.0.0-2.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:6.0.0-6.redhat_00007.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.1.1-1.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.0.1-3.redhat_00004.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.0.2-3.redhat_00006.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.1.0-5.redhat_00003.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:4.0.4-1.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.2.7-1.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.4.1-2.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.9.3-4.redhat_00004.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.6.0-1.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.1.0-4.redhat_00002.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.0.3-2.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.2.3-1.redhat_00002.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:6.0.0-8.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:4.0.6-1.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.0.1-2.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.1.0-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.4.0-2.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.3.1-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.0.1-2.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.7.0-2.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.4.0-2.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:5.0.8-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:4.0.2-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.0.0-3.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.0.1-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.0.0-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.6.2-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.1.19-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.2.3-2.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:16.1.0-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.1.6-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.5.5-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:10.1.1-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:5.0.31-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.1.0-3.Final_redhat_00002.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.1.0-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.5.0-1.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:8.0.0-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.3.2-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:5.0.0-4.SP3_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.0.0-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:5.1.0-2.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.1.0-2.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:7.3.8-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.0.0-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:5.0.0-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.8.16-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.0.0-3.redhat_00009.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
1:5.3.23-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.0.1-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.0.2-1.Final_redhat_00002.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.0.2-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.12.7-1.redhat_00002.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:0.9.6-2.redhat_00002.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:4.0.11-1.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.0.1-2.redhat_00002.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.9.0-3.redhat_00002.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.0.1-1.Final_redhat_3.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.23.1-2.redhat_00002.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:9.11.1-1.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:7.1.2-2.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.2.1-1.redhat_00002.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:4.1.132-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:0.1.10-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:9.37.3-1.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:9.7.1-3.redhat_00002.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:4.3.2-2.redhat_00002.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.1.7-3.redhat_00003.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.4.0-1.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.6.1-1.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:4.0.3-2.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:5.0.14-2.Final_redhat_00002.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.0.4-4.redhat_00005.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.1.12-1.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.2.21-5.redhat_00003.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.2.0-2.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:6.2.15-1.Final_redhat_00002.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.0.1-3.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.2.0-3.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.0.4-2.redhat_00002.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:8.0.0-6.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.0.17-1.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.3.0-1.redhat_00002.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:4.2.2-2.redhat_00003.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.1.0-3.redhat_00003.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.5.0-2.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:4.1.2-2.redhat_00003.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.3.24-4.SP3_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.2.9-1.SP1_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.1.6-3.redhat_1.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.3.0-7.redhat_00010.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:5.1.6-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:8.1.7-4.GA_redhat_00003.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.0.1-4.Final_redhat_00002.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:5.0.12-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.7.0-2.Final_redhat_00003.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.3.0-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.6.9-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.1.4-2.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.1.4-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:8.1.1-11.GA_redhat_00019.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.3.0-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.3.0-1.Final.redhat.00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.0.5-1.Final_redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:7.0.0-1.redhat_00002.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:2.3.0-2.redhat_00002.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.6.3-5.redhat_00008.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.0.4-1.redhat_00002.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:1.2.0-2.redhat_12.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.0.5-1.redhat_00001.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10 |
Unaffected:
0:3.0.4-5.redhat_00007.1.el10eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 8 |
Unaffected:
0:4.0.10-3.redhat_00001.1.el8eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el8 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 8 |
Unaffected:
0:2.0.4-1.Final_redhat_00001.1.el8eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el8 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 8 |
Unaffected:
0:801.7.0-1.GA_redhat_00001.1.el8eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el8 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 8 |
Unaffected:
0:6.6.50-1.Final_redhat_00001.1.el8eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el8 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 8 |
Unaffected:
0:7.3.8-1.Final_redhat_00001.1.el8eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el8 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 8 |
Unaffected:
1:5.3.23-1.Final_redhat_00001.1.el8eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el8 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 8 |
Unaffected:
0:2.3.24-4.SP3_redhat_00001.1.el8eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el8 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 8 |
Unaffected:
0:2.2.9-1.SP1_redhat_00001.1.el8eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el8 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 8 |
Unaffected:
0:8.1.7-4.GA_redhat_00003.1.el8eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el8 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 8 |
Unaffected:
0:2.6.9-1.Final_redhat_00001.1.el8eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el8 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 8 |
Unaffected:
0:8.1.1-11.GA_redhat_00019.1.el8eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el8 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 9 |
Unaffected:
0:4.0.10-3.redhat_00001.1.el9eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el9 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 9 |
Unaffected:
0:2.0.4-1.Final_redhat_00001.1.el9eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el9 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 9 |
Unaffected:
0:801.7.0-1.GA_redhat_00001.1.el9eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el9 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 9 |
Unaffected:
0:6.6.50-1.Final_redhat_00001.1.el9eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el9 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 9 |
Unaffected:
0:7.3.8-1.Final_redhat_00001.1.el9eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el9 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 9 |
Unaffected:
1:5.3.23-1.Final_redhat_00001.1.el9eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el9 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 9 |
Unaffected:
0:2.3.24-4.SP3_redhat_00001.1.el9eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el9 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 9 |
Unaffected:
0:2.2.9-1.SP1_redhat_00001.1.el9eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el9 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 9 |
Unaffected:
0:8.1.7-4.GA_redhat_00003.1.el9eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el9 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 9 |
Unaffected:
0:2.6.9-1.Final_redhat_00001.1.el9eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el9 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 9 |
Unaffected:
0:8.1.1-11.GA_redhat_00019.1.el9eap , < *
(rpm)
cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el9 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 7 |
cpe:/a:redhat:jboss_enterprise_application_platform:7 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform 8 |
cpe:/a:redhat:jboss_enterprise_application_platform:8 |
|
| Red Hat | Red Hat JBoss Enterprise Application Platform Expansion Pack |
cpe:/a:redhat:jbosseapxp |
|
| Red Hat | Red Hat Single Sign-On 7 |
cpe:/a:redhat:red_hat_single_sign_on:7 |
Date Public
2026-07-07 00:00
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2025-12799",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-07-09T13:34:16.067117Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-07-09T14:42:47.239Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el9"
],
"defaultStatus": "unaffected",
"packageName": "io.undertow.jastow-jastow",
"product": "Red Hat JBoss Enterprise Application Platform 8.1",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1-9.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-activemq-artemis",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.40.0-7.redhat_00015.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-activemq-artemis-native",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "1:2.0.0-2.redhat_00005.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-aesh-extensions",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.8.0-2.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-aesh-readline",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.4.0-1.redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-agroal",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.3.0-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-angus",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.0.5-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-angus-activation",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.0.3-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-antlr4",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:4.13.2-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-apache-commons-beanutils",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.11.0-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-apache-commons-cli",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.9.0-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-apache-commons-codec",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.17.2-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-apache-commons-collections",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.2.2-28.redhat_2.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-apache-commons-io",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.16.1-2.redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-apache-commons-lang",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.18.0-2.redhat_00003.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-apache-cxf",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:4.0.10-3.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-apache-cxf-xjc-utils",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:4.1.0-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-apache-mime4j",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:0.8.12-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-apache-sshd",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.14.0-4.redhat_00003.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-artemis-native",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "1:2.0.0-2.redhat_00005.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-artemis-wildfly-integration",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.0.4-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-asyncutil",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:0.1.0-2.redhat_00010.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-atinject",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.0.1-5.redhat_00007.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-aws-java-sdk",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.30.32-3.redhat_00003.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-azure-storage",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:8.6.6-5.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-bouncycastle",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.84.0-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-byte-buddy",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.14.18-2.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-caffeine",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.1.8-2.redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-commons-logging-jboss-logging",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.0.0-2.Final_redhat_1.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-cryptacular",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.2.5-2.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-eap-product-conf-parent",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:801.7.0-1.GA_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-ecj",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "1:3.33.0-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-eclipse-jgit",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:6.10.1.202505221210-1.r_redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-elasticsearch",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:8.15.4-4.redhat_00003.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-elytron-web",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:4.1.2-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-eventstream",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.0.1-3.redhat_00003.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-expressly",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:5.0.0-6.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-fastinfoset",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.1.1-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-fge-btf",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.2.0-4.redhat_00007.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-fge-msg-simple",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.1.0-4.redhat_00007.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-gnu-getopt",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.0.13-4.redhat_5.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-gson",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.10.1-2.redhat_00005.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-guava-failureaccess",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.0.3-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-guava-libraries",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:33.0.0-3.jre_redhat_00004.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-h2database",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.2.224-4.redhat_00003.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-hal-console",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.7.19-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-hibernate",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:6.6.50-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-hibernate-commons-annotations",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:7.0.3-3.Final_redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-hibernate-search",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:7.2.6-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-hibernate-validator",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:8.0.2-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-hornetq",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.4.11-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-hppc",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:0.10.0-2.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-httpcomponents-asyncclient",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:4.1.5-4.redhat_00006.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-httpcomponents-client",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:4.5.14-5.redhat_00016.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-httpcomponents-core",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:4.4.16-6.redhat_00011.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-infinispan",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:15.0.21-1.Final_redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-insights-java-client",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.1.3-2.redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-installation-manager-api",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.1.1-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-ironjacamar",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.0.18-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jackson-annotations",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.18.4-2.redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jackson-core",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.18.4-1.redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jackson-coreutils",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.8.0-3.redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jackson-databind",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.18.4-1.redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jackson-dataformats-text",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.18.4-2.redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jackson-jaxrs-providers",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.18.4-2.redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jackson-modules-base",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.18.4-2.redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jackson-modules-java8",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.18.4-2.redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jakarta-activation",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.1.4-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jakarta-annotation-api",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.1.1-5.redhat_00005.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jakarta-authentication-api",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.0.0-3.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jakarta-authorization-api",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.1.0-3.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jakarta-batch-api",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.1.1-3.redhat_00003.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jakarta-ejb-api",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:4.0.1-2.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jakarta-enterprise-concurrent",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.0.2-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jakarta-enterprise-concurrent-api",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.0.3-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jakarta-enterprise-lang-model",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:4.0.1-2.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jakarta-interceptor-api",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.1.0-5.redhat_00003.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jakarta-jms-api",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.1.0-4.redhat_00003.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jakarta-json",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.1.6-5.redhat_00003.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jakarta-json-api",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.1.3-1.redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jakarta-mail",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.1.3-3.redhat_00003.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jakarta-resource-api",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.1.0-2.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jakarta-security-enterprise-api",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.0.0-2.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jakarta-servlet-api",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:6.0.0-6.redhat_00007.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jakarta-servlet-jsp-api",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.1.1-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jakarta-servlet-jsp-jstl-api",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.0.2-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jakarta-transaction-api",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.0.1-3.redhat_00004.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jakarta-validation-api",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.0.2-3.redhat_00006.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jakarta-websocket",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.1.1-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jakarta-ws-rs-api",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.1.0-5.redhat_00003.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jakarta-xml-bind-api",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:4.0.4-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jandex",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.2.7-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jansi",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.4.1-2.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jasypt",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.9.3-4.redhat_00004.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-java-classmate",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.6.0-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-javaee-jpa-spec",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.1.0-4.redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-javaee-security-soteria",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.0.3-2.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-javaewah",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.2.3-1.redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-javapackages-tools",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:6.0.0-8.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jaxb",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:4.0.6-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jaxbintros",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.0.1-2.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jberet",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.1.0-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jboss-aesh",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.4.0-2.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jboss-cert-helper",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.1.3-2.redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jboss-classfilewriter",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.3.1-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jboss-common-beans",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.0.1-2.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jboss-dmr",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.7.0-2.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jboss-ejb3-ext-api",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.4.0-2.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jboss-ejb-client",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:5.0.8-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jboss-el-api_5.0_spec",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:4.0.2-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jboss-genericjms",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.0.0-3.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jboss-iiop-client",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.0.1-2.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jboss-invocation",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.0.1-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jboss-jakarta-xml-ws-api_4.0_spec",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.0.0-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jboss-logging",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.6.2-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jboss-logmanager",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.1.19-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jboss-marshalling",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.2.3-2.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jboss-metadata",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:16.1.0-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jboss-modules",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.1.6-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jboss-msc",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.5.5-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jboss-openjdk-orb",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:10.1.1-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jboss-remoting",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:5.0.31-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jboss-remoting-jmx",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.1.0-3.Final_redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jboss-saaj-api_3.0_spec",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.0.0-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jboss-stdio",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.1.0-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jboss-threads",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.5.0-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jboss-transaction-spi",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:8.0.0-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jboss-vfs",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.3.2-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jboss-weld-api",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:5.0.0-4.SP3_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jbossws-api",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.0.0-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jbossws-common",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:5.1.0-2.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jbossws-common-tools",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.1.0-2.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jbossws-cxf",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:7.3.8-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jbossws-jaxws-undertow-httpspi",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.0.0-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jbossws-spi",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:5.0.0-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jboss-xnio-base",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.8.16-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jcip-annotations",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.0.0-3.redhat_00009.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jctools",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:4.0.6-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jgroups",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "1:5.3.23-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jgroups-aws",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.0.1-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jgroups-azure",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.0.2-1.Final_redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jgroups-kubernetes",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.0.2-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-joda-time",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.12.7-1.redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jose4j",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:0.9.6-2.redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jsf-impl",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:4.0.11-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jsonb-spec",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.0.1-2.redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-json-patch",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.9.0-3.redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-jul-to-slf4j-stub",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.0.1-1.Final_redhat_3.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-log4j",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.23.1-2.redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-log4j2-jboss-logmanager",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.0.1-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-lucene-solr",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:9.11.1-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-mod_cluster",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.1.0-2.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-narayana",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:7.1.2-2.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-neethi",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.2.1-1.redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-netty",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:4.1.132-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-netty-transport-native-epoll",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:4.1.132-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-netty-xnio-transport",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:0.1.10-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-nimbus-jose-jwt",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:9.37.3-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-objectweb-asm",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:9.7.1-3.redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-opensaml",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:4.3.2-2.redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-parsson",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.1.7-3.redhat_00003.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-pem-keystore",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.4.0-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-plexus-utils",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.6.1-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-protoparser",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:4.0.3-2.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-protostream",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:5.0.14-2.Final_redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-reactive-streams",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.0.4-4.redhat_00005.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-reactivex-rxjava",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.1.12-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-reactivex-rxjava2",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.2.21-5.redhat_00003.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-resilience4j",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.2.0-2.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-resteasy",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:6.2.15-1.Final_redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-resteasy-extensions",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.0.1-3.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-resteasy-spring",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.2.0-3.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-saaj-impl",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.0.4-2.redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-shibboleth-java-support",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:8.0.0-6.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-slf4j",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.0.17-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-slf4j-jboss-logmanager",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.0.2-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-snakeyaml",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.3.0-1.redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-stax2-api",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:4.2.2-2.redhat_00003.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-stax-ex",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.1.0-3.redhat_00003.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-staxmapper",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.5.0-2.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-sun-istack-commons",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:4.1.2-2.redhat_00003.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-undertow",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.3.24-4.SP3_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-undertow-jastow",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.2.9-1.SP1_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-vdx",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.1.6-3.redhat_1.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-velocity",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.3.0-7.redhat_00010.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-weld-core",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:5.1.6-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-wildfly",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:8.1.7-4.GA_redhat_00003.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-wildfly-client-config",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.0.1-4.Final_redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-wildfly-clustering",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:5.0.12-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-wildfly-common",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.7.0-2.Final_redhat_00003.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-wildfly-discovery",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.3.0-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-wildfly-elytron",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.6.9-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-wildfly-elytron-ee",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.1.4-2.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-wildfly-http-client",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.1.4-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-wildfly-javadocs",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:8.1.1-11.GA_redhat_00019.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-wildfly-naming-client",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.0.1-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-wildfly-openssl",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.3.0-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-wildfly-openssl-el10-x86_64",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.3.0-1.Final.redhat.00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-wildfly-transaction-client",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.0.5-1.Final_redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-woodstox-core",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:7.0.0-1.redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-ws-commons-XmlSchema",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.3.0-2.redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-wsdl4j",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.6.3-5.redhat_00008.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-wss4j",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.0.4-1.redhat_00002.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-xml-commons-resolver",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.2.0-2.redhat_12.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-xml-security",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.0.5-1.redhat_00001.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el10"
],
"defaultStatus": "affected",
"packageName": "eap8-yasson",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.0.4-5.redhat_00007.1.el10eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el8"
],
"defaultStatus": "affected",
"packageName": "eap8-apache-cxf",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 8",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:4.0.10-3.redhat_00001.1.el8eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el8"
],
"defaultStatus": "affected",
"packageName": "eap8-artemis-wildfly-integration",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 8",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.0.4-1.Final_redhat_00001.1.el8eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el8"
],
"defaultStatus": "affected",
"packageName": "eap8-eap-product-conf-parent",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 8",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:801.7.0-1.GA_redhat_00001.1.el8eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el8"
],
"defaultStatus": "affected",
"packageName": "eap8-hibernate",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 8",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:6.6.50-1.Final_redhat_00001.1.el8eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el8"
],
"defaultStatus": "affected",
"packageName": "eap8-jbossws-cxf",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 8",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:7.3.8-1.Final_redhat_00001.1.el8eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el8"
],
"defaultStatus": "affected",
"packageName": "eap8-jgroups",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 8",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "1:5.3.23-1.Final_redhat_00001.1.el8eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el8"
],
"defaultStatus": "affected",
"packageName": "eap8-undertow",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 8",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.3.24-4.SP3_redhat_00001.1.el8eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el8"
],
"defaultStatus": "affected",
"packageName": "eap8-undertow-jastow",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 8",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.2.9-1.SP1_redhat_00001.1.el8eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el8"
],
"defaultStatus": "affected",
"packageName": "eap8-wildfly",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 8",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:8.1.7-4.GA_redhat_00003.1.el8eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el8"
],
"defaultStatus": "affected",
"packageName": "eap8-wildfly-elytron",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 8",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.6.9-1.Final_redhat_00001.1.el8eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el8"
],
"defaultStatus": "affected",
"packageName": "eap8-wildfly-javadocs",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 8",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:8.1.1-11.GA_redhat_00019.1.el8eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el9"
],
"defaultStatus": "affected",
"packageName": "eap8-apache-cxf",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:4.0.10-3.redhat_00001.1.el9eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el9"
],
"defaultStatus": "affected",
"packageName": "eap8-artemis-wildfly-integration",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.0.4-1.Final_redhat_00001.1.el9eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el9"
],
"defaultStatus": "affected",
"packageName": "eap8-eap-product-conf-parent",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:801.7.0-1.GA_redhat_00001.1.el9eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el9"
],
"defaultStatus": "affected",
"packageName": "eap8-hibernate",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:6.6.50-1.Final_redhat_00001.1.el9eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el9"
],
"defaultStatus": "affected",
"packageName": "eap8-jbossws-cxf",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:7.3.8-1.Final_redhat_00001.1.el9eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el9"
],
"defaultStatus": "affected",
"packageName": "eap8-jgroups",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "1:5.3.23-1.Final_redhat_00001.1.el9eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el9"
],
"defaultStatus": "affected",
"packageName": "eap8-undertow",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.3.24-4.SP3_redhat_00001.1.el9eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el9"
],
"defaultStatus": "affected",
"packageName": "eap8-undertow-jastow",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.2.9-1.SP1_redhat_00001.1.el9eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el9"
],
"defaultStatus": "affected",
"packageName": "eap8-wildfly",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:8.1.7-4.GA_redhat_00003.1.el9eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el9"
],
"defaultStatus": "affected",
"packageName": "eap8-wildfly-elytron",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.6.9-1.Final_redhat_00001.1.el9eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8.1::el9"
],
"defaultStatus": "affected",
"packageName": "eap8-wildfly-javadocs",
"product": "Red Hat JBoss Enterprise Application Platform 8.1 for RHEL 9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:8.1.1-11.GA_redhat_00019.1.el9eap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:7"
],
"defaultStatus": "affected",
"packageName": "eap74-els-openjdk11-openshift-rhel8/eap74-els-openjdk11-openshift-rhel8",
"product": "Red Hat JBoss Enterprise Application Platform 7",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:7"
],
"defaultStatus": "affected",
"packageName": "eap74-els-openjdk17-openshift-rhel8/eap74-els-openjdk17-openshift-rhel8",
"product": "Red Hat JBoss Enterprise Application Platform 7",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:7"
],
"defaultStatus": "affected",
"packageName": "eap74-els-openjdk8-openshift-rhel8/eap74-els-openjdk8-openshift-rhel8",
"product": "Red Hat JBoss Enterprise Application Platform 7",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:7"
],
"defaultStatus": "affected",
"packageName": "io.undertow.jastow-jastow",
"product": "Red Hat JBoss Enterprise Application Platform 7",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:7"
],
"defaultStatus": "affected",
"packageName": "jastow",
"product": "Red Hat JBoss Enterprise Application Platform 7",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:7"
],
"defaultStatus": "affected",
"packageName": "jboss-eap-7/eap74-els-openjdk17-openshift-rhel8",
"product": "Red Hat JBoss Enterprise Application Platform 7",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:7"
],
"defaultStatus": "affected",
"packageName": "jboss-eap-7/eap74-els-openjdk8-openshift-rhel8",
"product": "Red Hat JBoss Enterprise Application Platform 7",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html",
"cpes": [
"cpe:/a:redhat:jboss_enterprise_application_platform:8"
],
"defaultStatus": "affected",
"packageName": "jastow",
"product": "Red Hat JBoss Enterprise Application Platform 8",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html",
"cpes": [
"cpe:/a:redhat:jbosseapxp"
],
"defaultStatus": "unaffected",
"packageName": "io.undertow.jastow-jastow",
"product": "Red Hat JBoss Enterprise Application Platform Expansion Pack",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html",
"cpes": [
"cpe:/a:redhat:jbosseapxp"
],
"defaultStatus": "affected",
"packageName": "jastow",
"product": "Red Hat JBoss Enterprise Application Platform Expansion Pack",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:red_hat_single_sign_on:7"
],
"defaultStatus": "affected",
"packageName": "jastow",
"product": "Red Hat Single Sign-On 7",
"vendor": "Red Hat"
}
],
"datePublic": "2026-07-07T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "A flaw was found in Jastow. Jastow is vulnerable to Cross-Site Scripting (XSS) attack. If using a set of combined configuration to allow unescaped characters in URL with embedded Undertow and Jastow, a server might be vulnerable to improper input handling."
}
],
"metrics": [
{
"other": {
"content": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"value": "Moderate"
},
"type": "Red Hat severity rating"
}
},
{
"cvssV3_1": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:H/A:N",
"version": "3.1"
},
"format": "CVSS"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-79",
"description": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-07-08T00:00:08.461Z",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"name": "RHSA-2026:36342",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:36342"
},
{
"name": "RHSA-2026:36343",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:36343"
},
{
"name": "RHSA-2026:36344",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:36344"
},
{
"name": "RHSA-2026:36345",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:36345"
},
{
"tags": [
"vdb-entry",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/security/cve/CVE-2025-12799"
},
{
"name": "RHBZ#2413071",
"tags": [
"issue-tracking",
"x_refsource_REDHAT"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2413071"
}
],
"timeline": [
{
"lang": "en",
"time": "2025-11-06T11:09:24.742Z",
"value": "Reported to Red Hat."
},
{
"lang": "en",
"time": "2026-07-07T00:00:00.000Z",
"value": "Made public."
}
],
"title": "Jastow: jastow cross-site scripting attack due to unsanitized uri",
"workarounds": [
{
"lang": "en",
"value": "It is possible to contruct successful attack vector if and only if customer or client is using embedded Undertow and Jastow together in their application and the following conditions are met:\n * Undertow was configured with UndertowOptions.ALLOW_UNESCAPED_CHARACTERS_IN_URL set to \u0027true\u0027 value\n * DeploymentInfo configured with setEscapeErrorMessage(true) method was passed to Undertow\u0027s Servlet Container instance"
}
],
"x_generator": {
"engine": "cvelib 1.8.0"
},
"x_redhatCweChain": "CWE-79: Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2025-12799",
"datePublished": "2026-07-07T16:18:57.555Z",
"dateReserved": "2025-11-06T11:15:12.378Z",
"dateUpdated": "2026-07-09T14:42:47.239Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
CVE-2026-14969 (GCVE-0-2026-14969)
Vulnerability from cvelistv5 – Published: 2026-07-07 15:48 – Updated: 2026-07-07 16:11
VLAI
EPSS
VEX
Title
389-ds-base: 389-ds-base: static initialization vector in aes-cbc/3des-cbc attribute encryption
Summary
A flaw was found in 389-ds-base where the LDBM backend attribute encryption uses a hardcoded static initialization vector for AES-CBC and 3DES-CBC operations, allowing an attacker with privileged filesystem access to detect plaintext equality across encrypted entries by comparing ciphertext blocks.
Severity
4.4 (Medium)
SSVC
Exploitation: none
Automatable: no
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
- CWE-329 - Generation of Predictable IV with CBC Mode
Assigner
References
2 references
| URL | Tags |
|---|---|
| https://access.redhat.com/security/cve/CVE-2026-14969 | vdb-entryx_refsource_REDHAT |
| https://bugzilla.redhat.com/show_bug.cgi?id=2497735 | issue-trackingx_refsource_REDHAT |
Impacted products
8 products
| Vendor | Product | Version | |
|---|---|---|---|
| Red Hat | Red Hat Directory Server 11 |
cpe:/a:redhat:directory_server:11 |
|
| Red Hat | Red Hat Directory Server 12 |
cpe:/a:redhat:directory_server:12 |
|
| Red Hat | Red Hat Directory Server 13 |
cpe:/a:redhat:directory_server:13 |
|
| Red Hat | Red Hat Enterprise Linux 10 |
cpe:/o:redhat:enterprise_linux:10 |
|
| Red Hat | Red Hat Enterprise Linux 6 |
cpe:/o:redhat:enterprise_linux:6 |
|
| Red Hat | Red Hat Enterprise Linux 7 |
cpe:/o:redhat:enterprise_linux:7 |
|
| Red Hat | Red Hat Enterprise Linux 8 |
cpe:/o:redhat:enterprise_linux:8 |
|
| Red Hat | Red Hat Enterprise Linux 9 |
cpe:/o:redhat:enterprise_linux:9 |
Date Public
2026-07-07 15:32
Credits
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-14969",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-07-07T16:11:32.041523Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-07-07T16:11:40.145Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:directory_server:11"
],
"defaultStatus": "affected",
"packageName": "redhat-ds:11/389-ds-base",
"product": "Red Hat Directory Server 11",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:directory_server:12"
],
"defaultStatus": "affected",
"packageName": "redhat-ds:12/389-ds-base",
"product": "Red Hat Directory Server 12",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:directory_server:13"
],
"defaultStatus": "affected",
"packageName": "389-ds-base",
"product": "Red Hat Directory Server 13",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:10"
],
"defaultStatus": "affected",
"packageName": "389-ds-base",
"product": "Red Hat Enterprise Linux 10",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:6"
],
"defaultStatus": "unknown",
"packageName": "389-ds-base",
"product": "Red Hat Enterprise Linux 6",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:7"
],
"defaultStatus": "affected",
"packageName": "389-ds-base",
"product": "Red Hat Enterprise Linux 7",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:8"
],
"defaultStatus": "affected",
"packageName": "389-ds:1.4/389-ds-base",
"product": "Red Hat Enterprise Linux 8",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:9"
],
"defaultStatus": "affected",
"packageName": "389-ds-base",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat"
}
],
"credits": [
{
"lang": "en",
"value": "Red Hat would like to thank Andrew Rukin (Arenadata) for reporting this issue."
}
],
"datePublic": "2026-07-07T15:32:28.365Z",
"descriptions": [
{
"lang": "en",
"value": "A flaw was found in 389-ds-base where the LDBM backend attribute encryption uses a hardcoded static initialization vector for AES-CBC and 3DES-CBC operations, allowing an attacker with privileged filesystem access to detect plaintext equality across encrypted entries by comparing ciphertext blocks."
}
],
"metrics": [
{
"other": {
"content": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"value": "Moderate"
},
"type": "Red Hat severity rating"
}
},
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"format": "CVSS"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-329",
"description": "Generation of Predictable IV with CBC Mode",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-07-07T15:48:04.478Z",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"tags": [
"vdb-entry",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/security/cve/CVE-2026-14969"
},
{
"name": "RHBZ#2497735",
"tags": [
"issue-tracking",
"x_refsource_REDHAT"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2497735"
}
],
"timeline": [
{
"lang": "en",
"time": "2026-07-07T14:53:34.580Z",
"value": "Reported to Red Hat."
},
{
"lang": "en",
"time": "2026-07-07T15:32:28.365Z",
"value": "Made public."
}
],
"title": "389-ds-base: 389-ds-base: static initialization vector in aes-cbc/3des-cbc attribute encryption",
"workarounds": [
{
"lang": "en",
"value": "Disable attribute encryption if it is not required for the deployment. If attribute encryption is required, restrict filesystem access to the LDBM database directory (/var/lib/dirsrv/slapd-\u003cinstance\u003e/db/) to ensure only authorized administrators can read database files."
}
],
"x_generator": {
"engine": "cvelib 1.8.0"
},
"x_redhatCweChain": "CWE-329: Generation of Predictable IV with CBC Mode"
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2026-14969",
"datePublished": "2026-07-07T15:48:04.478Z",
"dateReserved": "2026-07-07T15:32:40.440Z",
"dateUpdated": "2026-07-07T16:11:40.145Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
CVE-2026-14935 (GCVE-0-2026-14935)
Vulnerability from cvelistv5 – Published: 2026-07-07 15:37 – Updated: 2026-07-07 16:13
VLAI
EPSS
VEX
Title
Gstreamer: gstreamer: webrtcbin accepts remote sdp without a=fingerprint due to inverted presence check
Summary
A logic vulnerability was found in GStreamer's webrtcbin component. The _check_sdp_crypto() function contains an inverted boolean condition that causes it to accept remote SDP offers or answers that lack the required a=fingerprint attribute, while incorrectly rejecting those that include it. An attacker with the ability to intercept and modify WebRTC signaling messages could exploit this to bypass the SDP-level DTLS certificate fingerprint binding, weakening defenses against man-in-the-middle attacks on media streams.
Severity
SSVC
Exploitation: none
Automatable: no
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
- CWE-670 - Always-Incorrect Control Flow Implementation
Assigner
References
4 references
| URL | Tags |
|---|---|
| https://access.redhat.com/security/cve/CVE-2026-14935 | vdb-entryx_refsource_REDHAT |
| https://bugzilla.redhat.com/show_bug.cgi?id=2497679 | issue-trackingx_refsource_REDHAT |
| https://gitlab.freedesktop.org/gstreamer/gstreame… | |
| https://gitlab.freedesktop.org/gstreamer/gstreame… |
Impacted products
5 products
| Vendor | Product | Version | |
|---|---|---|---|
| Red Hat | Red Hat Enterprise Linux 10 |
cpe:/o:redhat:enterprise_linux:10 |
|
| Red Hat | Red Hat Enterprise Linux 6 |
cpe:/o:redhat:enterprise_linux:6 |
|
| Red Hat | Red Hat Enterprise Linux 7 |
cpe:/o:redhat:enterprise_linux:7 |
|
| Red Hat | Red Hat Enterprise Linux 8 |
cpe:/o:redhat:enterprise_linux:8 |
|
| Red Hat | Red Hat Enterprise Linux 9 |
cpe:/o:redhat:enterprise_linux:9 |
Date Public
2026-07-07 15:25
Credits
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-14935",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-07-07T16:13:21.634704Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-07-07T16:13:27.854Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:10"
],
"defaultStatus": "affected",
"packageName": "gstreamer1-plugins-bad-free",
"product": "Red Hat Enterprise Linux 10",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:6"
],
"defaultStatus": "affected",
"packageName": "gstreamer-plugins-bad-free",
"product": "Red Hat Enterprise Linux 6",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:7"
],
"defaultStatus": "affected",
"packageName": "gstreamer1-plugins-bad-free",
"product": "Red Hat Enterprise Linux 7",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:7"
],
"defaultStatus": "affected",
"packageName": "gstreamer-plugins-bad-free",
"product": "Red Hat Enterprise Linux 7",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:8"
],
"defaultStatus": "affected",
"packageName": "gstreamer1-plugins-bad-free",
"product": "Red Hat Enterprise Linux 8",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:9"
],
"defaultStatus": "affected",
"packageName": "gstreamer1-plugins-bad-free",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat"
}
],
"credits": [
{
"lang": "en",
"value": "Red Hat would like to thank Clouditera Security (Clouditera), NSFOCUS (NSFOCUS), and Z.ai Security (Z.ai) for reporting this issue."
}
],
"datePublic": "2026-07-07T15:25:24.763Z",
"descriptions": [
{
"lang": "en",
"value": "A logic vulnerability was found in GStreamer\u0027s webrtcbin component. The _check_sdp_crypto() function contains an inverted boolean condition that causes it to accept remote SDP offers or answers that lack the required a=fingerprint attribute, while incorrectly rejecting those that include it. An attacker with the ability to intercept and modify WebRTC signaling messages could exploit this to bypass the SDP-level DTLS certificate fingerprint binding, weakening defenses against man-in-the-middle attacks on media streams."
}
],
"metrics": [
{
"other": {
"content": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"value": "Low"
},
"type": "Red Hat severity rating"
}
},
{
"cvssV3_1": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 3.7,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"format": "CVSS"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-670",
"description": "Always-Incorrect Control Flow Implementation",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-07-07T15:37:58.898Z",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"tags": [
"vdb-entry",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/security/cve/CVE-2026-14935"
},
{
"name": "RHBZ#2497679",
"tags": [
"issue-tracking",
"x_refsource_REDHAT"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2497679"
},
{
"url": "https://gitlab.freedesktop.org/gstreamer/gstreamer-security/-/merge_requests/98"
},
{
"url": "https://gitlab.freedesktop.org/gstreamer/gstreamer/-/work_items/5171"
}
],
"timeline": [
{
"lang": "en",
"time": "2026-07-07T00:00:00.000Z",
"value": "Reported to Red Hat."
},
{
"lang": "en",
"time": "2026-07-07T15:25:24.763Z",
"value": "Made public."
}
],
"title": "Gstreamer: gstreamer: webrtcbin accepts remote sdp without a=fingerprint due to inverted presence check",
"workarounds": [
{
"lang": "en",
"value": "There is no complete mitigation for this vulnerability. The following measures can reduce risk:\n\n1. Ensure WebRTC signaling channels use TLS encryption to prevent SDP modification in transit.\n2. If WebRTC functionality is not required, remove the webrtcbin plugin shared object from the GStreamer plugins directory (typically /usr/lib64/gstreamer-1.0/libgstwebrtc.so)."
}
],
"x_generator": {
"engine": "cvelib 1.8.0"
},
"x_redhatCweChain": "CWE-670: Always-Incorrect Control Flow Implementation"
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2026-14935",
"datePublished": "2026-07-07T15:37:58.898Z",
"dateReserved": "2026-07-07T11:25:35.489Z",
"dateUpdated": "2026-07-07T16:13:27.854Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
CVE-2026-14940 (GCVE-0-2026-14940)
Vulnerability from cvelistv5 – Published: 2026-07-07 13:54 – Updated: 2026-07-07 15:35
VLAI
EPSS
VEX
Title
389-ds-base: 389-ds-base: heap-buffer-overflow in dn normalization via quoted multivalued rdn
Summary
A heap-buffer-overflow flaw was found in 389 Directory Server (389-ds-base). When
normalizing a Distinguished Name (DN) that contains a legacy-quoted value encoding a
multivalued nested Relative Distinguished Name (RDN), the server can write past the
end of a heap allocation while sorting RDN attribute-value pairs. An unauthenticated
remote attacker can trigger this condition by sending an LDAP operation whose DN
reaches the DN normalization routine, such as a search with a crafted base DN. This
can corrupt heap memory and may cause denial of service.
Severity
5.3 (Medium)
SSVC
Exploitation: none
Automatable: yes
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
- CWE-122 - Heap-based Buffer Overflow
Assigner
References
2 references
| URL | Tags |
|---|---|
| https://access.redhat.com/security/cve/CVE-2026-14940 | vdb-entryx_refsource_REDHAT |
| https://bugzilla.redhat.com/show_bug.cgi?id=2497697 | issue-trackingx_refsource_REDHAT |
Impacted products
8 products
| Vendor | Product | Version | |
|---|---|---|---|
| Red Hat | Red Hat Directory Server 11 |
cpe:/a:redhat:directory_server:11 |
|
| Red Hat | Red Hat Directory Server 12 |
cpe:/a:redhat:directory_server:12 |
|
| Red Hat | Red Hat Directory Server 13 |
cpe:/a:redhat:directory_server:13 |
|
| Red Hat | Red Hat Enterprise Linux 10 |
cpe:/o:redhat:enterprise_linux:10 |
|
| Red Hat | Red Hat Enterprise Linux 6 |
cpe:/o:redhat:enterprise_linux:6 |
|
| Red Hat | Red Hat Enterprise Linux 7 |
cpe:/o:redhat:enterprise_linux:7 |
|
| Red Hat | Red Hat Enterprise Linux 8 |
cpe:/o:redhat:enterprise_linux:8 |
|
| Red Hat | Red Hat Enterprise Linux 9 |
cpe:/o:redhat:enterprise_linux:9 |
Date Public
2026-07-07 12:01
Credits
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-14940",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "yes"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-07-07T15:35:34.392277Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-07-07T15:35:45.502Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:directory_server:11"
],
"defaultStatus": "affected",
"packageName": "redhat-ds:11/389-ds-base",
"product": "Red Hat Directory Server 11",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:directory_server:12"
],
"defaultStatus": "affected",
"packageName": "redhat-ds:12/389-ds-base",
"product": "Red Hat Directory Server 12",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:directory_server:13"
],
"defaultStatus": "affected",
"packageName": "389-ds-base",
"product": "Red Hat Directory Server 13",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:10"
],
"defaultStatus": "affected",
"packageName": "389-ds-base",
"product": "Red Hat Enterprise Linux 10",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:6"
],
"defaultStatus": "unknown",
"packageName": "389-ds-base",
"product": "Red Hat Enterprise Linux 6",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:7"
],
"defaultStatus": "affected",
"packageName": "389-ds-base",
"product": "Red Hat Enterprise Linux 7",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:8"
],
"defaultStatus": "affected",
"packageName": "389-ds:1.4/389-ds-base",
"product": "Red Hat Enterprise Linux 8",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:9"
],
"defaultStatus": "affected",
"packageName": "389-ds-base",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat"
}
],
"credits": [
{
"lang": "en",
"value": "Red Hat would like to thank Denis Rastyogin (ALT Linux) for reporting this issue."
}
],
"datePublic": "2026-07-07T12:01:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "A heap-buffer-overflow flaw was found in 389 Directory Server (389-ds-base). When\nnormalizing a Distinguished Name (DN) that contains a legacy-quoted value encoding a\nmultivalued nested Relative Distinguished Name (RDN), the server can write past the\nend of a heap allocation while sorting RDN attribute-value pairs. An unauthenticated\nremote attacker can trigger this condition by sending an LDAP operation whose DN\nreaches the DN normalization routine, such as a search with a crafted base DN. This\ncan corrupt heap memory and may cause denial of service."
}
],
"metrics": [
{
"other": {
"content": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"value": "Moderate"
},
"type": "Red Hat severity rating"
}
},
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"format": "CVSS"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-122",
"description": "Heap-based Buffer Overflow",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-07-07T13:54:20.688Z",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"tags": [
"vdb-entry",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/security/cve/CVE-2026-14940"
},
{
"name": "RHBZ#2497697",
"tags": [
"issue-tracking",
"x_refsource_REDHAT"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2497697"
}
],
"timeline": [
{
"lang": "en",
"time": "2026-06-02T00:00:00.000Z",
"value": "Reported to Red Hat."
},
{
"lang": "en",
"time": "2026-07-07T12:01:00.000Z",
"value": "Made public."
}
],
"title": "389-ds-base: 389-ds-base: heap-buffer-overflow in dn normalization via quoted multivalued rdn",
"workarounds": [
{
"lang": "en",
"value": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability."
}
],
"x_generator": {
"engine": "cvelib 1.8.0"
},
"x_redhatCweChain": "CWE-122: Heap-based Buffer Overflow"
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2026-14940",
"datePublished": "2026-07-07T13:54:20.688Z",
"dateReserved": "2026-07-07T12:01:04.779Z",
"dateUpdated": "2026-07-07T15:35:45.502Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
CVE-2026-11610 (GCVE-0-2026-11610)
Vulnerability from cvelistv5 – Published: 2026-07-07 09:17 – Updated: 2026-07-08 21:02
VLAI
EPSS
VEX
Title
389-ds-base: 389-ds-base: heap buffer overflow in sasl_io_recv() via padded sasl unbind
Summary
A heap buffer overflow flaw was found in the SASL I/O layer of 389 Directory Server
(389-ds-base). After a successful SASL bind with integrity protection (SSF > 0),
an authenticated attacker can send a specially crafted oversized LDAP UNBIND packet
that is copied into a 512-byte heap receive buffer without a bounds check in
sasl_io_recv() in sasl_io.c. This allows up to approximately 2 megabytes of
attacker-controlled data to overflow the buffer, causing a denial of service (server
crash). In FreeIPA and Red Hat Identity Management deployments, any domain user with
a valid Kerberos ticket, any enrolled host, or any service account can trigger this
vulnerability over the network after authenticating via GSSAPI.
The vulnerable code path has existed since approximately 2013 (389-ds-base 1.3.2) and
was not addressed by the CVE-2025-14905 fix, which patched a separate heap overflow
in schema.c only.
Severity
8.8 (High)
SSVC
Exploitation: none
Automatable: no
Technical Impact: total
CISA Coordinator (v2.0.3)
CWE
- CWE-122 - Heap-based Buffer Overflow
Assigner
References
19 references
Impacted products
24 products
| Vendor | Product | Version | |
|---|---|---|---|
| 389ds | 389-ds-base |
Affected:
1.3.2 , ≤ 3.3.0
(semver)
|
|
| Red Hat | Red Hat Directory Server 11.5 E4S for RHEL 8 |
Unaffected:
8060020260702180044.0ca98e7e , < *
(rpm)
cpe:/a:redhat:directory_server_e4s:11.5::el8 |
|
| Red Hat | Red Hat Directory Server 11.7 E4S for RHEL 8 |
Unaffected:
8080020260702180836.f969626e , < *
(rpm)
cpe:/a:redhat:directory_server_e4s:11.7::el8 |
|
| Red Hat | Red Hat Directory Server 11.9 for RHEL 8 |
Unaffected:
8100020260702145313.37ed7c03 , < *
(rpm)
cpe:/a:redhat:directory_server:11.9::el8 |
|
| Red Hat | Red Hat Directory Server 12.2 E4S for RHEL 9 |
Unaffected:
9020020260703060155.1674d574 , < *
(rpm)
cpe:/a:redhat:directory_server_e4s:12.2::el9 |
|
| Red Hat | Red Hat Directory Server 12.4 E4S for RHEL 9 |
Unaffected:
9040020260703055735.1674d574 , < *
(rpm)
cpe:/a:redhat:directory_server_e4s:12.4::el9 |
|
| Red Hat | Red Hat Enterprise Linux 10 |
Unaffected:
0:3.2.0-8.el10_2 , < *
(rpm)
cpe:/o:redhat:enterprise_linux:10.2 |
|
| Red Hat | Red Hat Enterprise Linux 10.0 Extended Update Support |
Unaffected:
0:3.0.6-19.el10_0 , < *
(rpm)
cpe:/o:redhat:enterprise_linux_eus:10.0 |
|
| Red Hat | Red Hat Enterprise Linux 7 Extended Lifecycle Support |
Unaffected:
0:1.3.11.1-13.el7_9 , < *
(rpm)
cpe:/o:redhat:rhel_els:7 |
|
| Red Hat | Red Hat Enterprise Linux 8 |
Unaffected:
8100020260626120929.25e700aa , < *
(rpm)
cpe:/a:redhat:enterprise_linux:8::appstream |
|
| Red Hat | Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support |
Unaffected:
8040020260629123121.96015a92 , < *
(rpm)
cpe:/a:redhat:rhel_aus:8.4::appstream cpe:/a:redhat:rhel_eus_long_life:8.4::appstream |
|
| Red Hat | Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On |
Unaffected:
8040020260629123121.96015a92 , < *
(rpm)
cpe:/a:redhat:rhel_aus:8.4::appstream cpe:/a:redhat:rhel_eus_long_life:8.4::appstream |
|
| Red Hat | Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support |
Unaffected:
8060020260626130540.824efc52 , < *
(rpm)
cpe:/a:redhat:rhel_aus:8.6::appstream cpe:/a:redhat:rhel_eus_long_life:8.6::appstream |
|
| Red Hat | Red Hat Enterprise Linux 8.6 Extended Update Support Long-Life Add-On |
Unaffected:
8060020260626130540.824efc52 , < *
(rpm)
cpe:/a:redhat:rhel_aus:8.6::appstream cpe:/a:redhat:rhel_eus_long_life:8.6::appstream |
|
| Red Hat | Red Hat Enterprise Linux 8.8 Telecommunications Update Service |
Unaffected:
8080020260630025241.6dbb3803 , < *
(rpm)
cpe:/a:redhat:rhel_e4s:8.8::appstream cpe:/a:redhat:rhel_tus:8.8::appstream |
|
| Red Hat | Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions |
Unaffected:
8080020260630025241.6dbb3803 , < *
(rpm)
cpe:/a:redhat:rhel_e4s:8.8::appstream cpe:/a:redhat:rhel_tus:8.8::appstream |
|
| Red Hat | Red Hat Enterprise Linux 9 |
Unaffected:
0:2.8.0-8.el9_8 , < *
(rpm)
cpe:/a:redhat:enterprise_linux:9::appstream cpe:/a:redhat:enterprise_linux:9::crb |
|
| Red Hat | Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions |
Unaffected:
0:2.2.4-19.el9_2 , < *
(rpm)
cpe:/a:redhat:rhel_e4s:9.2::appstream |
|
| Red Hat | Red Hat Enterprise Linux 9.4 Update Services for SAP Solutions |
Unaffected:
0:2.4.5-26.el9_4 , < *
(rpm)
cpe:/a:redhat:rhel_e4s:9.4::appstream |
|
| Red Hat | Red Hat Enterprise Linux 9.6 Extended Update Support |
Unaffected:
0:2.6.1-22.el9_6 , < *
(rpm)
cpe:/a:redhat:rhel_eus:9.6::appstream cpe:/a:redhat:rhel_eus:9.6::crb |
|
| Red Hat | Red Hat Directory Server 13.2 |
Unaffected:
1783452100 , < *
(rpm)
cpe:/a:redhat:directory_server:13.2::el10 |
|
| Red Hat | Red Hat Directory Server 12 |
cpe:/a:redhat:directory_server:12 |
|
| Red Hat | Red Hat Directory Server 13 |
cpe:/a:redhat:directory_server:13 |
|
| Red Hat | Red Hat Enterprise Linux 6 |
cpe:/o:redhat:enterprise_linux:6 |
Date Public
2026-07-07 09:00
Credits
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-11610",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-07-08T21:02:20.457715Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-07-08T21:02:28.863Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"collectionURL": "https://github.com/389ds/389-ds-base",
"defaultStatus": "unaffected",
"packageName": "389-ds-base",
"product": "389-ds-base",
"vendor": "389ds",
"versions": [
{
"lessThanOrEqual": "3.3.0",
"status": "affected",
"version": "1.3.2",
"versionType": "semver"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:directory_server_e4s:11.5::el8"
],
"defaultStatus": "affected",
"packageName": "redhat-ds:11",
"product": "Red Hat Directory Server 11.5 E4S for RHEL 8",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "8060020260702180044.0ca98e7e",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:directory_server_e4s:11.7::el8"
],
"defaultStatus": "affected",
"packageName": "redhat-ds:11",
"product": "Red Hat Directory Server 11.7 E4S for RHEL 8",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "8080020260702180836.f969626e",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:directory_server:11.9::el8"
],
"defaultStatus": "affected",
"packageName": "redhat-ds:11",
"product": "Red Hat Directory Server 11.9 for RHEL 8",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "8100020260702145313.37ed7c03",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:directory_server_e4s:12.2::el9"
],
"defaultStatus": "affected",
"packageName": "redhat-ds:12",
"product": "Red Hat Directory Server 12.2 E4S for RHEL 9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "9020020260703060155.1674d574",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:directory_server_e4s:12.4::el9"
],
"defaultStatus": "affected",
"packageName": "redhat-ds:12",
"product": "Red Hat Directory Server 12.4 E4S for RHEL 9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "9040020260703055735.1674d574",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:10.2"
],
"defaultStatus": "affected",
"packageName": "389-ds-base",
"product": "Red Hat Enterprise Linux 10",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.2.0-8.el10_2",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux_eus:10.0"
],
"defaultStatus": "affected",
"packageName": "389-ds-base",
"product": "Red Hat Enterprise Linux 10.0 Extended Update Support",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:3.0.6-19.el10_0",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:rhel_els:7"
],
"defaultStatus": "affected",
"packageName": "389-ds-base",
"product": "Red Hat Enterprise Linux 7 Extended Lifecycle Support",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.3.11.1-13.el7_9",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:enterprise_linux:8::appstream"
],
"defaultStatus": "affected",
"packageName": "389-ds:1.4",
"product": "Red Hat Enterprise Linux 8",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "8100020260626120929.25e700aa",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:rhel_aus:8.4::appstream",
"cpe:/a:redhat:rhel_eus_long_life:8.4::appstream"
],
"defaultStatus": "affected",
"packageName": "389-ds:1.4",
"product": "Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "8040020260629123121.96015a92",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:rhel_aus:8.4::appstream",
"cpe:/a:redhat:rhel_eus_long_life:8.4::appstream"
],
"defaultStatus": "affected",
"packageName": "389-ds:1.4",
"product": "Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "8040020260629123121.96015a92",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:rhel_aus:8.6::appstream",
"cpe:/a:redhat:rhel_eus_long_life:8.6::appstream"
],
"defaultStatus": "affected",
"packageName": "389-ds:1.4",
"product": "Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "8060020260626130540.824efc52",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:rhel_aus:8.6::appstream",
"cpe:/a:redhat:rhel_eus_long_life:8.6::appstream"
],
"defaultStatus": "affected",
"packageName": "389-ds:1.4",
"product": "Red Hat Enterprise Linux 8.6 Extended Update Support Long-Life Add-On",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "8060020260626130540.824efc52",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:rhel_e4s:8.8::appstream",
"cpe:/a:redhat:rhel_tus:8.8::appstream"
],
"defaultStatus": "affected",
"packageName": "389-ds:1.4",
"product": "Red Hat Enterprise Linux 8.8 Telecommunications Update Service",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "8080020260630025241.6dbb3803",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:rhel_e4s:8.8::appstream",
"cpe:/a:redhat:rhel_tus:8.8::appstream"
],
"defaultStatus": "affected",
"packageName": "389-ds:1.4",
"product": "Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "8080020260630025241.6dbb3803",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:enterprise_linux:9::appstream",
"cpe:/a:redhat:enterprise_linux:9::crb"
],
"defaultStatus": "affected",
"packageName": "389-ds-base",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.8.0-8.el9_8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:rhel_e4s:9.2::appstream"
],
"defaultStatus": "affected",
"packageName": "389-ds-base",
"product": "Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.2.4-19.el9_2",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:rhel_e4s:9.4::appstream"
],
"defaultStatus": "affected",
"packageName": "389-ds-base",
"product": "Red Hat Enterprise Linux 9.4 Update Services for SAP Solutions",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.4.5-26.el9_4",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:rhel_eus:9.6::appstream",
"cpe:/a:redhat:rhel_eus:9.6::crb"
],
"defaultStatus": "affected",
"packageName": "389-ds-base",
"product": "Red Hat Enterprise Linux 9.6 Extended Update Support",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:2.6.1-22.el9_6",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:directory_server:13.2::el10"
],
"defaultStatus": "affected",
"packageName": "dirsrv/dirsrv-container-rhel10",
"product": "Red Hat Directory Server 13.2",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "1783452100",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:directory_server:12"
],
"defaultStatus": "affected",
"packageName": "redhat-ds:12/389-ds-base",
"product": "Red Hat Directory Server 12",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:directory_server:13"
],
"defaultStatus": "unaffected",
"packageName": "389-ds-base",
"product": "Red Hat Directory Server 13",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:6"
],
"defaultStatus": "affected",
"packageName": "389-ds-base",
"product": "Red Hat Enterprise Linux 6",
"vendor": "Red Hat"
}
],
"credits": [
{
"lang": "en",
"value": "This issue was discovered by Ian Murphy (Red Hat)."
}
],
"datePublic": "2026-07-07T09:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "A heap buffer overflow flaw was found in the SASL I/O layer of 389 Directory Server\n(389-ds-base). After a successful SASL bind with integrity protection (SSF \u003e 0),\nan authenticated attacker can send a specially crafted oversized LDAP UNBIND packet\nthat is copied into a 512-byte heap receive buffer without a bounds check in\nsasl_io_recv() in sasl_io.c. This allows up to approximately 2 megabytes of\nattacker-controlled data to overflow the buffer, causing a denial of service (server\ncrash). In FreeIPA and Red Hat Identity Management deployments, any domain user with\na valid Kerberos ticket, any enrolled host, or any service account can trigger this\nvulnerability over the network after authenticating via GSSAPI.\nThe vulnerable code path has existed since approximately 2013 (389-ds-base 1.3.2) and\nwas not addressed by the CVE-2025-14905 fix, which patched a separate heap overflow\nin schema.c only."
}
],
"metrics": [
{
"other": {
"content": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"value": "Important"
},
"type": "Red Hat severity rating"
}
},
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"format": "CVSS"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-122",
"description": "Heap-based Buffer Overflow",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-07-08T13:01:19.304Z",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"name": "RHSA-2026:36195",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:36195"
},
{
"name": "RHSA-2026:36196",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:36196"
},
{
"name": "RHSA-2026:36197",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:36197"
},
{
"name": "RHSA-2026:36198",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:36198"
},
{
"name": "RHSA-2026:36200",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:36200"
},
{
"name": "RHSA-2026:36201",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:36201"
},
{
"name": "RHSA-2026:36202",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:36202"
},
{
"name": "RHSA-2026:36204",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:36204"
},
{
"name": "RHSA-2026:36205",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:36205"
},
{
"name": "RHSA-2026:36206",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:36206"
},
{
"name": "RHSA-2026:36208",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:36208"
},
{
"name": "RHSA-2026:36209",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:36209"
},
{
"name": "RHSA-2026:36585",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:36585"
},
{
"name": "RHSA-2026:36641",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:36641"
},
{
"name": "RHSA-2026:36660",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:36660"
},
{
"name": "RHSA-2026:36670",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:36670"
},
{
"name": "RHSA-2026:36671",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:36671"
},
{
"tags": [
"vdb-entry",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/security/cve/CVE-2026-11610"
},
{
"name": "RHBZ#2484414",
"tags": [
"issue-tracking",
"x_refsource_REDHAT"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2484414"
}
],
"timeline": [
{
"lang": "en",
"time": "2026-04-22T00:00:00.000Z",
"value": "Reported to Red Hat."
},
{
"lang": "en",
"time": "2026-07-07T09:00:00.000Z",
"value": "Made public."
}
],
"title": "389-ds-base: 389-ds-base: heap buffer overflow in sasl_io_recv() via padded sasl unbind",
"workarounds": [
{
"lang": "en",
"value": "There is no complete workaround for this flaw.\nMitigations that reduce exposure:\n1. Restrict network access to LDAP ports (389/636) to trusted networks only.\n Note: In FreeIPA/IdM deployments, enrolled clients require LDAP access and\n this may not be practical.\n2. If DIGEST-MD5 is not required, disable it via nsslapd-allowed-sasl-mechanisms\n in cn=config. GSSAPI/Kerberos cannot be disabled in FreeIPA/IdM without breaking\n domain authentication.\n3. Monitor for oversized LDAP UNBIND packets (standard UNBIND is 7 bytes; alert on\n UNBIND packets exceeding ~100 bytes).\n4. Lowering nsslapd-maxbersize reduces maximum overflow size but does not eliminate\n the vulnerability."
}
],
"x_generator": {
"engine": "cvelib 1.8.0"
},
"x_redhatCweChain": "CWE-122: Heap-based Buffer Overflow"
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2026-11610",
"datePublished": "2026-07-07T09:17:36.519Z",
"dateReserved": "2026-06-08T16:13:02.502Z",
"dateUpdated": "2026-07-08T21:02:28.863Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
CVE-2026-14476 (GCVE-0-2026-14476)
Vulnerability from cvelistv5 – Published: 2026-07-07 09:12 – Updated: 2026-07-07 14:34
VLAI
EPSS
VEX
Title
Sssd: sssd: gpo cache path traversal via unsanitized gpcfilesyspath allows kerberos authentication bypass
Summary
A path traversal flaw was found in SSSD's AD GPO provider. The ad_gpo_extract_smb_components() function does not sanitize .. sequences in the gPCFileSysPath LDAP attribute, allowing an attacker with AD GPO management access to write files outside the GPO cache directory as root. On default RHEL configurations with SELinux enforcing, this can be used to inject Kerberos configuration leading to authentication bypass.
Severity
SSVC
Exploitation: none
Automatable: no
Technical Impact: total
CISA Coordinator (v2.0.3)
CWE
- CWE-23 - Relative Path Traversal
Assigner
References
2 references
| URL | Tags |
|---|---|
| https://access.redhat.com/security/cve/CVE-2026-14476 | vdb-entryx_refsource_REDHAT |
| https://bugzilla.redhat.com/show_bug.cgi?id=2496581 | issue-trackingx_refsource_REDHAT |
Impacted products
6 products
| Vendor | Product | Version | |
|---|---|---|---|
| Red Hat | Red Hat Enterprise Linux 10 |
cpe:/o:redhat:enterprise_linux:10 |
|
| Red Hat | Red Hat Enterprise Linux 6 |
cpe:/o:redhat:enterprise_linux:6 |
|
| Red Hat | Red Hat Enterprise Linux 7 |
cpe:/o:redhat:enterprise_linux:7 |
|
| Red Hat | Red Hat Enterprise Linux 8 |
cpe:/o:redhat:enterprise_linux:8 |
|
| Red Hat | Red Hat Enterprise Linux 9 |
cpe:/o:redhat:enterprise_linux:9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4 |
cpe:/a:redhat:openshift:4 |
Date Public
2026-07-07 09:00
Credits
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-14476",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-07-07T14:34:29.054689Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-07-07T14:34:38.153Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:10"
],
"defaultStatus": "affected",
"packageName": "sssd",
"product": "Red Hat Enterprise Linux 10",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:6"
],
"defaultStatus": "unknown",
"packageName": "sssd",
"product": "Red Hat Enterprise Linux 6",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:7"
],
"defaultStatus": "affected",
"packageName": "sssd",
"product": "Red Hat Enterprise Linux 7",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:8"
],
"defaultStatus": "affected",
"packageName": "sssd",
"product": "Red Hat Enterprise Linux 8",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:9"
],
"defaultStatus": "affected",
"packageName": "sssd",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4"
],
"defaultStatus": "affected",
"packageName": "rhcos",
"product": "Red Hat OpenShift Container Platform 4",
"vendor": "Red Hat"
}
],
"credits": [
{
"lang": "en",
"value": "This issue was discovered by Ian Murphy (Red Hat)."
}
],
"datePublic": "2026-07-07T09:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "A path traversal flaw was found in SSSD\u0027s AD GPO provider. The ad_gpo_extract_smb_components() function does not sanitize .. sequences in the gPCFileSysPath LDAP attribute, allowing an attacker with AD GPO management access to write files outside the GPO cache directory as root. On default RHEL configurations with SELinux enforcing, this can be used to inject Kerberos configuration leading to authentication bypass."
}
],
"metrics": [
{
"other": {
"content": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"value": "Moderate"
},
"type": "Red Hat severity rating"
}
},
{
"cvssV3_1": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"format": "CVSS"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-23",
"description": "Relative Path Traversal",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-07-07T11:09:17.309Z",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"tags": [
"vdb-entry",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/security/cve/CVE-2026-14476"
},
{
"name": "RHBZ#2496581",
"tags": [
"issue-tracking",
"x_refsource_REDHAT"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2496581"
}
],
"timeline": [
{
"lang": "en",
"time": "2026-04-28T00:00:00.000Z",
"value": "Reported to Red Hat."
},
{
"lang": "en",
"time": "2026-07-07T09:00:00.000Z",
"value": "Made public."
}
],
"title": "Sssd: sssd: gpo cache path traversal via unsanitized gpcfilesyspath allows kerberos authentication bypass",
"workarounds": [
{
"lang": "en",
"value": "Set ad_gpo_access_control = disabled in /etc/sssd/sssd.conf to disable GPO fetching entirely. Note that this removes GPO-based login policy enforcement."
}
],
"x_generator": {
"engine": "cvelib 1.8.0"
},
"x_redhatCweChain": "CWE-23: Relative Path Traversal"
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2026-14476",
"datePublished": "2026-07-07T09:12:52.180Z",
"dateReserved": "2026-07-02T15:18:56.861Z",
"dateUpdated": "2026-07-07T14:34:38.153Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
CVE-2026-14474 (GCVE-0-2026-14474)
Vulnerability from cvelistv5 – Published: 2026-07-07 09:12 – Updated: 2026-07-07 13:42
VLAI
EPSS
VEX
Title
Sssd: sssd: sudo ldap provider searches entire directory tree for sudorole objects by default, enabling privilege escalation
Summary
A flaw was found in SSSD's LDAP sudo provider. When the ldap_sudo_search_base option is not explicitly configured, SSSD searches the entire LDAP directory tree for sudoRole objects. An authenticated attacker with write access to any subtree can inject a sudoRole object granting root-level sudo privileges on all SSSD-enrolled hosts.
Severity
8.8 (High)
SSVC
Exploitation: none
Automatable: no
Technical Impact: total
CISA Coordinator (v2.0.3)
CWE
- CWE-1188 - Initialization of a Resource with an Insecure Default
Assigner
References
2 references
| URL | Tags |
|---|---|
| https://access.redhat.com/security/cve/CVE-2026-14474 | vdb-entryx_refsource_REDHAT |
| https://bugzilla.redhat.com/show_bug.cgi?id=2496556 | issue-trackingx_refsource_REDHAT |
Impacted products
6 products
| Vendor | Product | Version | |
|---|---|---|---|
| Red Hat | Red Hat Enterprise Linux 10 |
cpe:/o:redhat:enterprise_linux:10 |
|
| Red Hat | Red Hat Enterprise Linux 6 |
cpe:/o:redhat:enterprise_linux:6 |
|
| Red Hat | Red Hat Enterprise Linux 7 |
cpe:/o:redhat:enterprise_linux:7 |
|
| Red Hat | Red Hat Enterprise Linux 8 |
cpe:/o:redhat:enterprise_linux:8 |
|
| Red Hat | Red Hat Enterprise Linux 9 |
cpe:/o:redhat:enterprise_linux:9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4 |
cpe:/a:redhat:openshift:4 |
Date Public
2026-07-07 09:00
Credits
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-14474",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-07-07T13:41:44.076680Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-07-07T13:42:01.577Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:10"
],
"defaultStatus": "affected",
"packageName": "sssd",
"product": "Red Hat Enterprise Linux 10",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:6"
],
"defaultStatus": "unknown",
"packageName": "sssd",
"product": "Red Hat Enterprise Linux 6",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:7"
],
"defaultStatus": "affected",
"packageName": "sssd",
"product": "Red Hat Enterprise Linux 7",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:8"
],
"defaultStatus": "affected",
"packageName": "sssd",
"product": "Red Hat Enterprise Linux 8",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:9"
],
"defaultStatus": "affected",
"packageName": "sssd",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4"
],
"defaultStatus": "affected",
"packageName": "rhcos",
"product": "Red Hat OpenShift Container Platform 4",
"vendor": "Red Hat"
}
],
"credits": [
{
"lang": "en",
"value": "This issue was discovered by Ian Murphy (Red Hat)."
}
],
"datePublic": "2026-07-07T09:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "A flaw was found in SSSD\u0027s LDAP sudo provider. When the ldap_sudo_search_base option is not explicitly configured, SSSD searches the entire LDAP directory tree for sudoRole objects. An authenticated attacker with write access to any subtree can inject a sudoRole object granting root-level sudo privileges on all SSSD-enrolled hosts."
}
],
"metrics": [
{
"other": {
"content": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"value": "Important"
},
"type": "Red Hat severity rating"
}
},
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"format": "CVSS"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-1188",
"description": "Initialization of a Resource with an Insecure Default",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-07-07T09:12:33.200Z",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"tags": [
"vdb-entry",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/security/cve/CVE-2026-14474"
},
{
"name": "RHBZ#2496556",
"tags": [
"issue-tracking",
"x_refsource_REDHAT"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2496556"
}
],
"timeline": [
{
"lang": "en",
"time": "2026-04-28T00:00:00.000Z",
"value": "Reported to Red Hat."
},
{
"lang": "en",
"time": "2026-07-07T09:00:00.000Z",
"value": "Made public."
}
],
"title": "Sssd: sssd: sudo ldap provider searches entire directory tree for sudorole objects by default, enabling privilege escalation",
"workarounds": [
{
"lang": "en",
"value": "Set ldap_sudo_search_base explicitly in /etc/sssd/sssd.conf to restrict the search to the designated sudoers container:\n\n[domain/example.com] ldap_sudo_search_base = ou=sudoers,dc=example,dc=com\n\nAdditionally, restrict LDAP ACLs to prevent non-admin principals from creating sudoRole objects outside the designated sudoers container."
}
],
"x_generator": {
"engine": "cvelib 1.8.0"
},
"x_redhatCweChain": "CWE-1188: Initialization of a Resource with an Insecure Default"
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2026-14474",
"datePublished": "2026-07-07T09:12:33.200Z",
"dateReserved": "2026-07-02T14:49:31.316Z",
"dateUpdated": "2026-07-07T13:42:01.577Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
CVE-2026-58384 (GCVE-0-2026-58384)
Vulnerability from cvelistv5 – Published: 2026-07-07 07:44 – Updated: 2026-07-07 13:31
VLAI
EPSS
VEX
Title
Gimp: gimp: integer overflow in read_rle_channel()
Summary
A flaw was found in GIMP's PSD parser. An integer overflow in read_RLE_channel() can cause an undersized heap allocation for the RLE row-length table, after which subsequent per-row writes corrupt heap memory. This could lead to memory corruption, potentially resulting in denial of service or arbitrary code execution.
Severity
7.3 (High)
SSVC
Exploitation: none
Automatable: no
Technical Impact: total
CISA Coordinator (v2.0.3)
CWE
- CWE-190 - Integer Overflow or Wraparound
Assigner
References
4 references
| URL | Tags |
|---|---|
| https://access.redhat.com/security/cve/CVE-2026-58384 | vdb-entryx_refsource_REDHAT |
| https://bugzilla.redhat.com/show_bug.cgi?id=2497431 | issue-trackingx_refsource_REDHAT |
| https://gitlab.gnome.org/GNOME/gimp/-/commit/da29e217 | |
| https://gitlab.gnome.org/GNOME/gimp/-/issues/16216 |
Impacted products
4 products
| Vendor | Product | Version | |
|---|---|---|---|
| Red Hat | Red Hat Enterprise Linux 6 |
cpe:/o:redhat:enterprise_linux:6 |
|
| Red Hat | Red Hat Enterprise Linux 7 |
cpe:/o:redhat:enterprise_linux:7 |
|
| Red Hat | Red Hat Enterprise Linux 8 |
cpe:/o:redhat:enterprise_linux:8 |
|
| Red Hat | Red Hat Enterprise Linux 9 |
cpe:/o:redhat:enterprise_linux:9 |
Date Public
2026-04-11 00:00
Credits
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-58384",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-07-07T13:30:05.659315Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-07-07T13:31:00.757Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:6"
],
"defaultStatus": "unaffected",
"packageName": "gimp",
"product": "Red Hat Enterprise Linux 6",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:7"
],
"defaultStatus": "unaffected",
"packageName": "gimp",
"product": "Red Hat Enterprise Linux 7",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:8"
],
"defaultStatus": "unaffected",
"packageName": "gimp:2.8/gimp",
"product": "Red Hat Enterprise Linux 8",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:9"
],
"defaultStatus": "affected",
"packageName": "gimp",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat"
}
],
"credits": [
{
"lang": "en",
"value": "Red Hat would like to thank bb1abu for reporting this issue."
}
],
"datePublic": "2026-04-11T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "A flaw was found in GIMP\u0027s PSD parser. An integer overflow in read_RLE_channel() can cause an undersized heap allocation for the RLE row-length table, after which subsequent per-row writes corrupt heap memory. This could lead to memory corruption, potentially resulting in denial of service or arbitrary code execution."
}
],
"metrics": [
{
"other": {
"content": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"value": "Important"
},
"type": "Red Hat severity rating"
}
},
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"format": "CVSS"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-190",
"description": "Integer Overflow or Wraparound",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-07-07T07:44:28.139Z",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"tags": [
"vdb-entry",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/security/cve/CVE-2026-58384"
},
{
"name": "RHBZ#2497431",
"tags": [
"issue-tracking",
"x_refsource_REDHAT"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2497431"
},
{
"url": "https://gitlab.gnome.org/GNOME/gimp/-/commit/da29e217"
},
{
"url": "https://gitlab.gnome.org/GNOME/gimp/-/issues/16216"
}
],
"timeline": [
{
"lang": "en",
"time": "2026-04-11T00:00:00.000Z",
"value": "Reported to Red Hat."
},
{
"lang": "en",
"time": "2026-04-11T00:00:00.000Z",
"value": "Made public."
}
],
"title": "Gimp: gimp: integer overflow in read_rle_channel()",
"workarounds": [
{
"lang": "en",
"value": "None \u2014 requires opening a crafted PSD file."
}
],
"x_generator": {
"engine": "cvelib 1.8.0"
},
"x_redhatCweChain": "CWE-190: Integer Overflow or Wraparound"
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2026-58384",
"datePublished": "2026-07-07T07:44:28.139Z",
"dateReserved": "2026-06-30T16:54:04.312Z",
"dateUpdated": "2026-07-07T13:31:00.757Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
CVE-2026-59089 (GCVE-0-2026-59089)
Vulnerability from cvelistv5 – Published: 2026-07-06 19:38 – Updated: 2026-07-06 19:48
VLAI
EPSS
VEX
Title
Gimp: gimp: denial of service via integer overflow in playstation tim loader
Summary
A flaw was found in GIMP. The PlayStation TIM loader, responsible for handling PlayStation image files, incorrectly calculates the size of the Color Look-Up Table (CLUT) due to an integer overflow. This occurs when multiplying num_colors and num_cluts, both 16-bit unsigned short integers, resulting in a value exceeding the maximum integer limit. An attacker could exploit this by providing a specially crafted image file, leading to undefined behavior and causing the GIMP plug-in to abort, effectively resulting in a denial of service.
Severity
5.5 (Medium)
SSVC
Exploitation: poc
Automatable: no
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
- CWE-190 - Integer Overflow or Wraparound
Assigner
References
3 references
| URL | Tags |
|---|---|
| https://access.redhat.com/security/cve/CVE-2026-59089 | vdb-entryx_refsource_REDHAT |
| https://bugzilla.redhat.com/show_bug.cgi?id=2496583 | issue-trackingx_refsource_REDHAT |
| https://gitlab.gnome.org/GNOME/gimp/-/work_items/16493 |
Impacted products
4 products
| Vendor | Product | Version | |
|---|---|---|---|
| Red Hat | Red Hat Enterprise Linux 6 |
cpe:/o:redhat:enterprise_linux:6 |
|
| Red Hat | Red Hat Enterprise Linux 7 |
cpe:/o:redhat:enterprise_linux:7 |
|
| Red Hat | Red Hat Enterprise Linux 8 |
cpe:/o:redhat:enterprise_linux:8 |
|
| Red Hat | Red Hat Enterprise Linux 9 |
cpe:/o:redhat:enterprise_linux:9 |
Date Public
2026-06-15 00:00
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-59089",
"options": [
{
"Exploitation": "poc"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-07-06T19:48:49.016983Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-07-06T19:48:53.313Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"references": [
{
"tags": [
"exploit"
],
"url": "https://gitlab.gnome.org/GNOME/gimp/-/work_items/16493"
}
],
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:6"
],
"defaultStatus": "unknown",
"packageName": "gimp",
"product": "Red Hat Enterprise Linux 6",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:7"
],
"defaultStatus": "unknown",
"packageName": "gimp",
"product": "Red Hat Enterprise Linux 7",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:8"
],
"defaultStatus": "affected",
"packageName": "gimp",
"product": "Red Hat Enterprise Linux 8",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:9"
],
"defaultStatus": "affected",
"packageName": "gimp",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat"
}
],
"datePublic": "2026-06-15T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "A flaw was found in GIMP. The PlayStation TIM loader, responsible for handling PlayStation image files, incorrectly calculates the size of the Color Look-Up Table (CLUT) due to an integer overflow. This occurs when multiplying num_colors and num_cluts, both 16-bit unsigned short integers, resulting in a value exceeding the maximum integer limit. An attacker could exploit this by providing a specially crafted image file, leading to undefined behavior and causing the GIMP plug-in to abort, effectively resulting in a denial of service."
}
],
"metrics": [
{
"other": {
"content": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"value": "Moderate"
},
"type": "Red Hat severity rating"
}
},
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"format": "CVSS"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-190",
"description": "Integer Overflow or Wraparound",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-07-06T19:38:16.905Z",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"tags": [
"vdb-entry",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/security/cve/CVE-2026-59089"
},
{
"name": "RHBZ#2496583",
"tags": [
"issue-tracking",
"x_refsource_REDHAT"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2496583"
},
{
"url": "https://gitlab.gnome.org/GNOME/gimp/-/work_items/16493"
}
],
"timeline": [
{
"lang": "en",
"time": "2026-07-02T15:36:51.520Z",
"value": "Reported to Red Hat."
},
{
"lang": "en",
"time": "2026-06-15T00:00:00.000Z",
"value": "Made public."
}
],
"title": "Gimp: gimp: denial of service via integer overflow in playstation tim loader",
"workarounds": [
{
"lang": "en",
"value": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability."
}
],
"x_generator": {
"engine": "cvelib 1.8.0"
},
"x_redhatCweChain": "CWE-190: Integer Overflow or Wraparound"
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2026-59089",
"datePublished": "2026-07-06T19:38:16.905Z",
"dateReserved": "2026-07-02T15:11:12.820Z",
"dateUpdated": "2026-07-06T19:48:53.313Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}