Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2020-13936 (GCVE-0-2020-13936)
Vulnerability from cvelistv5 – Published: 2021-03-10 08:00 – Updated: 2025-02-13 16:27
VLAI
EPSS
Title
Velocity Sandbox Bypass
Summary
An attacker that is able to modify Velocity templates may execute arbitrary Java code or run arbitrary system commands with the same privileges as the account running the Servlet container. This applies to applications that allow untrusted users to upload/modify velocity templates running Apache Velocity Engine versions up to 2.2.
Severity
No CVSS data available.
CWE
- Velocity Sandbox Bypass
Assigner
References
24 references
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| Apache Software Foundation | Apache Velocity Engine |
Affected:
Apache Velocity Engine , ≤ 2.2
(custom)
|
Credits
This issue was discovered by Alvaro Munoz pwntester@github.com of Github Security Labs and was originally reported as GHSL-2020-048.
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T12:32:14.319Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/r01043f584cbd47959fabe18fff64de940f81a65024bb8dddbda31d9a%40%3Cuser.velocity.apache.org%3E"
},
{
"name": "[velocity-user] 20210310 CVE-2020-13936: Velocity Sandbox Bypass",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/r01043f584cbd47959fabe18fff64de940f81a65024bb8dddbda31d9a%40%3Cuser.velocity.apache.org%3E"
},
{
"name": "[velocity-commits] 20210310 [velocity-site] 01/01: CVE announcement",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/rb042f3b0090e419cc9f5a3d32cf0baff283ccd6fcb1caea61915d6b6%40%3Ccommits.velocity.apache.org%3E"
},
{
"name": "[oss-security] 20210309 CVE-2020-13936: Velocity Sandbox Bypass",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://www.openwall.com/lists/oss-security/2021/03/10/1"
},
{
"name": "[announce] 20210310 CVE-2020-13936: Velocity Sandbox Bypass",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/r3ea4c4c908505b20a4c268330dfe7188b90c84dcf777728d02068ae6%40%3Cannounce.apache.org%3E"
},
{
"name": "[druid-commits] 20210316 [GitHub] [druid] clintropolis opened a new pull request #11002: suppress CVE check for security fix",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/rd2a89e17e8a9b451ce655f1a34117752ea1d18a22ce580d8baa824fd%40%3Ccommits.druid.apache.org%3E"
},
{
"name": "[debian-lts-announce] 20210317 [SECURITY] [DLA 2595-1] velocity security update",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.debian.org/debian-lts-announce/2021/03/msg00019.html"
},
{
"name": "[ws-dev] 20210318 [jira] [Commented] (WSS-683) WSS4J depends on Velocity 1.7 which contains a security vulnerability (CVE-2020-13936)",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/re641197d204765130618086238c73dd2ce5a3f94b33785b587d72726%40%3Cdev.ws.apache.org%3E"
},
{
"name": "[ws-dev] 20210318 [jira] [Created] (WSS-683) WSS4J depends on Velocity 1.7 which contains a security vulnerability (CVE-2020-13936)",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/rbee7270556f4172322936b5ecc9fabf0c09f00d4fa56c9de1963c340%40%3Cdev.ws.apache.org%3E"
},
{
"name": "[ws-dev] 20210319 [jira] [Commented] (WSS-683) WSS4J depends on Velocity 1.7 which contains a security vulnerability (CVE-2020-13936)",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/reab5978b54a9f4c078402161e30a89c42807b198814acadbe6c862c7%40%3Cdev.ws.apache.org%3E"
},
{
"name": "[ws-dev] 20210319 [jira] [Comment Edited] (WSS-683) WSS4J depends on Velocity 1.7 which contains a security vulnerability (CVE-2020-13936)",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/rd7e865c87f9043c21d9c1fd9d4df866061d9a08cfc322771160d8058%40%3Cdev.ws.apache.org%3E"
},
{
"name": "[ws-dev] 20210322 [jira] [Commented] (WSS-683) WSS4J depends on Velocity 1.7 which contains a security vulnerability (CVE-2020-13936)",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/re8e7482fe54d289fc0229e61cc64947b63b12c3c312e9f25bf6f3b8c%40%3Cdev.ws.apache.org%3E"
},
{
"name": "[santuario-dev] 20210323 [GitHub] [santuario-xml-security-java] dependabot[bot] opened a new pull request #33: Bump dependency-check-maven from 6.1.2 to 6.1.3",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/r0bc98e9cd080b4a13b905c571b9bed87e1a0878d44dbf21487c6cca4%40%3Cdev.santuario.apache.org%3E"
},
{
"name": "[ws-dev] 20210324 [jira] [Commented] (WSS-683) WSS4J depends on Velocity 1.7 which contains a security vulnerability (CVE-2020-13936)",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/r39de20c7e9c808b1f96790875d33e58c9c0aabb44fd9227e7b3dc5da%40%3Cdev.ws.apache.org%3E"
},
{
"name": "[ws-dev] 20210325 [jira] [Updated] (WSS-683) WSS4J depends on Velocity 1.7 which contains a security vulnerability (CVE-2020-13936)",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/r17cb932fab14801b14e5b97a7f05192f4f366ef260c10d4a8dba8ac9%40%3Cdev.ws.apache.org%3E"
},
{
"name": "[ws-dev] 20210325 [jira] [Commented] (WSS-683) WSS4J depends on Velocity 1.7 which contains a security vulnerability (CVE-2020-13936)",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/r4cd59453b65d4ac290fcb3b71fdf32b4f1f8989025e89558deb5a245%40%3Cdev.ws.apache.org%3E"
},
{
"name": "[turbine-commits] 20210329 svn commit: r1888167 - /turbine/core/trunk/pom.xml",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/r7f209b837217d2a0fe5977fb692e7f15d37fa5de8214bcdc4c21d9a7%40%3Ccommits.turbine.apache.org%3E"
},
{
"name": "[ws-dev] 20210331 [jira] [Commented] (WSS-683) WSS4J depends on Velocity 1.7 which contains a security vulnerability (CVE-2020-13936)",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/r293284c6806c73f51098001ea86a14271c39f72cd76af9e946d9d9ad%40%3Cdev.ws.apache.org%3E"
},
{
"name": "[ws-dev] 20210401 [jira] [Commented] (WSS-683) WSS4J depends on Velocity 1.7 which contains a security vulnerability (CVE-2020-13936)",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/rf7d369de88dc88a1347006a3323b3746d849234db40a8edfd5ebc436%40%3Cdev.ws.apache.org%3E"
},
{
"name": "GLSA-202107-52",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO",
"x_transferred"
],
"url": "https://security.gentoo.org/glsa/202107-52"
},
{
"name": "[activemq-users] 20210830 Security issues",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/r9dc2505651788ac668299774d9e7af4dc616be2f56fdc684d1170882%40%3Cusers.activemq.apache.org%3E"
},
{
"name": "[activemq-users] 20210831 RE: Security issues",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/r52a5129df402352adc34d052bab9234c8ef63596306506a89fdc7328%40%3Cusers.activemq.apache.org%3E"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.oracle.com/security-alerts/cpujan2022.html"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "Apache Velocity Engine",
"vendor": "Apache Software Foundation",
"versions": [
{
"lessThanOrEqual": "2.2",
"status": "affected",
"version": "Apache Velocity Engine",
"versionType": "custom"
}
]
}
],
"credits": [
{
"lang": "en",
"value": "This issue was discovered by Alvaro Munoz pwntester@github.com of Github Security Labs and was originally reported as GHSL-2020-048."
}
],
"descriptions": [
{
"lang": "en",
"value": "An attacker that is able to modify Velocity templates may execute arbitrary Java code or run arbitrary system commands with the same privileges as the account running the Servlet container. This applies to applications that allow untrusted users to upload/modify velocity templates running Apache Velocity Engine versions up to 2.2."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Velocity Sandbox Bypass",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2024-08-04T12:34:05.000Z",
"orgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09",
"shortName": "apache"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://lists.apache.org/thread.html/r01043f584cbd47959fabe18fff64de940f81a65024bb8dddbda31d9a%40%3Cuser.velocity.apache.org%3E"
},
{
"name": "[velocity-user] 20210310 CVE-2020-13936: Velocity Sandbox Bypass",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/r01043f584cbd47959fabe18fff64de940f81a65024bb8dddbda31d9a%40%3Cuser.velocity.apache.org%3E"
},
{
"name": "[velocity-commits] 20210310 [velocity-site] 01/01: CVE announcement",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/rb042f3b0090e419cc9f5a3d32cf0baff283ccd6fcb1caea61915d6b6%40%3Ccommits.velocity.apache.org%3E"
},
{
"name": "[oss-security] 20210309 CVE-2020-13936: Velocity Sandbox Bypass",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://www.openwall.com/lists/oss-security/2021/03/10/1"
},
{
"name": "[announce] 20210310 CVE-2020-13936: Velocity Sandbox Bypass",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/r3ea4c4c908505b20a4c268330dfe7188b90c84dcf777728d02068ae6%40%3Cannounce.apache.org%3E"
},
{
"name": "[druid-commits] 20210316 [GitHub] [druid] clintropolis opened a new pull request #11002: suppress CVE check for security fix",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/rd2a89e17e8a9b451ce655f1a34117752ea1d18a22ce580d8baa824fd%40%3Ccommits.druid.apache.org%3E"
},
{
"name": "[debian-lts-announce] 20210317 [SECURITY] [DLA 2595-1] velocity security update",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.debian.org/debian-lts-announce/2021/03/msg00019.html"
},
{
"name": "[ws-dev] 20210318 [jira] [Commented] (WSS-683) WSS4J depends on Velocity 1.7 which contains a security vulnerability (CVE-2020-13936)",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/re641197d204765130618086238c73dd2ce5a3f94b33785b587d72726%40%3Cdev.ws.apache.org%3E"
},
{
"name": "[ws-dev] 20210318 [jira] [Created] (WSS-683) WSS4J depends on Velocity 1.7 which contains a security vulnerability (CVE-2020-13936)",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/rbee7270556f4172322936b5ecc9fabf0c09f00d4fa56c9de1963c340%40%3Cdev.ws.apache.org%3E"
},
{
"name": "[ws-dev] 20210319 [jira] [Commented] (WSS-683) WSS4J depends on Velocity 1.7 which contains a security vulnerability (CVE-2020-13936)",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/reab5978b54a9f4c078402161e30a89c42807b198814acadbe6c862c7%40%3Cdev.ws.apache.org%3E"
},
{
"name": "[ws-dev] 20210319 [jira] [Comment Edited] (WSS-683) WSS4J depends on Velocity 1.7 which contains a security vulnerability (CVE-2020-13936)",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/rd7e865c87f9043c21d9c1fd9d4df866061d9a08cfc322771160d8058%40%3Cdev.ws.apache.org%3E"
},
{
"name": "[ws-dev] 20210322 [jira] [Commented] (WSS-683) WSS4J depends on Velocity 1.7 which contains a security vulnerability (CVE-2020-13936)",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/re8e7482fe54d289fc0229e61cc64947b63b12c3c312e9f25bf6f3b8c%40%3Cdev.ws.apache.org%3E"
},
{
"name": "[santuario-dev] 20210323 [GitHub] [santuario-xml-security-java] dependabot[bot] opened a new pull request #33: Bump dependency-check-maven from 6.1.2 to 6.1.3",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/r0bc98e9cd080b4a13b905c571b9bed87e1a0878d44dbf21487c6cca4%40%3Cdev.santuario.apache.org%3E"
},
{
"name": "[ws-dev] 20210324 [jira] [Commented] (WSS-683) WSS4J depends on Velocity 1.7 which contains a security vulnerability (CVE-2020-13936)",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/r39de20c7e9c808b1f96790875d33e58c9c0aabb44fd9227e7b3dc5da%40%3Cdev.ws.apache.org%3E"
},
{
"name": "[ws-dev] 20210325 [jira] [Updated] (WSS-683) WSS4J depends on Velocity 1.7 which contains a security vulnerability (CVE-2020-13936)",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/r17cb932fab14801b14e5b97a7f05192f4f366ef260c10d4a8dba8ac9%40%3Cdev.ws.apache.org%3E"
},
{
"name": "[ws-dev] 20210325 [jira] [Commented] (WSS-683) WSS4J depends on Velocity 1.7 which contains a security vulnerability (CVE-2020-13936)",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/r4cd59453b65d4ac290fcb3b71fdf32b4f1f8989025e89558deb5a245%40%3Cdev.ws.apache.org%3E"
},
{
"name": "[turbine-commits] 20210329 svn commit: r1888167 - /turbine/core/trunk/pom.xml",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/r7f209b837217d2a0fe5977fb692e7f15d37fa5de8214bcdc4c21d9a7%40%3Ccommits.turbine.apache.org%3E"
},
{
"name": "[ws-dev] 20210331 [jira] [Commented] (WSS-683) WSS4J depends on Velocity 1.7 which contains a security vulnerability (CVE-2020-13936)",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/r293284c6806c73f51098001ea86a14271c39f72cd76af9e946d9d9ad%40%3Cdev.ws.apache.org%3E"
},
{
"name": "[ws-dev] 20210401 [jira] [Commented] (WSS-683) WSS4J depends on Velocity 1.7 which contains a security vulnerability (CVE-2020-13936)",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/rf7d369de88dc88a1347006a3323b3746d849234db40a8edfd5ebc436%40%3Cdev.ws.apache.org%3E"
},
{
"name": "GLSA-202107-52",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO"
],
"url": "https://security.gentoo.org/glsa/202107-52"
},
{
"name": "[activemq-users] 20210830 Security issues",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/r9dc2505651788ac668299774d9e7af4dc616be2f56fdc684d1170882%40%3Cusers.activemq.apache.org%3E"
},
{
"name": "[activemq-users] 20210831 RE: Security issues",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/r52a5129df402352adc34d052bab9234c8ef63596306506a89fdc7328%40%3Cusers.activemq.apache.org%3E"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.oracle.com/security-alerts/cpujan2022.html"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
}
],
"source": {
"discovery": "UNKNOWN"
},
"title": "Velocity Sandbox Bypass",
"workarounds": [
{
"lang": "en",
"value": "Applications using Apache Velocity that allow untrusted users to upload templates should upgrade to version 2.3. This version adds additional default restrictions on what methods/properties can be accessed in a template."
}
],
"x_generator": {
"engine": "Vulnogram 0.0.9"
},
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "security@apache.org",
"ID": "CVE-2020-13936",
"STATE": "PUBLIC",
"TITLE": "Velocity Sandbox Bypass"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Apache Velocity Engine",
"version": {
"version_data": [
{
"version_affected": "\u003c=",
"version_name": "Apache Velocity Engine",
"version_value": "2.2"
}
]
}
}
]
},
"vendor_name": "Apache Software Foundation"
}
]
}
},
"credit": [
{
"lang": "eng",
"value": "This issue was discovered by Alvaro Munoz pwntester@github.com of Github Security Labs and was originally reported as GHSL-2020-048."
}
],
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "An attacker that is able to modify Velocity templates may execute arbitrary Java code or run arbitrary system commands with the same privileges as the account running the Servlet container. This applies to applications that allow untrusted users to upload/modify velocity templates running Apache Velocity Engine versions up to 2.2."
}
]
},
"generator": {
"engine": "Vulnogram 0.0.9"
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Velocity Sandbox Bypass"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://lists.apache.org/thread.html/r01043f584cbd47959fabe18fff64de940f81a65024bb8dddbda31d9a%40%3Cuser.velocity.apache.org%3E",
"refsource": "MISC",
"url": "https://lists.apache.org/thread.html/r01043f584cbd47959fabe18fff64de940f81a65024bb8dddbda31d9a%40%3Cuser.velocity.apache.org%3E"
},
{
"name": "[velocity-user] 20210310 CVE-2020-13936: Velocity Sandbox Bypass",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r01043f584cbd47959fabe18fff64de940f81a65024bb8dddbda31d9a@%3Cuser.velocity.apache.org%3E"
},
{
"name": "[velocity-commits] 20210310 [velocity-site] 01/01: CVE announcement",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/rb042f3b0090e419cc9f5a3d32cf0baff283ccd6fcb1caea61915d6b6@%3Ccommits.velocity.apache.org%3E"
},
{
"name": "[oss-security] 20210309 CVE-2020-13936: Velocity Sandbox Bypass",
"refsource": "MLIST",
"url": "http://www.openwall.com/lists/oss-security/2021/03/10/1"
},
{
"name": "[announce] 20210310 CVE-2020-13936: Velocity Sandbox Bypass",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r3ea4c4c908505b20a4c268330dfe7188b90c84dcf777728d02068ae6@%3Cannounce.apache.org%3E"
},
{
"name": "[druid-commits] 20210316 [GitHub] [druid] clintropolis opened a new pull request #11002: suppress CVE check for security fix",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/rd2a89e17e8a9b451ce655f1a34117752ea1d18a22ce580d8baa824fd@%3Ccommits.druid.apache.org%3E"
},
{
"name": "[debian-lts-announce] 20210317 [SECURITY] [DLA 2595-1] velocity security update",
"refsource": "MLIST",
"url": "https://lists.debian.org/debian-lts-announce/2021/03/msg00019.html"
},
{
"name": "[ws-dev] 20210318 [jira] [Commented] (WSS-683) WSS4J depends on Velocity 1.7 which contains a security vulnerability (CVE-2020-13936)",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/re641197d204765130618086238c73dd2ce5a3f94b33785b587d72726@%3Cdev.ws.apache.org%3E"
},
{
"name": "[ws-dev] 20210318 [jira] [Created] (WSS-683) WSS4J depends on Velocity 1.7 which contains a security vulnerability (CVE-2020-13936)",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/rbee7270556f4172322936b5ecc9fabf0c09f00d4fa56c9de1963c340@%3Cdev.ws.apache.org%3E"
},
{
"name": "[ws-dev] 20210319 [jira] [Commented] (WSS-683) WSS4J depends on Velocity 1.7 which contains a security vulnerability (CVE-2020-13936)",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/reab5978b54a9f4c078402161e30a89c42807b198814acadbe6c862c7@%3Cdev.ws.apache.org%3E"
},
{
"name": "[ws-dev] 20210319 [jira] [Comment Edited] (WSS-683) WSS4J depends on Velocity 1.7 which contains a security vulnerability (CVE-2020-13936)",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/rd7e865c87f9043c21d9c1fd9d4df866061d9a08cfc322771160d8058@%3Cdev.ws.apache.org%3E"
},
{
"name": "[ws-dev] 20210322 [jira] [Commented] (WSS-683) WSS4J depends on Velocity 1.7 which contains a security vulnerability (CVE-2020-13936)",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/re8e7482fe54d289fc0229e61cc64947b63b12c3c312e9f25bf6f3b8c@%3Cdev.ws.apache.org%3E"
},
{
"name": "[santuario-dev] 20210323 [GitHub] [santuario-xml-security-java] dependabot[bot] opened a new pull request #33: Bump dependency-check-maven from 6.1.2 to 6.1.3",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r0bc98e9cd080b4a13b905c571b9bed87e1a0878d44dbf21487c6cca4@%3Cdev.santuario.apache.org%3E"
},
{
"name": "[ws-dev] 20210324 [jira] [Commented] (WSS-683) WSS4J depends on Velocity 1.7 which contains a security vulnerability (CVE-2020-13936)",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r39de20c7e9c808b1f96790875d33e58c9c0aabb44fd9227e7b3dc5da@%3Cdev.ws.apache.org%3E"
},
{
"name": "[ws-dev] 20210325 [jira] [Updated] (WSS-683) WSS4J depends on Velocity 1.7 which contains a security vulnerability (CVE-2020-13936)",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r17cb932fab14801b14e5b97a7f05192f4f366ef260c10d4a8dba8ac9@%3Cdev.ws.apache.org%3E"
},
{
"name": "[ws-dev] 20210325 [jira] [Commented] (WSS-683) WSS4J depends on Velocity 1.7 which contains a security vulnerability (CVE-2020-13936)",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r4cd59453b65d4ac290fcb3b71fdf32b4f1f8989025e89558deb5a245@%3Cdev.ws.apache.org%3E"
},
{
"name": "[turbine-commits] 20210329 svn commit: r1888167 - /turbine/core/trunk/pom.xml",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r7f209b837217d2a0fe5977fb692e7f15d37fa5de8214bcdc4c21d9a7@%3Ccommits.turbine.apache.org%3E"
},
{
"name": "[ws-dev] 20210331 [jira] [Commented] (WSS-683) WSS4J depends on Velocity 1.7 which contains a security vulnerability (CVE-2020-13936)",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r293284c6806c73f51098001ea86a14271c39f72cd76af9e946d9d9ad@%3Cdev.ws.apache.org%3E"
},
{
"name": "[ws-dev] 20210401 [jira] [Commented] (WSS-683) WSS4J depends on Velocity 1.7 which contains a security vulnerability (CVE-2020-13936)",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/rf7d369de88dc88a1347006a3323b3746d849234db40a8edfd5ebc436@%3Cdev.ws.apache.org%3E"
},
{
"name": "GLSA-202107-52",
"refsource": "GENTOO",
"url": "https://security.gentoo.org/glsa/202107-52"
},
{
"name": "[activemq-users] 20210830 Security issues",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r9dc2505651788ac668299774d9e7af4dc616be2f56fdc684d1170882@%3Cusers.activemq.apache.org%3E"
},
{
"name": "[activemq-users] 20210831 RE: Security issues",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r52a5129df402352adc34d052bab9234c8ef63596306506a89fdc7328@%3Cusers.activemq.apache.org%3E"
},
{
"name": "https://www.oracle.com/security-alerts/cpujan2022.html",
"refsource": "MISC",
"url": "https://www.oracle.com/security-alerts/cpujan2022.html"
},
{
"name": "https://www.oracle.com/security-alerts/cpuapr2022.html",
"refsource": "MISC",
"url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
}
]
},
"source": {
"discovery": "UNKNOWN"
},
"work_around": [
{
"lang": "en",
"value": "Applications using Apache Velocity that allow untrusted users to upload templates should upgrade to version 2.3. This version adds additional default restrictions on what methods/properties can be accessed in a template."
}
]
}
}
},
"cveMetadata": {
"assignerOrgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09",
"assignerShortName": "apache",
"cveId": "CVE-2020-13936",
"datePublished": "2021-03-10T08:00:19.000Z",
"dateReserved": "2020-06-08T00:00:00.000Z",
"dateUpdated": "2025-02-13T16:27:29.361Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2020-13936",
"date": "2026-05-31",
"epss": "0.16764",
"percentile": "0.9506"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2020-13936\",\"sourceIdentifier\":\"security@apache.org\",\"published\":\"2021-03-10T08:15:14.103\",\"lastModified\":\"2024-11-21T05:02:11.127\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"An attacker that is able to modify Velocity templates may execute arbitrary Java code or run arbitrary system commands with the same privileges as the account running the Servlet container. This applies to applications that allow untrusted users to upload/modify velocity templates running Apache Velocity Engine versions up to 2.2.\"},{\"lang\":\"es\",\"value\":\"Un atacante que es capaz de modificar las plantillas de Velocity puede ejecutar c\u00f3digo Java arbitrario o ejecutar comandos de sistema arbitrarios con los mismos privilegios que la cuenta que ejecuta el contenedor Servlet.\u0026#xa0;Esto se aplica a las aplicaciones que permiten a usuarios no confiables cargar y modificar plantillas de velocidad que ejecutan versiones de Apache Velocity Engine versiones hasta la 2.2\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":8.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.8,\"impactScore\":5.9}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:S/C:C/I:C/A:C\",\"baseScore\":9.0,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"SINGLE\",\"confidentialityImpact\":\"COMPLETE\",\"integrityImpact\":\"COMPLETE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":8.0,\"impactScore\":10.0,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:velocity_engine:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"2.3\",\"matchCriteriaId\":\"DE517B12-7101-4325-9037-A0839126C725\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:wss4j:2.3.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9F17078E-4D83-49E7-99CE-5174C073DD68\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DEECE5FC-CACF-4496-A3E7-164736409252\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:banking_deposits_and_lines_of_credit_servicing:2.12.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1F834ACC-D65B-4CA3-91F1-415CBC6077E2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:banking_enterprise_default_management:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"2.3.0\",\"versionEndIncluding\":\"2.4.1\",\"matchCriteriaId\":\"0445461D-21F4-4744-91E3-A92C673E947D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:banking_enterprise_default_management:2.6.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E60C0966-BF0D-4D18-B09B-5D0BB96DBFF3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:banking_enterprise_default_management:2.7.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"473749BD-267E-480F-8E7F-C762702DB66E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:banking_enterprise_default_management:2.10.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"74C7E2F1-17FC-4322-A5C3-F7EB612BA4F5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:banking_enterprise_default_management:2.12.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"320D36DA-D99F-4149-B582-3F4AB2F41A1B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:banking_loans_servicing:2.12.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5E502A46-BAF4-4558-BC8F-9F014A2FB26A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:banking_party_management:2.7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C542DC5E-6657-4178-9C69-46FD3C187D56\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:banking_platform:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"2.3.0\",\"versionEndIncluding\":\"2.4.1\",\"matchCriteriaId\":\"6D0F559E-0790-461B-ACED-5B00F4D40893\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:banking_platform:2.6.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"132CE62A-FBFC-4001-81EC-35D81F73AF48\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:banking_platform:2.7.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"645AA3D1-C8B5-4CD2-8ACE-31541FA267F0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:communications_cloud_native_core_policy:1.14.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4479F76A-4B67-41CC-98C7-C76B81050F8E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:communications_network_integrity:7.3.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B21E6EEF-2AB7-4E96-B092-1F49D11B4175\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:hospitality_token_proxy_service:19.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E7D45E2D-241B-4839-B255-A81107BF94BF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:retail_integration_bus:19.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BD311C33-A309-44D5-BBFB-539D72C7F8C4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:retail_order_broker:16.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"38E74E68-7F19-4EF3-AC00-3C249EAAA39E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:retail_service_backbone:19.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9DA6B655-A445-42E5-B6D9-70AB1C04774A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:retail_xstore_office_cloud_service:16.0.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2DEDDCE7-7763-4F8B-AB25-EC3D8899303A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:retail_xstore_office_cloud_service:17.0.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"45F95965-9958-4F05-819D-C59FAE2E1D4E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:retail_xstore_office_cloud_service:18.0.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E7E4D2EE-7439-4958-9503-9A3974DC86D0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:retail_xstore_office_cloud_service:19.0.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D8F03331-16D3-440F-9577-D2A7835F7638\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:retail_xstore_office_cloud_service:20.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1E6216CE-BB56-4996-B6C1-D461EEFD496E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:utilities_testing_accelerator:6.0.0.1.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A3ED272C-A545-4F8C-86C0-2736B3F2DCAF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:utilities_testing_accelerator:6.0.0.2.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C5B4C338-11E1-4235-9D5A-960B2711AC39\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:utilities_testing_accelerator:6.0.0.3.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8C93F84E-9680-44EF-8656-D27440B51698\"}]}]}],\"references\":[{\"url\":\"http://www.openwall.com/lists/oss-security/2021/03/10/1\",\"source\":\"security@apache.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.apache.org/thread.html/r01043f584cbd47959fabe18fff64de940f81a65024bb8dddbda31d9a%40%3Cuser.velocity.apache.org%3E\",\"source\":\"security@apache.org\",\"tags\":[\"Mailing List\",\"Vendor Advisory\"]},{\"url\":\"https://lists.apache.org/thread.html/r01043f584cbd47959fabe18fff64de940f81a65024bb8dddbda31d9a%40%3Cuser.velocity.apache.org%3E\",\"source\":\"security@apache.org\",\"tags\":[\"Mailing List\",\"Vendor Advisory\"]},{\"url\":\"https://lists.apache.org/thread.html/r0bc98e9cd080b4a13b905c571b9bed87e1a0878d44dbf21487c6cca4%40%3Cdev.santuario.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/r17cb932fab14801b14e5b97a7f05192f4f366ef260c10d4a8dba8ac9%40%3Cdev.ws.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/r293284c6806c73f51098001ea86a14271c39f72cd76af9e946d9d9ad%40%3Cdev.ws.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/r39de20c7e9c808b1f96790875d33e58c9c0aabb44fd9227e7b3dc5da%40%3Cdev.ws.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/r3ea4c4c908505b20a4c268330dfe7188b90c84dcf777728d02068ae6%40%3Cannounce.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/r4cd59453b65d4ac290fcb3b71fdf32b4f1f8989025e89558deb5a245%40%3Cdev.ws.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/r52a5129df402352adc34d052bab9234c8ef63596306506a89fdc7328%40%3Cusers.activemq.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/r7f209b837217d2a0fe5977fb692e7f15d37fa5de8214bcdc4c21d9a7%40%3Ccommits.turbine.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/r9dc2505651788ac668299774d9e7af4dc616be2f56fdc684d1170882%40%3Cusers.activemq.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/rb042f3b0090e419cc9f5a3d32cf0baff283ccd6fcb1caea61915d6b6%40%3Ccommits.velocity.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/rbee7270556f4172322936b5ecc9fabf0c09f00d4fa56c9de1963c340%40%3Cdev.ws.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/rd2a89e17e8a9b451ce655f1a34117752ea1d18a22ce580d8baa824fd%40%3Ccommits.druid.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/rd7e865c87f9043c21d9c1fd9d4df866061d9a08cfc322771160d8058%40%3Cdev.ws.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/re641197d204765130618086238c73dd2ce5a3f94b33785b587d72726%40%3Cdev.ws.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/re8e7482fe54d289fc0229e61cc64947b63b12c3c312e9f25bf6f3b8c%40%3Cdev.ws.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/reab5978b54a9f4c078402161e30a89c42807b198814acadbe6c862c7%40%3Cdev.ws.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/rf7d369de88dc88a1347006a3323b3746d849234db40a8edfd5ebc436%40%3Cdev.ws.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.debian.org/debian-lts-announce/2021/03/msg00019.html\",\"source\":\"security@apache.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://security.gentoo.org/glsa/202107-52\",\"source\":\"security@apache.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/security-alerts/cpuapr2022.html\",\"source\":\"security@apache.org\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/security-alerts/cpujan2022.html\",\"source\":\"security@apache.org\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2021/03/10/1\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.apache.org/thread.html/r01043f584cbd47959fabe18fff64de940f81a65024bb8dddbda31d9a%40%3Cuser.velocity.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Vendor Advisory\"]},{\"url\":\"https://lists.apache.org/thread.html/r01043f584cbd47959fabe18fff64de940f81a65024bb8dddbda31d9a%40%3Cuser.velocity.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Vendor Advisory\"]},{\"url\":\"https://lists.apache.org/thread.html/r0bc98e9cd080b4a13b905c571b9bed87e1a0878d44dbf21487c6cca4%40%3Cdev.santuario.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/r17cb932fab14801b14e5b97a7f05192f4f366ef260c10d4a8dba8ac9%40%3Cdev.ws.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/r293284c6806c73f51098001ea86a14271c39f72cd76af9e946d9d9ad%40%3Cdev.ws.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/r39de20c7e9c808b1f96790875d33e58c9c0aabb44fd9227e7b3dc5da%40%3Cdev.ws.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/r3ea4c4c908505b20a4c268330dfe7188b90c84dcf777728d02068ae6%40%3Cannounce.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/r4cd59453b65d4ac290fcb3b71fdf32b4f1f8989025e89558deb5a245%40%3Cdev.ws.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/r52a5129df402352adc34d052bab9234c8ef63596306506a89fdc7328%40%3Cusers.activemq.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/r7f209b837217d2a0fe5977fb692e7f15d37fa5de8214bcdc4c21d9a7%40%3Ccommits.turbine.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/r9dc2505651788ac668299774d9e7af4dc616be2f56fdc684d1170882%40%3Cusers.activemq.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/rb042f3b0090e419cc9f5a3d32cf0baff283ccd6fcb1caea61915d6b6%40%3Ccommits.velocity.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/rbee7270556f4172322936b5ecc9fabf0c09f00d4fa56c9de1963c340%40%3Cdev.ws.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/rd2a89e17e8a9b451ce655f1a34117752ea1d18a22ce580d8baa824fd%40%3Ccommits.druid.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/rd7e865c87f9043c21d9c1fd9d4df866061d9a08cfc322771160d8058%40%3Cdev.ws.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/re641197d204765130618086238c73dd2ce5a3f94b33785b587d72726%40%3Cdev.ws.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/re8e7482fe54d289fc0229e61cc64947b63b12c3c312e9f25bf6f3b8c%40%3Cdev.ws.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/reab5978b54a9f4c078402161e30a89c42807b198814acadbe6c862c7%40%3Cdev.ws.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/rf7d369de88dc88a1347006a3323b3746d849234db40a8edfd5ebc436%40%3Cdev.ws.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.debian.org/debian-lts-announce/2021/03/msg00019.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://security.gentoo.org/glsa/202107-52\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/security-alerts/cpuapr2022.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/security-alerts/cpujan2022.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\"]}]}}"
}
}
FKIE_CVE-2020-13936
Vulnerability from fkie_nvd - Published: 2021-03-10 08:15 - Updated: 2024-11-21 05:02
Severity
Summary
An attacker that is able to modify Velocity templates may execute arbitrary Java code or run arbitrary system commands with the same privileges as the account running the Servlet container. This applies to applications that allow untrusted users to upload/modify velocity templates running Apache Velocity Engine versions up to 2.2.
References
Impacted products
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:apache:velocity_engine:*:*:*:*:*:*:*:*",
"matchCriteriaId": "DE517B12-7101-4325-9037-A0839126C725",
"versionEndExcluding": "2.3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:wss4j:2.3.1:*:*:*:*:*:*:*",
"matchCriteriaId": "9F17078E-4D83-49E7-99CE-5174C073DD68",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*",
"matchCriteriaId": "DEECE5FC-CACF-4496-A3E7-164736409252",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:oracle:banking_deposits_and_lines_of_credit_servicing:2.12.0:*:*:*:*:*:*:*",
"matchCriteriaId": "1F834ACC-D65B-4CA3-91F1-415CBC6077E2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:banking_enterprise_default_management:*:*:*:*:*:*:*:*",
"matchCriteriaId": "0445461D-21F4-4744-91E3-A92C673E947D",
"versionEndIncluding": "2.4.1",
"versionStartIncluding": "2.3.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:banking_enterprise_default_management:2.6.2:*:*:*:*:*:*:*",
"matchCriteriaId": "E60C0966-BF0D-4D18-B09B-5D0BB96DBFF3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:banking_enterprise_default_management:2.7.1:*:*:*:*:*:*:*",
"matchCriteriaId": "473749BD-267E-480F-8E7F-C762702DB66E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:banking_enterprise_default_management:2.10.0:*:*:*:*:*:*:*",
"matchCriteriaId": "74C7E2F1-17FC-4322-A5C3-F7EB612BA4F5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:banking_enterprise_default_management:2.12.0:*:*:*:*:*:*:*",
"matchCriteriaId": "320D36DA-D99F-4149-B582-3F4AB2F41A1B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:banking_loans_servicing:2.12.0:*:*:*:*:*:*:*",
"matchCriteriaId": "5E502A46-BAF4-4558-BC8F-9F014A2FB26A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:banking_party_management:2.7.0:*:*:*:*:*:*:*",
"matchCriteriaId": "C542DC5E-6657-4178-9C69-46FD3C187D56",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:banking_platform:*:*:*:*:*:*:*:*",
"matchCriteriaId": "6D0F559E-0790-461B-ACED-5B00F4D40893",
"versionEndIncluding": "2.4.1",
"versionStartIncluding": "2.3.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:banking_platform:2.6.2:*:*:*:*:*:*:*",
"matchCriteriaId": "132CE62A-FBFC-4001-81EC-35D81F73AF48",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:banking_platform:2.7.1:*:*:*:*:*:*:*",
"matchCriteriaId": "645AA3D1-C8B5-4CD2-8ACE-31541FA267F0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:communications_cloud_native_core_policy:1.14.0:*:*:*:*:*:*:*",
"matchCriteriaId": "4479F76A-4B67-41CC-98C7-C76B81050F8E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:communications_network_integrity:7.3.6:*:*:*:*:*:*:*",
"matchCriteriaId": "B21E6EEF-2AB7-4E96-B092-1F49D11B4175",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:hospitality_token_proxy_service:19.2:*:*:*:*:*:*:*",
"matchCriteriaId": "E7D45E2D-241B-4839-B255-A81107BF94BF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:retail_integration_bus:19.0.1:*:*:*:*:*:*:*",
"matchCriteriaId": "BD311C33-A309-44D5-BBFB-539D72C7F8C4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:retail_order_broker:16.0:*:*:*:*:*:*:*",
"matchCriteriaId": "38E74E68-7F19-4EF3-AC00-3C249EAAA39E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:retail_service_backbone:19.0.1:*:*:*:*:*:*:*",
"matchCriteriaId": "9DA6B655-A445-42E5-B6D9-70AB1C04774A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:retail_xstore_office_cloud_service:16.0.6:*:*:*:*:*:*:*",
"matchCriteriaId": "2DEDDCE7-7763-4F8B-AB25-EC3D8899303A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:retail_xstore_office_cloud_service:17.0.4:*:*:*:*:*:*:*",
"matchCriteriaId": "45F95965-9958-4F05-819D-C59FAE2E1D4E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:retail_xstore_office_cloud_service:18.0.3:*:*:*:*:*:*:*",
"matchCriteriaId": "E7E4D2EE-7439-4958-9503-9A3974DC86D0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:retail_xstore_office_cloud_service:19.0.2:*:*:*:*:*:*:*",
"matchCriteriaId": "D8F03331-16D3-440F-9577-D2A7835F7638",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:retail_xstore_office_cloud_service:20.0.1:*:*:*:*:*:*:*",
"matchCriteriaId": "1E6216CE-BB56-4996-B6C1-D461EEFD496E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:utilities_testing_accelerator:6.0.0.1.1:*:*:*:*:*:*:*",
"matchCriteriaId": "A3ED272C-A545-4F8C-86C0-2736B3F2DCAF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:utilities_testing_accelerator:6.0.0.2.2:*:*:*:*:*:*:*",
"matchCriteriaId": "C5B4C338-11E1-4235-9D5A-960B2711AC39",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:utilities_testing_accelerator:6.0.0.3.1:*:*:*:*:*:*:*",
"matchCriteriaId": "8C93F84E-9680-44EF-8656-D27440B51698",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "An attacker that is able to modify Velocity templates may execute arbitrary Java code or run arbitrary system commands with the same privileges as the account running the Servlet container. This applies to applications that allow untrusted users to upload/modify velocity templates running Apache Velocity Engine versions up to 2.2."
},
{
"lang": "es",
"value": "Un atacante que es capaz de modificar las plantillas de Velocity puede ejecutar c\u00f3digo Java arbitrario o ejecutar comandos de sistema arbitrarios con los mismos privilegios que la cuenta que ejecuta el contenedor Servlet.\u0026#xa0;Esto se aplica a las aplicaciones que permiten a usuarios no confiables cargar y modificar plantillas de velocidad que ejecutan versiones de Apache Velocity Engine versiones hasta la 2.2"
}
],
"id": "CVE-2020-13936",
"lastModified": "2024-11-21T05:02:11.127",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "HIGH",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "SINGLE",
"availabilityImpact": "COMPLETE",
"baseScore": 9.0,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:N/AC:L/Au:S/C:C/I:C/A:C",
"version": "2.0"
},
"exploitabilityScore": 8.0,
"impactScore": 10.0,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 2.8,
"impactScore": 5.9,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2021-03-10T08:15:14.103",
"references": [
{
"source": "security@apache.org",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://www.openwall.com/lists/oss-security/2021/03/10/1"
},
{
"source": "security@apache.org",
"tags": [
"Mailing List",
"Vendor Advisory"
],
"url": "https://lists.apache.org/thread.html/r01043f584cbd47959fabe18fff64de940f81a65024bb8dddbda31d9a%40%3Cuser.velocity.apache.org%3E"
},
{
"source": "security@apache.org",
"tags": [
"Mailing List",
"Vendor Advisory"
],
"url": "https://lists.apache.org/thread.html/r01043f584cbd47959fabe18fff64de940f81a65024bb8dddbda31d9a%40%3Cuser.velocity.apache.org%3E"
},
{
"source": "security@apache.org",
"url": "https://lists.apache.org/thread.html/r0bc98e9cd080b4a13b905c571b9bed87e1a0878d44dbf21487c6cca4%40%3Cdev.santuario.apache.org%3E"
},
{
"source": "security@apache.org",
"url": "https://lists.apache.org/thread.html/r17cb932fab14801b14e5b97a7f05192f4f366ef260c10d4a8dba8ac9%40%3Cdev.ws.apache.org%3E"
},
{
"source": "security@apache.org",
"url": "https://lists.apache.org/thread.html/r293284c6806c73f51098001ea86a14271c39f72cd76af9e946d9d9ad%40%3Cdev.ws.apache.org%3E"
},
{
"source": "security@apache.org",
"url": "https://lists.apache.org/thread.html/r39de20c7e9c808b1f96790875d33e58c9c0aabb44fd9227e7b3dc5da%40%3Cdev.ws.apache.org%3E"
},
{
"source": "security@apache.org",
"url": "https://lists.apache.org/thread.html/r3ea4c4c908505b20a4c268330dfe7188b90c84dcf777728d02068ae6%40%3Cannounce.apache.org%3E"
},
{
"source": "security@apache.org",
"url": "https://lists.apache.org/thread.html/r4cd59453b65d4ac290fcb3b71fdf32b4f1f8989025e89558deb5a245%40%3Cdev.ws.apache.org%3E"
},
{
"source": "security@apache.org",
"url": "https://lists.apache.org/thread.html/r52a5129df402352adc34d052bab9234c8ef63596306506a89fdc7328%40%3Cusers.activemq.apache.org%3E"
},
{
"source": "security@apache.org",
"url": "https://lists.apache.org/thread.html/r7f209b837217d2a0fe5977fb692e7f15d37fa5de8214bcdc4c21d9a7%40%3Ccommits.turbine.apache.org%3E"
},
{
"source": "security@apache.org",
"url": "https://lists.apache.org/thread.html/r9dc2505651788ac668299774d9e7af4dc616be2f56fdc684d1170882%40%3Cusers.activemq.apache.org%3E"
},
{
"source": "security@apache.org",
"url": "https://lists.apache.org/thread.html/rb042f3b0090e419cc9f5a3d32cf0baff283ccd6fcb1caea61915d6b6%40%3Ccommits.velocity.apache.org%3E"
},
{
"source": "security@apache.org",
"url": "https://lists.apache.org/thread.html/rbee7270556f4172322936b5ecc9fabf0c09f00d4fa56c9de1963c340%40%3Cdev.ws.apache.org%3E"
},
{
"source": "security@apache.org",
"url": "https://lists.apache.org/thread.html/rd2a89e17e8a9b451ce655f1a34117752ea1d18a22ce580d8baa824fd%40%3Ccommits.druid.apache.org%3E"
},
{
"source": "security@apache.org",
"url": "https://lists.apache.org/thread.html/rd7e865c87f9043c21d9c1fd9d4df866061d9a08cfc322771160d8058%40%3Cdev.ws.apache.org%3E"
},
{
"source": "security@apache.org",
"url": "https://lists.apache.org/thread.html/re641197d204765130618086238c73dd2ce5a3f94b33785b587d72726%40%3Cdev.ws.apache.org%3E"
},
{
"source": "security@apache.org",
"url": "https://lists.apache.org/thread.html/re8e7482fe54d289fc0229e61cc64947b63b12c3c312e9f25bf6f3b8c%40%3Cdev.ws.apache.org%3E"
},
{
"source": "security@apache.org",
"url": "https://lists.apache.org/thread.html/reab5978b54a9f4c078402161e30a89c42807b198814acadbe6c862c7%40%3Cdev.ws.apache.org%3E"
},
{
"source": "security@apache.org",
"url": "https://lists.apache.org/thread.html/rf7d369de88dc88a1347006a3323b3746d849234db40a8edfd5ebc436%40%3Cdev.ws.apache.org%3E"
},
{
"source": "security@apache.org",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.debian.org/debian-lts-announce/2021/03/msg00019.html"
},
{
"source": "security@apache.org",
"tags": [
"Third Party Advisory"
],
"url": "https://security.gentoo.org/glsa/202107-52"
},
{
"source": "security@apache.org",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
},
{
"source": "security@apache.org",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://www.oracle.com/security-alerts/cpujan2022.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://www.openwall.com/lists/oss-security/2021/03/10/1"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Vendor Advisory"
],
"url": "https://lists.apache.org/thread.html/r01043f584cbd47959fabe18fff64de940f81a65024bb8dddbda31d9a%40%3Cuser.velocity.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Vendor Advisory"
],
"url": "https://lists.apache.org/thread.html/r01043f584cbd47959fabe18fff64de940f81a65024bb8dddbda31d9a%40%3Cuser.velocity.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.apache.org/thread.html/r0bc98e9cd080b4a13b905c571b9bed87e1a0878d44dbf21487c6cca4%40%3Cdev.santuario.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.apache.org/thread.html/r17cb932fab14801b14e5b97a7f05192f4f366ef260c10d4a8dba8ac9%40%3Cdev.ws.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.apache.org/thread.html/r293284c6806c73f51098001ea86a14271c39f72cd76af9e946d9d9ad%40%3Cdev.ws.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.apache.org/thread.html/r39de20c7e9c808b1f96790875d33e58c9c0aabb44fd9227e7b3dc5da%40%3Cdev.ws.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.apache.org/thread.html/r3ea4c4c908505b20a4c268330dfe7188b90c84dcf777728d02068ae6%40%3Cannounce.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.apache.org/thread.html/r4cd59453b65d4ac290fcb3b71fdf32b4f1f8989025e89558deb5a245%40%3Cdev.ws.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.apache.org/thread.html/r52a5129df402352adc34d052bab9234c8ef63596306506a89fdc7328%40%3Cusers.activemq.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.apache.org/thread.html/r7f209b837217d2a0fe5977fb692e7f15d37fa5de8214bcdc4c21d9a7%40%3Ccommits.turbine.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.apache.org/thread.html/r9dc2505651788ac668299774d9e7af4dc616be2f56fdc684d1170882%40%3Cusers.activemq.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.apache.org/thread.html/rb042f3b0090e419cc9f5a3d32cf0baff283ccd6fcb1caea61915d6b6%40%3Ccommits.velocity.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.apache.org/thread.html/rbee7270556f4172322936b5ecc9fabf0c09f00d4fa56c9de1963c340%40%3Cdev.ws.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.apache.org/thread.html/rd2a89e17e8a9b451ce655f1a34117752ea1d18a22ce580d8baa824fd%40%3Ccommits.druid.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.apache.org/thread.html/rd7e865c87f9043c21d9c1fd9d4df866061d9a08cfc322771160d8058%40%3Cdev.ws.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.apache.org/thread.html/re641197d204765130618086238c73dd2ce5a3f94b33785b587d72726%40%3Cdev.ws.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.apache.org/thread.html/re8e7482fe54d289fc0229e61cc64947b63b12c3c312e9f25bf6f3b8c%40%3Cdev.ws.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.apache.org/thread.html/reab5978b54a9f4c078402161e30a89c42807b198814acadbe6c862c7%40%3Cdev.ws.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.apache.org/thread.html/rf7d369de88dc88a1347006a3323b3746d849234db40a8edfd5ebc436%40%3Cdev.ws.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.debian.org/debian-lts-announce/2021/03/msg00019.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://security.gentoo.org/glsa/202107-52"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://www.oracle.com/security-alerts/cpujan2022.html"
}
],
"sourceIdentifier": "security@apache.org",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-noinfo"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
GHSA-59J4-WJWP-MW9M
Vulnerability from github – Published: 2022-01-06 20:32 – Updated: 2022-04-01 20:22
VLAI
Summary
Sandbox Bypass in Apache Velocity Engine
Details
An attacker that is able to modify Velocity templates may execute arbitrary Java code or run arbitrary system commands with the same privileges as the account running the Servlet container. This applies to applications that allow untrusted users to upload/modify velocity templates running Apache Velocity Engine versions up to 2.2.
Severity
8.8 (High)
{
"affected": [
{
"package": {
"ecosystem": "Maven",
"name": "org.apache.velocity:velocity-engine-parent"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2.3"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "Maven",
"name": "org.apache.velocity:velocity"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "1.7"
}
],
"type": "ECOSYSTEM"
}
]
}
],
"aliases": [
"CVE-2020-13936"
],
"database_specific": {
"cwe_ids": [
"CWE-20"
],
"github_reviewed": true,
"github_reviewed_at": "2021-03-17T00:56:56Z",
"nvd_published_at": "2021-03-10T08:15:00Z",
"severity": "HIGH"
},
"details": "An attacker that is able to modify Velocity templates may execute arbitrary Java code or run arbitrary system commands with the same privileges as the account running the Servlet container. This applies to applications that allow untrusted users to upload/modify velocity templates running Apache Velocity Engine versions up to 2.2.",
"id": "GHSA-59j4-wjwp-mw9m",
"modified": "2022-04-01T20:22:44Z",
"published": "2022-01-06T20:32:36Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-13936"
},
{
"type": "WEB",
"url": "https://www.oracle.com/security-alerts/cpujan2022.html"
},
{
"type": "WEB",
"url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
},
{
"type": "WEB",
"url": "https://security.gentoo.org/glsa/202107-52"
},
{
"type": "WEB",
"url": "https://lists.debian.org/debian-lts-announce/2021/03/msg00019.html"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/rf7d369de88dc88a1347006a3323b3746d849234db40a8edfd5ebc436@%3Cdev.ws.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/reab5978b54a9f4c078402161e30a89c42807b198814acadbe6c862c7@%3Cdev.ws.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/re8e7482fe54d289fc0229e61cc64947b63b12c3c312e9f25bf6f3b8c@%3Cdev.ws.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/re641197d204765130618086238c73dd2ce5a3f94b33785b587d72726@%3Cdev.ws.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/rd7e865c87f9043c21d9c1fd9d4df866061d9a08cfc322771160d8058@%3Cdev.ws.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/rd2a89e17e8a9b451ce655f1a34117752ea1d18a22ce580d8baa824fd@%3Ccommits.druid.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/rbee7270556f4172322936b5ecc9fabf0c09f00d4fa56c9de1963c340@%3Cdev.ws.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/rb042f3b0090e419cc9f5a3d32cf0baff283ccd6fcb1caea61915d6b6@%3Ccommits.velocity.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/r9dc2505651788ac668299774d9e7af4dc616be2f56fdc684d1170882@%3Cusers.activemq.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/r7f209b837217d2a0fe5977fb692e7f15d37fa5de8214bcdc4c21d9a7@%3Ccommits.turbine.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/r52a5129df402352adc34d052bab9234c8ef63596306506a89fdc7328@%3Cusers.activemq.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/r4cd59453b65d4ac290fcb3b71fdf32b4f1f8989025e89558deb5a245@%3Cdev.ws.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/r3ea4c4c908505b20a4c268330dfe7188b90c84dcf777728d02068ae6@%3Cannounce.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/r39de20c7e9c808b1f96790875d33e58c9c0aabb44fd9227e7b3dc5da@%3Cdev.ws.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/r293284c6806c73f51098001ea86a14271c39f72cd76af9e946d9d9ad@%3Cdev.ws.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/r17cb932fab14801b14e5b97a7f05192f4f366ef260c10d4a8dba8ac9@%3Cdev.ws.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/r0bc98e9cd080b4a13b905c571b9bed87e1a0878d44dbf21487c6cca4@%3Cdev.santuario.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/r01043f584cbd47959fabe18fff64de940f81a65024bb8dddbda31d9a@%3Cuser.velocity.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/r01043f584cbd47959fabe18fff64de940f81a65024bb8dddbda31d9a%40%3Cuser.velocity.apache.org%3E"
},
{
"type": "PACKAGE",
"url": "https://github.com/apache/velocity-engine"
},
{
"type": "WEB",
"url": "http://www.openwall.com/lists/oss-security/2021/03/10/1"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
}
],
"summary": "Sandbox Bypass in Apache Velocity Engine"
}
GSD-2020-13936
Vulnerability from gsd - Updated: 2023-12-13 01:21Details
An attacker that is able to modify Velocity templates may execute arbitrary Java code or run arbitrary system commands with the same privileges as the account running the Servlet container. This applies to applications that allow untrusted users to upload/modify velocity templates running Apache Velocity Engine versions up to 2.2.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2020-13936",
"description": "An attacker that is able to modify Velocity templates may execute arbitrary Java code or run arbitrary system commands with the same privileges as the account running the Servlet container. This applies to applications that allow untrusted users to upload/modify velocity templates running Apache Velocity Engine versions up to 2.2.",
"id": "GSD-2020-13936",
"references": [
"https://www.suse.com/security/cve/CVE-2020-13936.html",
"https://access.redhat.com/errata/RHSA-2021:4918",
"https://access.redhat.com/errata/RHSA-2021:4767",
"https://access.redhat.com/errata/RHSA-2021:3660",
"https://access.redhat.com/errata/RHSA-2021:3658",
"https://access.redhat.com/errata/RHSA-2021:3656",
"https://access.redhat.com/errata/RHSA-2021:3140",
"https://access.redhat.com/errata/RHSA-2021:2755",
"https://access.redhat.com/errata/RHSA-2021:2210",
"https://access.redhat.com/errata/RHSA-2021:2051",
"https://access.redhat.com/errata/RHSA-2021:2048",
"https://access.redhat.com/errata/RHSA-2021:2047",
"https://access.redhat.com/errata/RHSA-2021:2046",
"https://advisories.mageia.org/CVE-2020-13936.html"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2020-13936"
],
"details": "An attacker that is able to modify Velocity templates may execute arbitrary Java code or run arbitrary system commands with the same privileges as the account running the Servlet container. This applies to applications that allow untrusted users to upload/modify velocity templates running Apache Velocity Engine versions up to 2.2.",
"id": "GSD-2020-13936",
"modified": "2023-12-13T01:21:47.159017Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "security@apache.org",
"ID": "CVE-2020-13936",
"STATE": "PUBLIC",
"TITLE": "Velocity Sandbox Bypass"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Apache Velocity Engine",
"version": {
"version_data": [
{
"version_affected": "\u003c=",
"version_name": "Apache Velocity Engine",
"version_value": "2.2"
}
]
}
}
]
},
"vendor_name": "Apache Software Foundation"
}
]
}
},
"credit": [
{
"lang": "eng",
"value": "This issue was discovered by Alvaro Munoz pwntester@github.com of Github Security Labs and was originally reported as GHSL-2020-048."
}
],
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "An attacker that is able to modify Velocity templates may execute arbitrary Java code or run arbitrary system commands with the same privileges as the account running the Servlet container. This applies to applications that allow untrusted users to upload/modify velocity templates running Apache Velocity Engine versions up to 2.2."
}
]
},
"generator": {
"engine": "Vulnogram 0.0.9"
},
"impact": {},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Velocity Sandbox Bypass"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://lists.apache.org/thread.html/r01043f584cbd47959fabe18fff64de940f81a65024bb8dddbda31d9a%40%3Cuser.velocity.apache.org%3E",
"refsource": "MISC",
"url": "https://lists.apache.org/thread.html/r01043f584cbd47959fabe18fff64de940f81a65024bb8dddbda31d9a%40%3Cuser.velocity.apache.org%3E"
},
{
"name": "[velocity-user] 20210310 CVE-2020-13936: Velocity Sandbox Bypass",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r01043f584cbd47959fabe18fff64de940f81a65024bb8dddbda31d9a@%3Cuser.velocity.apache.org%3E"
},
{
"name": "[velocity-commits] 20210310 [velocity-site] 01/01: CVE announcement",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/rb042f3b0090e419cc9f5a3d32cf0baff283ccd6fcb1caea61915d6b6@%3Ccommits.velocity.apache.org%3E"
},
{
"name": "[oss-security] 20210309 CVE-2020-13936: Velocity Sandbox Bypass",
"refsource": "MLIST",
"url": "http://www.openwall.com/lists/oss-security/2021/03/10/1"
},
{
"name": "[announce] 20210310 CVE-2020-13936: Velocity Sandbox Bypass",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r3ea4c4c908505b20a4c268330dfe7188b90c84dcf777728d02068ae6@%3Cannounce.apache.org%3E"
},
{
"name": "[druid-commits] 20210316 [GitHub] [druid] clintropolis opened a new pull request #11002: suppress CVE check for security fix",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/rd2a89e17e8a9b451ce655f1a34117752ea1d18a22ce580d8baa824fd@%3Ccommits.druid.apache.org%3E"
},
{
"name": "[debian-lts-announce] 20210317 [SECURITY] [DLA 2595-1] velocity security update",
"refsource": "MLIST",
"url": "https://lists.debian.org/debian-lts-announce/2021/03/msg00019.html"
},
{
"name": "[ws-dev] 20210318 [jira] [Commented] (WSS-683) WSS4J depends on Velocity 1.7 which contains a security vulnerability (CVE-2020-13936)",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/re641197d204765130618086238c73dd2ce5a3f94b33785b587d72726@%3Cdev.ws.apache.org%3E"
},
{
"name": "[ws-dev] 20210318 [jira] [Created] (WSS-683) WSS4J depends on Velocity 1.7 which contains a security vulnerability (CVE-2020-13936)",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/rbee7270556f4172322936b5ecc9fabf0c09f00d4fa56c9de1963c340@%3Cdev.ws.apache.org%3E"
},
{
"name": "[ws-dev] 20210319 [jira] [Commented] (WSS-683) WSS4J depends on Velocity 1.7 which contains a security vulnerability (CVE-2020-13936)",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/reab5978b54a9f4c078402161e30a89c42807b198814acadbe6c862c7@%3Cdev.ws.apache.org%3E"
},
{
"name": "[ws-dev] 20210319 [jira] [Comment Edited] (WSS-683) WSS4J depends on Velocity 1.7 which contains a security vulnerability (CVE-2020-13936)",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/rd7e865c87f9043c21d9c1fd9d4df866061d9a08cfc322771160d8058@%3Cdev.ws.apache.org%3E"
},
{
"name": "[ws-dev] 20210322 [jira] [Commented] (WSS-683) WSS4J depends on Velocity 1.7 which contains a security vulnerability (CVE-2020-13936)",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/re8e7482fe54d289fc0229e61cc64947b63b12c3c312e9f25bf6f3b8c@%3Cdev.ws.apache.org%3E"
},
{
"name": "[santuario-dev] 20210323 [GitHub] [santuario-xml-security-java] dependabot[bot] opened a new pull request #33: Bump dependency-check-maven from 6.1.2 to 6.1.3",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r0bc98e9cd080b4a13b905c571b9bed87e1a0878d44dbf21487c6cca4@%3Cdev.santuario.apache.org%3E"
},
{
"name": "[ws-dev] 20210324 [jira] [Commented] (WSS-683) WSS4J depends on Velocity 1.7 which contains a security vulnerability (CVE-2020-13936)",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r39de20c7e9c808b1f96790875d33e58c9c0aabb44fd9227e7b3dc5da@%3Cdev.ws.apache.org%3E"
},
{
"name": "[ws-dev] 20210325 [jira] [Updated] (WSS-683) WSS4J depends on Velocity 1.7 which contains a security vulnerability (CVE-2020-13936)",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r17cb932fab14801b14e5b97a7f05192f4f366ef260c10d4a8dba8ac9@%3Cdev.ws.apache.org%3E"
},
{
"name": "[ws-dev] 20210325 [jira] [Commented] (WSS-683) WSS4J depends on Velocity 1.7 which contains a security vulnerability (CVE-2020-13936)",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r4cd59453b65d4ac290fcb3b71fdf32b4f1f8989025e89558deb5a245@%3Cdev.ws.apache.org%3E"
},
{
"name": "[turbine-commits] 20210329 svn commit: r1888167 - /turbine/core/trunk/pom.xml",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r7f209b837217d2a0fe5977fb692e7f15d37fa5de8214bcdc4c21d9a7@%3Ccommits.turbine.apache.org%3E"
},
{
"name": "[ws-dev] 20210331 [jira] [Commented] (WSS-683) WSS4J depends on Velocity 1.7 which contains a security vulnerability (CVE-2020-13936)",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r293284c6806c73f51098001ea86a14271c39f72cd76af9e946d9d9ad@%3Cdev.ws.apache.org%3E"
},
{
"name": "[ws-dev] 20210401 [jira] [Commented] (WSS-683) WSS4J depends on Velocity 1.7 which contains a security vulnerability (CVE-2020-13936)",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/rf7d369de88dc88a1347006a3323b3746d849234db40a8edfd5ebc436@%3Cdev.ws.apache.org%3E"
},
{
"name": "GLSA-202107-52",
"refsource": "GENTOO",
"url": "https://security.gentoo.org/glsa/202107-52"
},
{
"name": "[activemq-users] 20210830 Security issues",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r9dc2505651788ac668299774d9e7af4dc616be2f56fdc684d1170882@%3Cusers.activemq.apache.org%3E"
},
{
"name": "[activemq-users] 20210831 RE: Security issues",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r52a5129df402352adc34d052bab9234c8ef63596306506a89fdc7328@%3Cusers.activemq.apache.org%3E"
},
{
"name": "https://www.oracle.com/security-alerts/cpujan2022.html",
"refsource": "MISC",
"url": "https://www.oracle.com/security-alerts/cpujan2022.html"
},
{
"name": "https://www.oracle.com/security-alerts/cpuapr2022.html",
"refsource": "MISC",
"url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
}
]
},
"source": {
"discovery": "UNKNOWN"
},
"work_around": [
{
"lang": "eng",
"value": "Applications using Apache Velocity that allow untrusted users to upload templates should upgrade to version 2.3. This version adds additional default restrictions on what methods/properties can be accessed in a template."
}
]
},
"gitlab.com": {
"advisories": [
{
"affected_range": "(,2.3)",
"affected_versions": "All versions before 2.3",
"cvss_v2": "AV:N/AC:L/Au:S/C:C/I:C/A:C",
"cvss_v3": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"cwe_ids": [
"CWE-1035",
"CWE-937"
],
"date": "2021-09-23",
"description": "An attacker that is able to modify Velocity templates may execute arbitrary Java code or run arbitrary system commands with the same privileges as the account running the Servlet container. This applies to applications that allow untrusted users to `upload/modify` velocity templates.",
"fixed_versions": [
"2.3"
],
"identifier": "CVE-2020-13936",
"identifiers": [
"CVE-2020-13936"
],
"not_impacted": "All versions starting from 2.3",
"package_slug": "maven/org.apache.velocity/velocity-engine-core",
"pubdate": "2021-03-10",
"solution": "Upgrade to version 2.3 or above.",
"title": "Template injection",
"urls": [
"https://nvd.nist.gov/vuln/detail/CVE-2020-13936"
],
"uuid": "e7f530f9-3ea1-4d36-9f20-129a2317263c"
},
{
"affected_range": "(,2.3)",
"affected_versions": "All versions before 2.3",
"cvss_v2": "AV:N/AC:L/Au:S/C:C/I:C/A:C",
"cvss_v3": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"cwe_ids": [
"CWE-1035",
"CWE-78",
"CWE-937"
],
"date": "2022-01-06",
"description": "An attacker that is able to modify Velocity templates may execute arbitrary Java code or run arbitrary system commands with the same privileges as the account running the Servlet container. This applies to applications that allow untrusted users to upload/modify velocity templates running Apache Velocity Engine versions up to 2.2.",
"fixed_versions": [
"2.3"
],
"identifier": "CVE-2020-13936",
"identifiers": [
"GHSA-59j4-wjwp-mw9m",
"CVE-2020-13936"
],
"not_impacted": "All versions starting from 2.3",
"package_slug": "maven/org.apache.velocity/velocity-engine-parent",
"pubdate": "2022-01-06",
"solution": "Upgrade to version 2.3 or above.",
"title": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)",
"urls": [
"https://nvd.nist.gov/vuln/detail/CVE-2020-13936",
"https://github.com/advisories/GHSA-59j4-wjwp-mw9m"
],
"uuid": "94cbce7e-d97d-4a52-9d2f-d6a2cec0e360"
},
{
"affected_range": "(,1.7]",
"affected_versions": "All versions up to 1.7",
"cvss_v2": "AV:N/AC:L/Au:S/C:C/I:C/A:C",
"cvss_v3": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"cwe_ids": [
"CWE-1035",
"CWE-78",
"CWE-937"
],
"date": "2022-01-06",
"description": "An attacker that is able to modify Velocity templates may execute arbitrary Java code or run arbitrary system commands with the same privileges as the account running the Servlet container. This applies to applications that allow untrusted users to upload/modify velocity templates running Apache Velocity Engine versions up to 2.2.",
"fixed_versions": [],
"identifier": "CVE-2020-13936",
"identifiers": [
"GHSA-59j4-wjwp-mw9m",
"CVE-2020-13936"
],
"not_impacted": "",
"package_slug": "maven/org.apache.velocity/velocity",
"pubdate": "2022-01-06",
"solution": "Unfortunately, there is no solution available yet.",
"title": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)",
"urls": [
"https://nvd.nist.gov/vuln/detail/CVE-2020-13936",
"https://github.com/advisories/GHSA-59j4-wjwp-mw9m"
],
"uuid": "d5147272-bb7a-4897-9496-f21bfe6a61ba"
}
]
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:apache:velocity_engine:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "2.3",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:wss4j:2.3.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:oracle:retail_order_broker:16.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:banking_platform:2.6.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:banking_platform:2.7.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:communications_network_integrity:7.3.6:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:banking_enterprise_default_management:2.12.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:banking_enterprise_default_management:2.10.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:banking_party_management:2.7.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:utilities_testing_accelerator:6.0.0.2.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:utilities_testing_accelerator:6.0.0.3.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:utilities_testing_accelerator:6.0.0.1.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:banking_deposits_and_lines_of_credit_servicing:2.12.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:banking_enterprise_default_management:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "2.4.1",
"versionStartIncluding": "2.3.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:banking_enterprise_default_management:2.6.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:banking_enterprise_default_management:2.7.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:banking_loans_servicing:2.12.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:banking_platform:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "2.4.1",
"versionStartIncluding": "2.3.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:communications_cloud_native_core_policy:1.14.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:hospitality_token_proxy_service:19.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:retail_integration_bus:19.0.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:retail_service_backbone:19.0.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:retail_xstore_office_cloud_service:16.0.6:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:retail_xstore_office_cloud_service:17.0.4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:retail_xstore_office_cloud_service:18.0.3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:retail_xstore_office_cloud_service:19.0.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:retail_xstore_office_cloud_service:20.0.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "security@apache.org",
"ID": "CVE-2020-13936"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "An attacker that is able to modify Velocity templates may execute arbitrary Java code or run arbitrary system commands with the same privileges as the account running the Servlet container. This applies to applications that allow untrusted users to upload/modify velocity templates running Apache Velocity Engine versions up to 2.2."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-noinfo"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "N/A",
"refsource": "CONFIRM",
"tags": [
"Mailing List",
"Vendor Advisory"
],
"url": "https://lists.apache.org/thread.html/r01043f584cbd47959fabe18fff64de940f81a65024bb8dddbda31d9a%40%3Cuser.velocity.apache.org%3E"
},
{
"name": "[velocity-user] 20210310 CVE-2020-13936: Velocity Sandbox Bypass",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Vendor Advisory"
],
"url": "https://lists.apache.org/thread.html/r01043f584cbd47959fabe18fff64de940f81a65024bb8dddbda31d9a@%3Cuser.velocity.apache.org%3E"
},
{
"name": "[velocity-commits] 20210310 [velocity-site] 01/01: CVE announcement",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Patch",
"Vendor Advisory"
],
"url": "https://lists.apache.org/thread.html/rb042f3b0090e419cc9f5a3d32cf0baff283ccd6fcb1caea61915d6b6@%3Ccommits.velocity.apache.org%3E"
},
{
"name": "[announce] 20210310 CVE-2020-13936: Velocity Sandbox Bypass",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Vendor Advisory"
],
"url": "https://lists.apache.org/thread.html/r3ea4c4c908505b20a4c268330dfe7188b90c84dcf777728d02068ae6@%3Cannounce.apache.org%3E"
},
{
"name": "[oss-security] 20210309 CVE-2020-13936: Velocity Sandbox Bypass",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://www.openwall.com/lists/oss-security/2021/03/10/1"
},
{
"name": "[druid-commits] 20210316 [GitHub] [druid] clintropolis opened a new pull request #11002: suppress CVE check for security fix",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Vendor Advisory"
],
"url": "https://lists.apache.org/thread.html/rd2a89e17e8a9b451ce655f1a34117752ea1d18a22ce580d8baa824fd@%3Ccommits.druid.apache.org%3E"
},
{
"name": "[debian-lts-announce] 20210317 [SECURITY] [DLA 2595-1] velocity security update",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.debian.org/debian-lts-announce/2021/03/msg00019.html"
},
{
"name": "[ws-dev] 20210318 [jira] [Commented] (WSS-683) WSS4J depends on Velocity 1.7 which contains a security vulnerability (CVE-2020-13936)",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Vendor Advisory"
],
"url": "https://lists.apache.org/thread.html/re641197d204765130618086238c73dd2ce5a3f94b33785b587d72726@%3Cdev.ws.apache.org%3E"
},
{
"name": "[ws-dev] 20210318 [jira] [Created] (WSS-683) WSS4J depends on Velocity 1.7 which contains a security vulnerability (CVE-2020-13936)",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Vendor Advisory"
],
"url": "https://lists.apache.org/thread.html/rbee7270556f4172322936b5ecc9fabf0c09f00d4fa56c9de1963c340@%3Cdev.ws.apache.org%3E"
},
{
"name": "[ws-dev] 20210319 [jira] [Commented] (WSS-683) WSS4J depends on Velocity 1.7 which contains a security vulnerability (CVE-2020-13936)",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Vendor Advisory"
],
"url": "https://lists.apache.org/thread.html/reab5978b54a9f4c078402161e30a89c42807b198814acadbe6c862c7@%3Cdev.ws.apache.org%3E"
},
{
"name": "[ws-dev] 20210319 [jira] [Comment Edited] (WSS-683) WSS4J depends on Velocity 1.7 which contains a security vulnerability (CVE-2020-13936)",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Vendor Advisory"
],
"url": "https://lists.apache.org/thread.html/rd7e865c87f9043c21d9c1fd9d4df866061d9a08cfc322771160d8058@%3Cdev.ws.apache.org%3E"
},
{
"name": "[ws-dev] 20210322 [jira] [Commented] (WSS-683) WSS4J depends on Velocity 1.7 which contains a security vulnerability (CVE-2020-13936)",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Vendor Advisory"
],
"url": "https://lists.apache.org/thread.html/re8e7482fe54d289fc0229e61cc64947b63b12c3c312e9f25bf6f3b8c@%3Cdev.ws.apache.org%3E"
},
{
"name": "[santuario-dev] 20210323 [GitHub] [santuario-xml-security-java] dependabot[bot] opened a new pull request #33: Bump dependency-check-maven from 6.1.2 to 6.1.3",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Vendor Advisory"
],
"url": "https://lists.apache.org/thread.html/r0bc98e9cd080b4a13b905c571b9bed87e1a0878d44dbf21487c6cca4@%3Cdev.santuario.apache.org%3E"
},
{
"name": "[ws-dev] 20210324 [jira] [Commented] (WSS-683) WSS4J depends on Velocity 1.7 which contains a security vulnerability (CVE-2020-13936)",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Vendor Advisory"
],
"url": "https://lists.apache.org/thread.html/r39de20c7e9c808b1f96790875d33e58c9c0aabb44fd9227e7b3dc5da@%3Cdev.ws.apache.org%3E"
},
{
"name": "[ws-dev] 20210325 [jira] [Commented] (WSS-683) WSS4J depends on Velocity 1.7 which contains a security vulnerability (CVE-2020-13936)",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Vendor Advisory"
],
"url": "https://lists.apache.org/thread.html/r4cd59453b65d4ac290fcb3b71fdf32b4f1f8989025e89558deb5a245@%3Cdev.ws.apache.org%3E"
},
{
"name": "[ws-dev] 20210325 [jira] [Updated] (WSS-683) WSS4J depends on Velocity 1.7 which contains a security vulnerability (CVE-2020-13936)",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Vendor Advisory"
],
"url": "https://lists.apache.org/thread.html/r17cb932fab14801b14e5b97a7f05192f4f366ef260c10d4a8dba8ac9@%3Cdev.ws.apache.org%3E"
},
{
"name": "[turbine-commits] 20210329 svn commit: r1888167 - /turbine/core/trunk/pom.xml",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Patch",
"Vendor Advisory"
],
"url": "https://lists.apache.org/thread.html/r7f209b837217d2a0fe5977fb692e7f15d37fa5de8214bcdc4c21d9a7@%3Ccommits.turbine.apache.org%3E"
},
{
"name": "[ws-dev] 20210331 [jira] [Commented] (WSS-683) WSS4J depends on Velocity 1.7 which contains a security vulnerability (CVE-2020-13936)",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Vendor Advisory"
],
"url": "https://lists.apache.org/thread.html/r293284c6806c73f51098001ea86a14271c39f72cd76af9e946d9d9ad@%3Cdev.ws.apache.org%3E"
},
{
"name": "[ws-dev] 20210401 [jira] [Commented] (WSS-683) WSS4J depends on Velocity 1.7 which contains a security vulnerability (CVE-2020-13936)",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Vendor Advisory"
],
"url": "https://lists.apache.org/thread.html/rf7d369de88dc88a1347006a3323b3746d849234db40a8edfd5ebc436@%3Cdev.ws.apache.org%3E"
},
{
"name": "GLSA-202107-52",
"refsource": "GENTOO",
"tags": [
"Third Party Advisory"
],
"url": "https://security.gentoo.org/glsa/202107-52"
},
{
"name": "[activemq-users] 20210830 Security issues",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Vendor Advisory"
],
"url": "https://lists.apache.org/thread.html/r9dc2505651788ac668299774d9e7af4dc616be2f56fdc684d1170882@%3Cusers.activemq.apache.org%3E"
},
{
"name": "[activemq-users] 20210831 RE: Security issues",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Vendor Advisory"
],
"url": "https://lists.apache.org/thread.html/r52a5129df402352adc34d052bab9234c8ef63596306506a89fdc7328@%3Cusers.activemq.apache.org%3E"
},
{
"name": "https://www.oracle.com/security-alerts/cpujan2022.html",
"refsource": "MISC",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://www.oracle.com/security-alerts/cpujan2022.html"
},
{
"name": "https://www.oracle.com/security-alerts/cpuapr2022.html",
"refsource": "MISC",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
}
]
}
},
"impact": {
"baseMetricV2": {
"acInsufInfo": false,
"cvssV2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "SINGLE",
"availabilityImpact": "COMPLETE",
"baseScore": 9.0,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:N/AC:L/Au:S/C:C/I:C/A:C",
"version": "2.0"
},
"exploitabilityScore": 8.0,
"impactScore": 10.0,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "HIGH",
"userInteractionRequired": false
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 2.8,
"impactScore": 5.9
}
},
"lastModifiedDate": "2022-05-12T14:34Z",
"publishedDate": "2021-03-10T08:15Z"
}
}
}
NCSC-2025-0128
Vulnerability from csaf_ncscnl - Published: 2025-04-16 15:01 - Updated: 2025-04-16 15:01Summary
Kwetsbaarheden verholpen in Oracle Fusion Middleware
Notes
The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:
NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.
NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.
This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings.
Feiten: Oracle heeft meerdere kwetsbaarheden verholpen in verschillende producten, waaronder de Utilities Application Framework, WebLogic Server, en Fusion Middleware.
Interpretaties: De kwetsbaarheden stellen ongeauthenticeerde kwaadwillenden in staat om toegang te krijgen tot kritieke gegevens, Denial-of-Service (DoS) te veroorzaken, en in sommige gevallen zelfs volledige controle over systemen te verkrijgen. Kwaadwillenden kunnen deze kwetsbaarheden misbruiken door speciaal vervaardigde verzoeken te sturen of door gebruik te maken van onveilige configuraties in de getroffen producten.
Oplossingen: Oracle heeft updates uitgebracht om de kwetsbaarheden te verhelpen. Zie bijgevoegde referenties voor meer informatie.
Kans: medium
Schade: high
CWE-1336: Improper Neutralization of Special Elements Used in a Template Engine
CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition
CWE-754: Improper Check for Unusual or Exceptional Conditions
CWE-125: Out-of-bounds Read
CWE-404: Improper Resource Shutdown or Release
CWE-829: Inclusion of Functionality from Untrusted Control Sphere
CWE-94: Improper Control of Generation of Code ('Code Injection')
CWE-400: Uncontrolled Resource Consumption
CWE-502: Deserialization of Untrusted Data
CWE-674: Uncontrolled Recursion
CWE-611: Improper Restriction of XML External Entity Reference
CWE-787: Out-of-bounds Write
CWE-200: Exposure of Sensitive Information to an Unauthorized Actor
CWE-121: Stack-based Buffer Overflow
CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop')
CWE-20: Improper Input Validation
8.8 (High)
Affected products
Known affected
43 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Access Manager
|
cpe:2.3:a:oracle:access_manager:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Business Process Management Suite
|
cpe:2.3:a:oracle:business_process_management_suite:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Business Process Management Suite
|
cpe:2.3:a:oracle:business_process_management_suite:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle HTTP Server
|
cpe:2.3:a:oracle:http_server:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle HTTP Server
|
cpe:2.3:a:oracle:http_server:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Managed File Transfer
|
vers:unknown/12.2.1.4.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Managed File Transfer
|
cpe:2.3:a:oracle:managed_file_transfer:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Managed File Transfer
|
cpe:2.3:a:oracle:managed_file_transfer:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle SOA Suite
|
cpe:2.3:a:oracle:soa_suite:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle SOA Suite
|
cpe:2.3:a:oracle:soa_suite:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle Fusion Middleware / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:unknown/12.2.1.3.0
Oracle / Oracle / Weblogic Server
|
vers:unknown/12.2.1.3.0 | ||
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Weblogic Server
|
vers:unknown/12.2.1.4.0 | ||
|
vers:unknown/14.1.1.0.0
Oracle / Oracle / Weblogic Server
|
vers:unknown/14.1.1.0.0 | ||
|
vers:oracle/8.5.7
Oracle / Oracle Fusion Middleware / Oracle Outside In Technology
|
cpe:2.3:a:oracle:outside_in_technology:8.5.7:*:*:*:*:*:*:*
|
vers:oracle/8.5.7 | |
|
vers:unknown/8.5.7
Oracle / Oracle / Outside In Technology
|
vers:unknown/8.5.7 | ||
|
vers:unknown/12.2.1.4.0
Oracle / Coherence
|
cpe:2.3:a:oracle:coherence:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:unknown/12.2.1.4.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Coherence
|
vers:unknown/12.2.1.4.0 | ||
|
vers:unknown/14.1.1.0.0
Oracle / Oracle / Coherence
|
vers:unknown/14.1.1.0.0 | ||
|
vers:unknown/14.1.1.0.0
Oracle / Coherence
|
cpe:2.3:a:oracle:coherence:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:unknown/14.1.1.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Coherence
|
cpe:2.3:a:oracle:coherence:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle Fusion Middleware / Oracle Coherence
|
cpe:2.3:a:oracle:coherence:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Coherence
|
cpe:2.3:a:oracle:coherence:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Fusion Middleware MapViewer
|
cpe:2.3:a:oracle:fusion_middleware_mapviewer:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Jdeveloper (Application)
|
vers:unknown/12.2.1.4.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle JDeveloper
|
cpe:2.3:a:oracle:jdeveloper:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle Fusion Middleware / Oracle WebCenter Forms Recognition
|
cpe:2.3:a:oracle:webcenter_forms_recognition:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:oracle/12.2.1.3.0
Oracle / Oracle WebCenter Portal
|
vers:oracle/12.2.1.3.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle WebCenter Portal
|
cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle WebCenter Portal
|
cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:unknown/12.2.1.3.0
Oracle / Oracle / WebCenter Portal
|
vers:unknown/12.2.1.3.0 | ||
|
vers:unknown/12.2.1.3.0
Oracle / WebCenter Portal
|
cpe:2.3:a:ibm:oracle_webcenter_portal:12.2.1.3.0:*:*:*:*:*:*:*
|
vers:unknown/12.2.1.3.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / WebCenter Portal
|
vers:unknown/12.2.1.4.0 | ||
|
vers:unknown/12.2.1.4.0
Oracle / WebCenter Portal
|
cpe:2.3:a:ibm:oracle_webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:unknown/12.2.1.4.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Data Integrator
|
vers:unknown/12.2.1.4.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Data Integrator
|
cpe:2.3:a:oracle:data_integrator:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Business Activity Monitoring
|
cpe:2.3:a:oracle:business_activity_monitoring:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Business Activity Monitoring
|
cpe:2.3:a:oracle:business_activity_monitoring:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Service Bus
|
cpe:2.3:a:oracle:service_bus:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 |
7.5 (High)
Affected products
Known affected
43 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Access Manager
|
cpe:2.3:a:oracle:access_manager:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Business Process Management Suite
|
cpe:2.3:a:oracle:business_process_management_suite:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Business Process Management Suite
|
cpe:2.3:a:oracle:business_process_management_suite:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle HTTP Server
|
cpe:2.3:a:oracle:http_server:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle HTTP Server
|
cpe:2.3:a:oracle:http_server:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Managed File Transfer
|
vers:unknown/12.2.1.4.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Managed File Transfer
|
cpe:2.3:a:oracle:managed_file_transfer:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Managed File Transfer
|
cpe:2.3:a:oracle:managed_file_transfer:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle SOA Suite
|
cpe:2.3:a:oracle:soa_suite:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle SOA Suite
|
cpe:2.3:a:oracle:soa_suite:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle Fusion Middleware / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:unknown/12.2.1.3.0
Oracle / Oracle / Weblogic Server
|
vers:unknown/12.2.1.3.0 | ||
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Weblogic Server
|
vers:unknown/12.2.1.4.0 | ||
|
vers:unknown/14.1.1.0.0
Oracle / Oracle / Weblogic Server
|
vers:unknown/14.1.1.0.0 | ||
|
vers:oracle/8.5.7
Oracle / Oracle Fusion Middleware / Oracle Outside In Technology
|
cpe:2.3:a:oracle:outside_in_technology:8.5.7:*:*:*:*:*:*:*
|
vers:oracle/8.5.7 | |
|
vers:unknown/8.5.7
Oracle / Oracle / Outside In Technology
|
vers:unknown/8.5.7 | ||
|
vers:unknown/12.2.1.4.0
Oracle / Coherence
|
cpe:2.3:a:oracle:coherence:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:unknown/12.2.1.4.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Coherence
|
vers:unknown/12.2.1.4.0 | ||
|
vers:unknown/14.1.1.0.0
Oracle / Oracle / Coherence
|
vers:unknown/14.1.1.0.0 | ||
|
vers:unknown/14.1.1.0.0
Oracle / Coherence
|
cpe:2.3:a:oracle:coherence:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:unknown/14.1.1.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Coherence
|
cpe:2.3:a:oracle:coherence:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle Fusion Middleware / Oracle Coherence
|
cpe:2.3:a:oracle:coherence:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Coherence
|
cpe:2.3:a:oracle:coherence:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Fusion Middleware MapViewer
|
cpe:2.3:a:oracle:fusion_middleware_mapviewer:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Jdeveloper (Application)
|
vers:unknown/12.2.1.4.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle JDeveloper
|
cpe:2.3:a:oracle:jdeveloper:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle Fusion Middleware / Oracle WebCenter Forms Recognition
|
cpe:2.3:a:oracle:webcenter_forms_recognition:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:oracle/12.2.1.3.0
Oracle / Oracle WebCenter Portal
|
vers:oracle/12.2.1.3.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle WebCenter Portal
|
cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle WebCenter Portal
|
cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:unknown/12.2.1.3.0
Oracle / Oracle / WebCenter Portal
|
vers:unknown/12.2.1.3.0 | ||
|
vers:unknown/12.2.1.3.0
Oracle / WebCenter Portal
|
cpe:2.3:a:ibm:oracle_webcenter_portal:12.2.1.3.0:*:*:*:*:*:*:*
|
vers:unknown/12.2.1.3.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / WebCenter Portal
|
vers:unknown/12.2.1.4.0 | ||
|
vers:unknown/12.2.1.4.0
Oracle / WebCenter Portal
|
cpe:2.3:a:ibm:oracle_webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:unknown/12.2.1.4.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Data Integrator
|
vers:unknown/12.2.1.4.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Data Integrator
|
cpe:2.3:a:oracle:data_integrator:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Business Activity Monitoring
|
cpe:2.3:a:oracle:business_activity_monitoring:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Business Activity Monitoring
|
cpe:2.3:a:oracle:business_activity_monitoring:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Service Bus
|
cpe:2.3:a:oracle:service_bus:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 |
9.8 (Critical)
Affected products
Known affected
43 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Access Manager
|
cpe:2.3:a:oracle:access_manager:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Business Process Management Suite
|
cpe:2.3:a:oracle:business_process_management_suite:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Business Process Management Suite
|
cpe:2.3:a:oracle:business_process_management_suite:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle HTTP Server
|
cpe:2.3:a:oracle:http_server:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle HTTP Server
|
cpe:2.3:a:oracle:http_server:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Managed File Transfer
|
vers:unknown/12.2.1.4.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Managed File Transfer
|
cpe:2.3:a:oracle:managed_file_transfer:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Managed File Transfer
|
cpe:2.3:a:oracle:managed_file_transfer:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle SOA Suite
|
cpe:2.3:a:oracle:soa_suite:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle SOA Suite
|
cpe:2.3:a:oracle:soa_suite:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle Fusion Middleware / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:unknown/12.2.1.3.0
Oracle / Oracle / Weblogic Server
|
vers:unknown/12.2.1.3.0 | ||
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Weblogic Server
|
vers:unknown/12.2.1.4.0 | ||
|
vers:unknown/14.1.1.0.0
Oracle / Oracle / Weblogic Server
|
vers:unknown/14.1.1.0.0 | ||
|
vers:oracle/8.5.7
Oracle / Oracle Fusion Middleware / Oracle Outside In Technology
|
cpe:2.3:a:oracle:outside_in_technology:8.5.7:*:*:*:*:*:*:*
|
vers:oracle/8.5.7 | |
|
vers:unknown/8.5.7
Oracle / Oracle / Outside In Technology
|
vers:unknown/8.5.7 | ||
|
vers:unknown/12.2.1.4.0
Oracle / Coherence
|
cpe:2.3:a:oracle:coherence:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:unknown/12.2.1.4.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Coherence
|
vers:unknown/12.2.1.4.0 | ||
|
vers:unknown/14.1.1.0.0
Oracle / Oracle / Coherence
|
vers:unknown/14.1.1.0.0 | ||
|
vers:unknown/14.1.1.0.0
Oracle / Coherence
|
cpe:2.3:a:oracle:coherence:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:unknown/14.1.1.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Coherence
|
cpe:2.3:a:oracle:coherence:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle Fusion Middleware / Oracle Coherence
|
cpe:2.3:a:oracle:coherence:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Coherence
|
cpe:2.3:a:oracle:coherence:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Fusion Middleware MapViewer
|
cpe:2.3:a:oracle:fusion_middleware_mapviewer:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Jdeveloper (Application)
|
vers:unknown/12.2.1.4.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle JDeveloper
|
cpe:2.3:a:oracle:jdeveloper:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle Fusion Middleware / Oracle WebCenter Forms Recognition
|
cpe:2.3:a:oracle:webcenter_forms_recognition:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:oracle/12.2.1.3.0
Oracle / Oracle WebCenter Portal
|
vers:oracle/12.2.1.3.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle WebCenter Portal
|
cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle WebCenter Portal
|
cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:unknown/12.2.1.3.0
Oracle / Oracle / WebCenter Portal
|
vers:unknown/12.2.1.3.0 | ||
|
vers:unknown/12.2.1.3.0
Oracle / WebCenter Portal
|
cpe:2.3:a:ibm:oracle_webcenter_portal:12.2.1.3.0:*:*:*:*:*:*:*
|
vers:unknown/12.2.1.3.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / WebCenter Portal
|
vers:unknown/12.2.1.4.0 | ||
|
vers:unknown/12.2.1.4.0
Oracle / WebCenter Portal
|
cpe:2.3:a:ibm:oracle_webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:unknown/12.2.1.4.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Data Integrator
|
vers:unknown/12.2.1.4.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Data Integrator
|
cpe:2.3:a:oracle:data_integrator:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Business Activity Monitoring
|
cpe:2.3:a:oracle:business_activity_monitoring:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Business Activity Monitoring
|
cpe:2.3:a:oracle:business_activity_monitoring:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Service Bus
|
cpe:2.3:a:oracle:service_bus:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 |
8.2 (High)
Affected products
Known affected
43 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Access Manager
|
cpe:2.3:a:oracle:access_manager:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Business Process Management Suite
|
cpe:2.3:a:oracle:business_process_management_suite:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Business Process Management Suite
|
cpe:2.3:a:oracle:business_process_management_suite:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle HTTP Server
|
cpe:2.3:a:oracle:http_server:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle HTTP Server
|
cpe:2.3:a:oracle:http_server:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Managed File Transfer
|
vers:unknown/12.2.1.4.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Managed File Transfer
|
cpe:2.3:a:oracle:managed_file_transfer:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Managed File Transfer
|
cpe:2.3:a:oracle:managed_file_transfer:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle SOA Suite
|
cpe:2.3:a:oracle:soa_suite:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle SOA Suite
|
cpe:2.3:a:oracle:soa_suite:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle Fusion Middleware / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:unknown/12.2.1.3.0
Oracle / Oracle / Weblogic Server
|
vers:unknown/12.2.1.3.0 | ||
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Weblogic Server
|
vers:unknown/12.2.1.4.0 | ||
|
vers:unknown/14.1.1.0.0
Oracle / Oracle / Weblogic Server
|
vers:unknown/14.1.1.0.0 | ||
|
vers:oracle/8.5.7
Oracle / Oracle Fusion Middleware / Oracle Outside In Technology
|
cpe:2.3:a:oracle:outside_in_technology:8.5.7:*:*:*:*:*:*:*
|
vers:oracle/8.5.7 | |
|
vers:unknown/8.5.7
Oracle / Oracle / Outside In Technology
|
vers:unknown/8.5.7 | ||
|
vers:unknown/12.2.1.4.0
Oracle / Coherence
|
cpe:2.3:a:oracle:coherence:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:unknown/12.2.1.4.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Coherence
|
vers:unknown/12.2.1.4.0 | ||
|
vers:unknown/14.1.1.0.0
Oracle / Oracle / Coherence
|
vers:unknown/14.1.1.0.0 | ||
|
vers:unknown/14.1.1.0.0
Oracle / Coherence
|
cpe:2.3:a:oracle:coherence:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:unknown/14.1.1.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Coherence
|
cpe:2.3:a:oracle:coherence:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle Fusion Middleware / Oracle Coherence
|
cpe:2.3:a:oracle:coherence:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Coherence
|
cpe:2.3:a:oracle:coherence:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Fusion Middleware MapViewer
|
cpe:2.3:a:oracle:fusion_middleware_mapviewer:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Jdeveloper (Application)
|
vers:unknown/12.2.1.4.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle JDeveloper
|
cpe:2.3:a:oracle:jdeveloper:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle Fusion Middleware / Oracle WebCenter Forms Recognition
|
cpe:2.3:a:oracle:webcenter_forms_recognition:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:oracle/12.2.1.3.0
Oracle / Oracle WebCenter Portal
|
vers:oracle/12.2.1.3.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle WebCenter Portal
|
cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle WebCenter Portal
|
cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:unknown/12.2.1.3.0
Oracle / Oracle / WebCenter Portal
|
vers:unknown/12.2.1.3.0 | ||
|
vers:unknown/12.2.1.3.0
Oracle / WebCenter Portal
|
cpe:2.3:a:ibm:oracle_webcenter_portal:12.2.1.3.0:*:*:*:*:*:*:*
|
vers:unknown/12.2.1.3.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / WebCenter Portal
|
vers:unknown/12.2.1.4.0 | ||
|
vers:unknown/12.2.1.4.0
Oracle / WebCenter Portal
|
cpe:2.3:a:ibm:oracle_webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:unknown/12.2.1.4.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Data Integrator
|
vers:unknown/12.2.1.4.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Data Integrator
|
cpe:2.3:a:oracle:data_integrator:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Business Activity Monitoring
|
cpe:2.3:a:oracle:business_activity_monitoring:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Business Activity Monitoring
|
cpe:2.3:a:oracle:business_activity_monitoring:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Service Bus
|
cpe:2.3:a:oracle:service_bus:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 |
CWE-787
- Out-of-bounds Write
Affected products
Known affected
43 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Access Manager
|
cpe:2.3:a:oracle:access_manager:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Business Process Management Suite
|
cpe:2.3:a:oracle:business_process_management_suite:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Business Process Management Suite
|
cpe:2.3:a:oracle:business_process_management_suite:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle HTTP Server
|
cpe:2.3:a:oracle:http_server:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle HTTP Server
|
cpe:2.3:a:oracle:http_server:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Managed File Transfer
|
vers:unknown/12.2.1.4.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Managed File Transfer
|
cpe:2.3:a:oracle:managed_file_transfer:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Managed File Transfer
|
cpe:2.3:a:oracle:managed_file_transfer:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle SOA Suite
|
cpe:2.3:a:oracle:soa_suite:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle SOA Suite
|
cpe:2.3:a:oracle:soa_suite:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle Fusion Middleware / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:unknown/12.2.1.3.0
Oracle / Oracle / Weblogic Server
|
vers:unknown/12.2.1.3.0 | ||
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Weblogic Server
|
vers:unknown/12.2.1.4.0 | ||
|
vers:unknown/14.1.1.0.0
Oracle / Oracle / Weblogic Server
|
vers:unknown/14.1.1.0.0 | ||
|
vers:oracle/8.5.7
Oracle / Oracle Fusion Middleware / Oracle Outside In Technology
|
cpe:2.3:a:oracle:outside_in_technology:8.5.7:*:*:*:*:*:*:*
|
vers:oracle/8.5.7 | |
|
vers:unknown/8.5.7
Oracle / Oracle / Outside In Technology
|
vers:unknown/8.5.7 | ||
|
vers:unknown/12.2.1.4.0
Oracle / Coherence
|
cpe:2.3:a:oracle:coherence:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:unknown/12.2.1.4.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Coherence
|
vers:unknown/12.2.1.4.0 | ||
|
vers:unknown/14.1.1.0.0
Oracle / Oracle / Coherence
|
vers:unknown/14.1.1.0.0 | ||
|
vers:unknown/14.1.1.0.0
Oracle / Coherence
|
cpe:2.3:a:oracle:coherence:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:unknown/14.1.1.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Coherence
|
cpe:2.3:a:oracle:coherence:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle Fusion Middleware / Oracle Coherence
|
cpe:2.3:a:oracle:coherence:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Coherence
|
cpe:2.3:a:oracle:coherence:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Fusion Middleware MapViewer
|
cpe:2.3:a:oracle:fusion_middleware_mapviewer:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Jdeveloper (Application)
|
vers:unknown/12.2.1.4.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle JDeveloper
|
cpe:2.3:a:oracle:jdeveloper:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle Fusion Middleware / Oracle WebCenter Forms Recognition
|
cpe:2.3:a:oracle:webcenter_forms_recognition:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:oracle/12.2.1.3.0
Oracle / Oracle WebCenter Portal
|
vers:oracle/12.2.1.3.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle WebCenter Portal
|
cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle WebCenter Portal
|
cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:unknown/12.2.1.3.0
Oracle / Oracle / WebCenter Portal
|
vers:unknown/12.2.1.3.0 | ||
|
vers:unknown/12.2.1.3.0
Oracle / WebCenter Portal
|
cpe:2.3:a:ibm:oracle_webcenter_portal:12.2.1.3.0:*:*:*:*:*:*:*
|
vers:unknown/12.2.1.3.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / WebCenter Portal
|
vers:unknown/12.2.1.4.0 | ||
|
vers:unknown/12.2.1.4.0
Oracle / WebCenter Portal
|
cpe:2.3:a:ibm:oracle_webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:unknown/12.2.1.4.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Data Integrator
|
vers:unknown/12.2.1.4.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Data Integrator
|
cpe:2.3:a:oracle:data_integrator:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Business Activity Monitoring
|
cpe:2.3:a:oracle:business_activity_monitoring:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Business Activity Monitoring
|
cpe:2.3:a:oracle:business_activity_monitoring:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Service Bus
|
cpe:2.3:a:oracle:service_bus:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 |
9.1 (Critical)
Affected products
Known affected
43 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Access Manager
|
cpe:2.3:a:oracle:access_manager:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Business Process Management Suite
|
cpe:2.3:a:oracle:business_process_management_suite:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Business Process Management Suite
|
cpe:2.3:a:oracle:business_process_management_suite:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle HTTP Server
|
cpe:2.3:a:oracle:http_server:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle HTTP Server
|
cpe:2.3:a:oracle:http_server:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Managed File Transfer
|
vers:unknown/12.2.1.4.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Managed File Transfer
|
cpe:2.3:a:oracle:managed_file_transfer:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Managed File Transfer
|
cpe:2.3:a:oracle:managed_file_transfer:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle SOA Suite
|
cpe:2.3:a:oracle:soa_suite:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle SOA Suite
|
cpe:2.3:a:oracle:soa_suite:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle Fusion Middleware / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:unknown/12.2.1.3.0
Oracle / Oracle / Weblogic Server
|
vers:unknown/12.2.1.3.0 | ||
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Weblogic Server
|
vers:unknown/12.2.1.4.0 | ||
|
vers:unknown/14.1.1.0.0
Oracle / Oracle / Weblogic Server
|
vers:unknown/14.1.1.0.0 | ||
|
vers:oracle/8.5.7
Oracle / Oracle Fusion Middleware / Oracle Outside In Technology
|
cpe:2.3:a:oracle:outside_in_technology:8.5.7:*:*:*:*:*:*:*
|
vers:oracle/8.5.7 | |
|
vers:unknown/8.5.7
Oracle / Oracle / Outside In Technology
|
vers:unknown/8.5.7 | ||
|
vers:unknown/12.2.1.4.0
Oracle / Coherence
|
cpe:2.3:a:oracle:coherence:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:unknown/12.2.1.4.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Coherence
|
vers:unknown/12.2.1.4.0 | ||
|
vers:unknown/14.1.1.0.0
Oracle / Oracle / Coherence
|
vers:unknown/14.1.1.0.0 | ||
|
vers:unknown/14.1.1.0.0
Oracle / Coherence
|
cpe:2.3:a:oracle:coherence:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:unknown/14.1.1.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Coherence
|
cpe:2.3:a:oracle:coherence:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle Fusion Middleware / Oracle Coherence
|
cpe:2.3:a:oracle:coherence:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Coherence
|
cpe:2.3:a:oracle:coherence:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Fusion Middleware MapViewer
|
cpe:2.3:a:oracle:fusion_middleware_mapviewer:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Jdeveloper (Application)
|
vers:unknown/12.2.1.4.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle JDeveloper
|
cpe:2.3:a:oracle:jdeveloper:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle Fusion Middleware / Oracle WebCenter Forms Recognition
|
cpe:2.3:a:oracle:webcenter_forms_recognition:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:oracle/12.2.1.3.0
Oracle / Oracle WebCenter Portal
|
vers:oracle/12.2.1.3.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle WebCenter Portal
|
cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle WebCenter Portal
|
cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:unknown/12.2.1.3.0
Oracle / Oracle / WebCenter Portal
|
vers:unknown/12.2.1.3.0 | ||
|
vers:unknown/12.2.1.3.0
Oracle / WebCenter Portal
|
cpe:2.3:a:ibm:oracle_webcenter_portal:12.2.1.3.0:*:*:*:*:*:*:*
|
vers:unknown/12.2.1.3.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / WebCenter Portal
|
vers:unknown/12.2.1.4.0 | ||
|
vers:unknown/12.2.1.4.0
Oracle / WebCenter Portal
|
cpe:2.3:a:ibm:oracle_webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:unknown/12.2.1.4.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Data Integrator
|
vers:unknown/12.2.1.4.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Data Integrator
|
cpe:2.3:a:oracle:data_integrator:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Business Activity Monitoring
|
cpe:2.3:a:oracle:business_activity_monitoring:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Business Activity Monitoring
|
cpe:2.3:a:oracle:business_activity_monitoring:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Service Bus
|
cpe:2.3:a:oracle:service_bus:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 |
6.5 (Medium)
Affected products
Known affected
43 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Access Manager
|
cpe:2.3:a:oracle:access_manager:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Business Process Management Suite
|
cpe:2.3:a:oracle:business_process_management_suite:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Business Process Management Suite
|
cpe:2.3:a:oracle:business_process_management_suite:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle HTTP Server
|
cpe:2.3:a:oracle:http_server:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle HTTP Server
|
cpe:2.3:a:oracle:http_server:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Managed File Transfer
|
vers:unknown/12.2.1.4.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Managed File Transfer
|
cpe:2.3:a:oracle:managed_file_transfer:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Managed File Transfer
|
cpe:2.3:a:oracle:managed_file_transfer:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle SOA Suite
|
cpe:2.3:a:oracle:soa_suite:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle SOA Suite
|
cpe:2.3:a:oracle:soa_suite:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle Fusion Middleware / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:unknown/12.2.1.3.0
Oracle / Oracle / Weblogic Server
|
vers:unknown/12.2.1.3.0 | ||
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Weblogic Server
|
vers:unknown/12.2.1.4.0 | ||
|
vers:unknown/14.1.1.0.0
Oracle / Oracle / Weblogic Server
|
vers:unknown/14.1.1.0.0 | ||
|
vers:oracle/8.5.7
Oracle / Oracle Fusion Middleware / Oracle Outside In Technology
|
cpe:2.3:a:oracle:outside_in_technology:8.5.7:*:*:*:*:*:*:*
|
vers:oracle/8.5.7 | |
|
vers:unknown/8.5.7
Oracle / Oracle / Outside In Technology
|
vers:unknown/8.5.7 | ||
|
vers:unknown/12.2.1.4.0
Oracle / Coherence
|
cpe:2.3:a:oracle:coherence:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:unknown/12.2.1.4.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Coherence
|
vers:unknown/12.2.1.4.0 | ||
|
vers:unknown/14.1.1.0.0
Oracle / Oracle / Coherence
|
vers:unknown/14.1.1.0.0 | ||
|
vers:unknown/14.1.1.0.0
Oracle / Coherence
|
cpe:2.3:a:oracle:coherence:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:unknown/14.1.1.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Coherence
|
cpe:2.3:a:oracle:coherence:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle Fusion Middleware / Oracle Coherence
|
cpe:2.3:a:oracle:coherence:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Coherence
|
cpe:2.3:a:oracle:coherence:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Fusion Middleware MapViewer
|
cpe:2.3:a:oracle:fusion_middleware_mapviewer:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Jdeveloper (Application)
|
vers:unknown/12.2.1.4.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle JDeveloper
|
cpe:2.3:a:oracle:jdeveloper:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle Fusion Middleware / Oracle WebCenter Forms Recognition
|
cpe:2.3:a:oracle:webcenter_forms_recognition:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:oracle/12.2.1.3.0
Oracle / Oracle WebCenter Portal
|
vers:oracle/12.2.1.3.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle WebCenter Portal
|
cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle WebCenter Portal
|
cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:unknown/12.2.1.3.0
Oracle / Oracle / WebCenter Portal
|
vers:unknown/12.2.1.3.0 | ||
|
vers:unknown/12.2.1.3.0
Oracle / WebCenter Portal
|
cpe:2.3:a:ibm:oracle_webcenter_portal:12.2.1.3.0:*:*:*:*:*:*:*
|
vers:unknown/12.2.1.3.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / WebCenter Portal
|
vers:unknown/12.2.1.4.0 | ||
|
vers:unknown/12.2.1.4.0
Oracle / WebCenter Portal
|
cpe:2.3:a:ibm:oracle_webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:unknown/12.2.1.4.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Data Integrator
|
vers:unknown/12.2.1.4.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Data Integrator
|
cpe:2.3:a:oracle:data_integrator:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Business Activity Monitoring
|
cpe:2.3:a:oracle:business_activity_monitoring:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Business Activity Monitoring
|
cpe:2.3:a:oracle:business_activity_monitoring:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Service Bus
|
cpe:2.3:a:oracle:service_bus:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 |
8.1 (High)
Affected products
Known affected
43 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Access Manager
|
cpe:2.3:a:oracle:access_manager:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Business Process Management Suite
|
cpe:2.3:a:oracle:business_process_management_suite:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Business Process Management Suite
|
cpe:2.3:a:oracle:business_process_management_suite:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle HTTP Server
|
cpe:2.3:a:oracle:http_server:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle HTTP Server
|
cpe:2.3:a:oracle:http_server:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Managed File Transfer
|
vers:unknown/12.2.1.4.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Managed File Transfer
|
cpe:2.3:a:oracle:managed_file_transfer:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Managed File Transfer
|
cpe:2.3:a:oracle:managed_file_transfer:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle SOA Suite
|
cpe:2.3:a:oracle:soa_suite:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle SOA Suite
|
cpe:2.3:a:oracle:soa_suite:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle Fusion Middleware / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:unknown/12.2.1.3.0
Oracle / Oracle / Weblogic Server
|
vers:unknown/12.2.1.3.0 | ||
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Weblogic Server
|
vers:unknown/12.2.1.4.0 | ||
|
vers:unknown/14.1.1.0.0
Oracle / Oracle / Weblogic Server
|
vers:unknown/14.1.1.0.0 | ||
|
vers:oracle/8.5.7
Oracle / Oracle Fusion Middleware / Oracle Outside In Technology
|
cpe:2.3:a:oracle:outside_in_technology:8.5.7:*:*:*:*:*:*:*
|
vers:oracle/8.5.7 | |
|
vers:unknown/8.5.7
Oracle / Oracle / Outside In Technology
|
vers:unknown/8.5.7 | ||
|
vers:unknown/12.2.1.4.0
Oracle / Coherence
|
cpe:2.3:a:oracle:coherence:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:unknown/12.2.1.4.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Coherence
|
vers:unknown/12.2.1.4.0 | ||
|
vers:unknown/14.1.1.0.0
Oracle / Oracle / Coherence
|
vers:unknown/14.1.1.0.0 | ||
|
vers:unknown/14.1.1.0.0
Oracle / Coherence
|
cpe:2.3:a:oracle:coherence:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:unknown/14.1.1.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Coherence
|
cpe:2.3:a:oracle:coherence:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle Fusion Middleware / Oracle Coherence
|
cpe:2.3:a:oracle:coherence:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Coherence
|
cpe:2.3:a:oracle:coherence:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Fusion Middleware MapViewer
|
cpe:2.3:a:oracle:fusion_middleware_mapviewer:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Jdeveloper (Application)
|
vers:unknown/12.2.1.4.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle JDeveloper
|
cpe:2.3:a:oracle:jdeveloper:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle Fusion Middleware / Oracle WebCenter Forms Recognition
|
cpe:2.3:a:oracle:webcenter_forms_recognition:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:oracle/12.2.1.3.0
Oracle / Oracle WebCenter Portal
|
vers:oracle/12.2.1.3.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle WebCenter Portal
|
cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle WebCenter Portal
|
cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:unknown/12.2.1.3.0
Oracle / Oracle / WebCenter Portal
|
vers:unknown/12.2.1.3.0 | ||
|
vers:unknown/12.2.1.3.0
Oracle / WebCenter Portal
|
cpe:2.3:a:ibm:oracle_webcenter_portal:12.2.1.3.0:*:*:*:*:*:*:*
|
vers:unknown/12.2.1.3.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / WebCenter Portal
|
vers:unknown/12.2.1.4.0 | ||
|
vers:unknown/12.2.1.4.0
Oracle / WebCenter Portal
|
cpe:2.3:a:ibm:oracle_webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:unknown/12.2.1.4.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Data Integrator
|
vers:unknown/12.2.1.4.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Data Integrator
|
cpe:2.3:a:oracle:data_integrator:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Business Activity Monitoring
|
cpe:2.3:a:oracle:business_activity_monitoring:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Business Activity Monitoring
|
cpe:2.3:a:oracle:business_activity_monitoring:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Service Bus
|
cpe:2.3:a:oracle:service_bus:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 |
7.5 (High)
Affected products
Known affected
43 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Access Manager
|
cpe:2.3:a:oracle:access_manager:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Business Process Management Suite
|
cpe:2.3:a:oracle:business_process_management_suite:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Business Process Management Suite
|
cpe:2.3:a:oracle:business_process_management_suite:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle HTTP Server
|
cpe:2.3:a:oracle:http_server:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle HTTP Server
|
cpe:2.3:a:oracle:http_server:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Managed File Transfer
|
vers:unknown/12.2.1.4.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Managed File Transfer
|
cpe:2.3:a:oracle:managed_file_transfer:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Managed File Transfer
|
cpe:2.3:a:oracle:managed_file_transfer:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle SOA Suite
|
cpe:2.3:a:oracle:soa_suite:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle SOA Suite
|
cpe:2.3:a:oracle:soa_suite:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle Fusion Middleware / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:unknown/12.2.1.3.0
Oracle / Oracle / Weblogic Server
|
vers:unknown/12.2.1.3.0 | ||
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Weblogic Server
|
vers:unknown/12.2.1.4.0 | ||
|
vers:unknown/14.1.1.0.0
Oracle / Oracle / Weblogic Server
|
vers:unknown/14.1.1.0.0 | ||
|
vers:oracle/8.5.7
Oracle / Oracle Fusion Middleware / Oracle Outside In Technology
|
cpe:2.3:a:oracle:outside_in_technology:8.5.7:*:*:*:*:*:*:*
|
vers:oracle/8.5.7 | |
|
vers:unknown/8.5.7
Oracle / Oracle / Outside In Technology
|
vers:unknown/8.5.7 | ||
|
vers:unknown/12.2.1.4.0
Oracle / Coherence
|
cpe:2.3:a:oracle:coherence:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:unknown/12.2.1.4.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Coherence
|
vers:unknown/12.2.1.4.0 | ||
|
vers:unknown/14.1.1.0.0
Oracle / Oracle / Coherence
|
vers:unknown/14.1.1.0.0 | ||
|
vers:unknown/14.1.1.0.0
Oracle / Coherence
|
cpe:2.3:a:oracle:coherence:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:unknown/14.1.1.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Coherence
|
cpe:2.3:a:oracle:coherence:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle Fusion Middleware / Oracle Coherence
|
cpe:2.3:a:oracle:coherence:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Coherence
|
cpe:2.3:a:oracle:coherence:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Fusion Middleware MapViewer
|
cpe:2.3:a:oracle:fusion_middleware_mapviewer:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Jdeveloper (Application)
|
vers:unknown/12.2.1.4.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle JDeveloper
|
cpe:2.3:a:oracle:jdeveloper:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle Fusion Middleware / Oracle WebCenter Forms Recognition
|
cpe:2.3:a:oracle:webcenter_forms_recognition:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:oracle/12.2.1.3.0
Oracle / Oracle WebCenter Portal
|
vers:oracle/12.2.1.3.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle WebCenter Portal
|
cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle WebCenter Portal
|
cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:unknown/12.2.1.3.0
Oracle / Oracle / WebCenter Portal
|
vers:unknown/12.2.1.3.0 | ||
|
vers:unknown/12.2.1.3.0
Oracle / WebCenter Portal
|
cpe:2.3:a:ibm:oracle_webcenter_portal:12.2.1.3.0:*:*:*:*:*:*:*
|
vers:unknown/12.2.1.3.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / WebCenter Portal
|
vers:unknown/12.2.1.4.0 | ||
|
vers:unknown/12.2.1.4.0
Oracle / WebCenter Portal
|
cpe:2.3:a:ibm:oracle_webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:unknown/12.2.1.4.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Data Integrator
|
vers:unknown/12.2.1.4.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Data Integrator
|
cpe:2.3:a:oracle:data_integrator:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Business Activity Monitoring
|
cpe:2.3:a:oracle:business_activity_monitoring:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Business Activity Monitoring
|
cpe:2.3:a:oracle:business_activity_monitoring:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Service Bus
|
cpe:2.3:a:oracle:service_bus:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 |
7.5 (High)
Affected products
Known affected
43 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Access Manager
|
cpe:2.3:a:oracle:access_manager:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Business Process Management Suite
|
cpe:2.3:a:oracle:business_process_management_suite:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Business Process Management Suite
|
cpe:2.3:a:oracle:business_process_management_suite:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle HTTP Server
|
cpe:2.3:a:oracle:http_server:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle HTTP Server
|
cpe:2.3:a:oracle:http_server:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Managed File Transfer
|
vers:unknown/12.2.1.4.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Managed File Transfer
|
cpe:2.3:a:oracle:managed_file_transfer:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Managed File Transfer
|
cpe:2.3:a:oracle:managed_file_transfer:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle SOA Suite
|
cpe:2.3:a:oracle:soa_suite:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle SOA Suite
|
cpe:2.3:a:oracle:soa_suite:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle Fusion Middleware / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:unknown/12.2.1.3.0
Oracle / Oracle / Weblogic Server
|
vers:unknown/12.2.1.3.0 | ||
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Weblogic Server
|
vers:unknown/12.2.1.4.0 | ||
|
vers:unknown/14.1.1.0.0
Oracle / Oracle / Weblogic Server
|
vers:unknown/14.1.1.0.0 | ||
|
vers:oracle/8.5.7
Oracle / Oracle Fusion Middleware / Oracle Outside In Technology
|
cpe:2.3:a:oracle:outside_in_technology:8.5.7:*:*:*:*:*:*:*
|
vers:oracle/8.5.7 | |
|
vers:unknown/8.5.7
Oracle / Oracle / Outside In Technology
|
vers:unknown/8.5.7 | ||
|
vers:unknown/12.2.1.4.0
Oracle / Coherence
|
cpe:2.3:a:oracle:coherence:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:unknown/12.2.1.4.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Coherence
|
vers:unknown/12.2.1.4.0 | ||
|
vers:unknown/14.1.1.0.0
Oracle / Oracle / Coherence
|
vers:unknown/14.1.1.0.0 | ||
|
vers:unknown/14.1.1.0.0
Oracle / Coherence
|
cpe:2.3:a:oracle:coherence:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:unknown/14.1.1.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Coherence
|
cpe:2.3:a:oracle:coherence:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle Fusion Middleware / Oracle Coherence
|
cpe:2.3:a:oracle:coherence:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Coherence
|
cpe:2.3:a:oracle:coherence:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Fusion Middleware MapViewer
|
cpe:2.3:a:oracle:fusion_middleware_mapviewer:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Jdeveloper (Application)
|
vers:unknown/12.2.1.4.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle JDeveloper
|
cpe:2.3:a:oracle:jdeveloper:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle Fusion Middleware / Oracle WebCenter Forms Recognition
|
cpe:2.3:a:oracle:webcenter_forms_recognition:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:oracle/12.2.1.3.0
Oracle / Oracle WebCenter Portal
|
vers:oracle/12.2.1.3.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle WebCenter Portal
|
cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle WebCenter Portal
|
cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:unknown/12.2.1.3.0
Oracle / Oracle / WebCenter Portal
|
vers:unknown/12.2.1.3.0 | ||
|
vers:unknown/12.2.1.3.0
Oracle / WebCenter Portal
|
cpe:2.3:a:ibm:oracle_webcenter_portal:12.2.1.3.0:*:*:*:*:*:*:*
|
vers:unknown/12.2.1.3.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / WebCenter Portal
|
vers:unknown/12.2.1.4.0 | ||
|
vers:unknown/12.2.1.4.0
Oracle / WebCenter Portal
|
cpe:2.3:a:ibm:oracle_webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:unknown/12.2.1.4.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Data Integrator
|
vers:unknown/12.2.1.4.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Data Integrator
|
cpe:2.3:a:oracle:data_integrator:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Business Activity Monitoring
|
cpe:2.3:a:oracle:business_activity_monitoring:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Business Activity Monitoring
|
cpe:2.3:a:oracle:business_activity_monitoring:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Service Bus
|
cpe:2.3:a:oracle:service_bus:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 |
9.8 (Critical)
Affected products
Known affected
43 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Access Manager
|
cpe:2.3:a:oracle:access_manager:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Business Process Management Suite
|
cpe:2.3:a:oracle:business_process_management_suite:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Business Process Management Suite
|
cpe:2.3:a:oracle:business_process_management_suite:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle HTTP Server
|
cpe:2.3:a:oracle:http_server:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle HTTP Server
|
cpe:2.3:a:oracle:http_server:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Managed File Transfer
|
vers:unknown/12.2.1.4.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Managed File Transfer
|
cpe:2.3:a:oracle:managed_file_transfer:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Managed File Transfer
|
cpe:2.3:a:oracle:managed_file_transfer:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle SOA Suite
|
cpe:2.3:a:oracle:soa_suite:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle SOA Suite
|
cpe:2.3:a:oracle:soa_suite:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle Fusion Middleware / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:unknown/12.2.1.3.0
Oracle / Oracle / Weblogic Server
|
vers:unknown/12.2.1.3.0 | ||
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Weblogic Server
|
vers:unknown/12.2.1.4.0 | ||
|
vers:unknown/14.1.1.0.0
Oracle / Oracle / Weblogic Server
|
vers:unknown/14.1.1.0.0 | ||
|
vers:oracle/8.5.7
Oracle / Oracle Fusion Middleware / Oracle Outside In Technology
|
cpe:2.3:a:oracle:outside_in_technology:8.5.7:*:*:*:*:*:*:*
|
vers:oracle/8.5.7 | |
|
vers:unknown/8.5.7
Oracle / Oracle / Outside In Technology
|
vers:unknown/8.5.7 | ||
|
vers:unknown/12.2.1.4.0
Oracle / Coherence
|
cpe:2.3:a:oracle:coherence:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:unknown/12.2.1.4.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Coherence
|
vers:unknown/12.2.1.4.0 | ||
|
vers:unknown/14.1.1.0.0
Oracle / Oracle / Coherence
|
vers:unknown/14.1.1.0.0 | ||
|
vers:unknown/14.1.1.0.0
Oracle / Coherence
|
cpe:2.3:a:oracle:coherence:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:unknown/14.1.1.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Coherence
|
cpe:2.3:a:oracle:coherence:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle Fusion Middleware / Oracle Coherence
|
cpe:2.3:a:oracle:coherence:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Coherence
|
cpe:2.3:a:oracle:coherence:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Fusion Middleware MapViewer
|
cpe:2.3:a:oracle:fusion_middleware_mapviewer:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Jdeveloper (Application)
|
vers:unknown/12.2.1.4.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle JDeveloper
|
cpe:2.3:a:oracle:jdeveloper:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle Fusion Middleware / Oracle WebCenter Forms Recognition
|
cpe:2.3:a:oracle:webcenter_forms_recognition:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:oracle/12.2.1.3.0
Oracle / Oracle WebCenter Portal
|
vers:oracle/12.2.1.3.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle WebCenter Portal
|
cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle WebCenter Portal
|
cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:unknown/12.2.1.3.0
Oracle / Oracle / WebCenter Portal
|
vers:unknown/12.2.1.3.0 | ||
|
vers:unknown/12.2.1.3.0
Oracle / WebCenter Portal
|
cpe:2.3:a:ibm:oracle_webcenter_portal:12.2.1.3.0:*:*:*:*:*:*:*
|
vers:unknown/12.2.1.3.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / WebCenter Portal
|
vers:unknown/12.2.1.4.0 | ||
|
vers:unknown/12.2.1.4.0
Oracle / WebCenter Portal
|
cpe:2.3:a:ibm:oracle_webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:unknown/12.2.1.4.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Data Integrator
|
vers:unknown/12.2.1.4.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Data Integrator
|
cpe:2.3:a:oracle:data_integrator:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Business Activity Monitoring
|
cpe:2.3:a:oracle:business_activity_monitoring:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Business Activity Monitoring
|
cpe:2.3:a:oracle:business_activity_monitoring:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Service Bus
|
cpe:2.3:a:oracle:service_bus:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 |
9.8 (Critical)
Affected products
Known affected
43 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Access Manager
|
cpe:2.3:a:oracle:access_manager:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Business Process Management Suite
|
cpe:2.3:a:oracle:business_process_management_suite:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Business Process Management Suite
|
cpe:2.3:a:oracle:business_process_management_suite:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle HTTP Server
|
cpe:2.3:a:oracle:http_server:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle HTTP Server
|
cpe:2.3:a:oracle:http_server:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Managed File Transfer
|
vers:unknown/12.2.1.4.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Managed File Transfer
|
cpe:2.3:a:oracle:managed_file_transfer:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Managed File Transfer
|
cpe:2.3:a:oracle:managed_file_transfer:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle SOA Suite
|
cpe:2.3:a:oracle:soa_suite:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle SOA Suite
|
cpe:2.3:a:oracle:soa_suite:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle Fusion Middleware / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:unknown/12.2.1.3.0
Oracle / Oracle / Weblogic Server
|
vers:unknown/12.2.1.3.0 | ||
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Weblogic Server
|
vers:unknown/12.2.1.4.0 | ||
|
vers:unknown/14.1.1.0.0
Oracle / Oracle / Weblogic Server
|
vers:unknown/14.1.1.0.0 | ||
|
vers:oracle/8.5.7
Oracle / Oracle Fusion Middleware / Oracle Outside In Technology
|
cpe:2.3:a:oracle:outside_in_technology:8.5.7:*:*:*:*:*:*:*
|
vers:oracle/8.5.7 | |
|
vers:unknown/8.5.7
Oracle / Oracle / Outside In Technology
|
vers:unknown/8.5.7 | ||
|
vers:unknown/12.2.1.4.0
Oracle / Coherence
|
cpe:2.3:a:oracle:coherence:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:unknown/12.2.1.4.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Coherence
|
vers:unknown/12.2.1.4.0 | ||
|
vers:unknown/14.1.1.0.0
Oracle / Oracle / Coherence
|
vers:unknown/14.1.1.0.0 | ||
|
vers:unknown/14.1.1.0.0
Oracle / Coherence
|
cpe:2.3:a:oracle:coherence:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:unknown/14.1.1.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Coherence
|
cpe:2.3:a:oracle:coherence:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle Fusion Middleware / Oracle Coherence
|
cpe:2.3:a:oracle:coherence:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Coherence
|
cpe:2.3:a:oracle:coherence:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Fusion Middleware MapViewer
|
cpe:2.3:a:oracle:fusion_middleware_mapviewer:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Jdeveloper (Application)
|
vers:unknown/12.2.1.4.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle JDeveloper
|
cpe:2.3:a:oracle:jdeveloper:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle Fusion Middleware / Oracle WebCenter Forms Recognition
|
cpe:2.3:a:oracle:webcenter_forms_recognition:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:oracle/12.2.1.3.0
Oracle / Oracle WebCenter Portal
|
vers:oracle/12.2.1.3.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle WebCenter Portal
|
cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle WebCenter Portal
|
cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:unknown/12.2.1.3.0
Oracle / Oracle / WebCenter Portal
|
vers:unknown/12.2.1.3.0 | ||
|
vers:unknown/12.2.1.3.0
Oracle / WebCenter Portal
|
cpe:2.3:a:ibm:oracle_webcenter_portal:12.2.1.3.0:*:*:*:*:*:*:*
|
vers:unknown/12.2.1.3.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / WebCenter Portal
|
vers:unknown/12.2.1.4.0 | ||
|
vers:unknown/12.2.1.4.0
Oracle / WebCenter Portal
|
cpe:2.3:a:ibm:oracle_webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:unknown/12.2.1.4.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Data Integrator
|
vers:unknown/12.2.1.4.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Data Integrator
|
cpe:2.3:a:oracle:data_integrator:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Business Activity Monitoring
|
cpe:2.3:a:oracle:business_activity_monitoring:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Business Activity Monitoring
|
cpe:2.3:a:oracle:business_activity_monitoring:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Service Bus
|
cpe:2.3:a:oracle:service_bus:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 |
7.5 (High)
Affected products
Known affected
43 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Access Manager
|
cpe:2.3:a:oracle:access_manager:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Business Process Management Suite
|
cpe:2.3:a:oracle:business_process_management_suite:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Business Process Management Suite
|
cpe:2.3:a:oracle:business_process_management_suite:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle HTTP Server
|
cpe:2.3:a:oracle:http_server:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle HTTP Server
|
cpe:2.3:a:oracle:http_server:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Managed File Transfer
|
vers:unknown/12.2.1.4.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Managed File Transfer
|
cpe:2.3:a:oracle:managed_file_transfer:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Managed File Transfer
|
cpe:2.3:a:oracle:managed_file_transfer:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle SOA Suite
|
cpe:2.3:a:oracle:soa_suite:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle SOA Suite
|
cpe:2.3:a:oracle:soa_suite:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle Fusion Middleware / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:unknown/12.2.1.3.0
Oracle / Oracle / Weblogic Server
|
vers:unknown/12.2.1.3.0 | ||
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Weblogic Server
|
vers:unknown/12.2.1.4.0 | ||
|
vers:unknown/14.1.1.0.0
Oracle / Oracle / Weblogic Server
|
vers:unknown/14.1.1.0.0 | ||
|
vers:oracle/8.5.7
Oracle / Oracle Fusion Middleware / Oracle Outside In Technology
|
cpe:2.3:a:oracle:outside_in_technology:8.5.7:*:*:*:*:*:*:*
|
vers:oracle/8.5.7 | |
|
vers:unknown/8.5.7
Oracle / Oracle / Outside In Technology
|
vers:unknown/8.5.7 | ||
|
vers:unknown/12.2.1.4.0
Oracle / Coherence
|
cpe:2.3:a:oracle:coherence:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:unknown/12.2.1.4.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Coherence
|
vers:unknown/12.2.1.4.0 | ||
|
vers:unknown/14.1.1.0.0
Oracle / Oracle / Coherence
|
vers:unknown/14.1.1.0.0 | ||
|
vers:unknown/14.1.1.0.0
Oracle / Coherence
|
cpe:2.3:a:oracle:coherence:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:unknown/14.1.1.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Coherence
|
cpe:2.3:a:oracle:coherence:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle Fusion Middleware / Oracle Coherence
|
cpe:2.3:a:oracle:coherence:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Coherence
|
cpe:2.3:a:oracle:coherence:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Fusion Middleware MapViewer
|
cpe:2.3:a:oracle:fusion_middleware_mapviewer:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Jdeveloper (Application)
|
vers:unknown/12.2.1.4.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle JDeveloper
|
cpe:2.3:a:oracle:jdeveloper:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle Fusion Middleware / Oracle WebCenter Forms Recognition
|
cpe:2.3:a:oracle:webcenter_forms_recognition:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:oracle/12.2.1.3.0
Oracle / Oracle WebCenter Portal
|
vers:oracle/12.2.1.3.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle WebCenter Portal
|
cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle WebCenter Portal
|
cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:unknown/12.2.1.3.0
Oracle / Oracle / WebCenter Portal
|
vers:unknown/12.2.1.3.0 | ||
|
vers:unknown/12.2.1.3.0
Oracle / WebCenter Portal
|
cpe:2.3:a:ibm:oracle_webcenter_portal:12.2.1.3.0:*:*:*:*:*:*:*
|
vers:unknown/12.2.1.3.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / WebCenter Portal
|
vers:unknown/12.2.1.4.0 | ||
|
vers:unknown/12.2.1.4.0
Oracle / WebCenter Portal
|
cpe:2.3:a:ibm:oracle_webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:unknown/12.2.1.4.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Data Integrator
|
vers:unknown/12.2.1.4.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Data Integrator
|
cpe:2.3:a:oracle:data_integrator:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Business Activity Monitoring
|
cpe:2.3:a:oracle:business_activity_monitoring:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Business Activity Monitoring
|
cpe:2.3:a:oracle:business_activity_monitoring:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Service Bus
|
cpe:2.3:a:oracle:service_bus:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 |
7.5 (High)
Affected products
Known affected
43 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Access Manager
|
cpe:2.3:a:oracle:access_manager:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Business Process Management Suite
|
cpe:2.3:a:oracle:business_process_management_suite:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Business Process Management Suite
|
cpe:2.3:a:oracle:business_process_management_suite:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle HTTP Server
|
cpe:2.3:a:oracle:http_server:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle HTTP Server
|
cpe:2.3:a:oracle:http_server:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Managed File Transfer
|
vers:unknown/12.2.1.4.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Managed File Transfer
|
cpe:2.3:a:oracle:managed_file_transfer:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Managed File Transfer
|
cpe:2.3:a:oracle:managed_file_transfer:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle SOA Suite
|
cpe:2.3:a:oracle:soa_suite:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle SOA Suite
|
cpe:2.3:a:oracle:soa_suite:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle Fusion Middleware / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:unknown/12.2.1.3.0
Oracle / Oracle / Weblogic Server
|
vers:unknown/12.2.1.3.0 | ||
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Weblogic Server
|
vers:unknown/12.2.1.4.0 | ||
|
vers:unknown/14.1.1.0.0
Oracle / Oracle / Weblogic Server
|
vers:unknown/14.1.1.0.0 | ||
|
vers:oracle/8.5.7
Oracle / Oracle Fusion Middleware / Oracle Outside In Technology
|
cpe:2.3:a:oracle:outside_in_technology:8.5.7:*:*:*:*:*:*:*
|
vers:oracle/8.5.7 | |
|
vers:unknown/8.5.7
Oracle / Oracle / Outside In Technology
|
vers:unknown/8.5.7 | ||
|
vers:unknown/12.2.1.4.0
Oracle / Coherence
|
cpe:2.3:a:oracle:coherence:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:unknown/12.2.1.4.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Coherence
|
vers:unknown/12.2.1.4.0 | ||
|
vers:unknown/14.1.1.0.0
Oracle / Oracle / Coherence
|
vers:unknown/14.1.1.0.0 | ||
|
vers:unknown/14.1.1.0.0
Oracle / Coherence
|
cpe:2.3:a:oracle:coherence:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:unknown/14.1.1.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Coherence
|
cpe:2.3:a:oracle:coherence:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle Fusion Middleware / Oracle Coherence
|
cpe:2.3:a:oracle:coherence:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Coherence
|
cpe:2.3:a:oracle:coherence:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Fusion Middleware MapViewer
|
cpe:2.3:a:oracle:fusion_middleware_mapviewer:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Jdeveloper (Application)
|
vers:unknown/12.2.1.4.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle JDeveloper
|
cpe:2.3:a:oracle:jdeveloper:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle Fusion Middleware / Oracle WebCenter Forms Recognition
|
cpe:2.3:a:oracle:webcenter_forms_recognition:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:oracle/12.2.1.3.0
Oracle / Oracle WebCenter Portal
|
vers:oracle/12.2.1.3.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle WebCenter Portal
|
cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle WebCenter Portal
|
cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:unknown/12.2.1.3.0
Oracle / Oracle / WebCenter Portal
|
vers:unknown/12.2.1.3.0 | ||
|
vers:unknown/12.2.1.3.0
Oracle / WebCenter Portal
|
cpe:2.3:a:ibm:oracle_webcenter_portal:12.2.1.3.0:*:*:*:*:*:*:*
|
vers:unknown/12.2.1.3.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / WebCenter Portal
|
vers:unknown/12.2.1.4.0 | ||
|
vers:unknown/12.2.1.4.0
Oracle / WebCenter Portal
|
cpe:2.3:a:ibm:oracle_webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:unknown/12.2.1.4.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Data Integrator
|
vers:unknown/12.2.1.4.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Data Integrator
|
cpe:2.3:a:oracle:data_integrator:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Business Activity Monitoring
|
cpe:2.3:a:oracle:business_activity_monitoring:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Business Activity Monitoring
|
cpe:2.3:a:oracle:business_activity_monitoring:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Service Bus
|
cpe:2.3:a:oracle:service_bus:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 |
9.8 (Critical)
Affected products
Known affected
43 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Access Manager
|
cpe:2.3:a:oracle:access_manager:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Business Process Management Suite
|
cpe:2.3:a:oracle:business_process_management_suite:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Business Process Management Suite
|
cpe:2.3:a:oracle:business_process_management_suite:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle HTTP Server
|
cpe:2.3:a:oracle:http_server:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle HTTP Server
|
cpe:2.3:a:oracle:http_server:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Managed File Transfer
|
vers:unknown/12.2.1.4.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Managed File Transfer
|
cpe:2.3:a:oracle:managed_file_transfer:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Managed File Transfer
|
cpe:2.3:a:oracle:managed_file_transfer:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle SOA Suite
|
cpe:2.3:a:oracle:soa_suite:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle SOA Suite
|
cpe:2.3:a:oracle:soa_suite:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle Fusion Middleware / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:unknown/12.2.1.3.0
Oracle / Oracle / Weblogic Server
|
vers:unknown/12.2.1.3.0 | ||
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Weblogic Server
|
vers:unknown/12.2.1.4.0 | ||
|
vers:unknown/14.1.1.0.0
Oracle / Oracle / Weblogic Server
|
vers:unknown/14.1.1.0.0 | ||
|
vers:oracle/8.5.7
Oracle / Oracle Fusion Middleware / Oracle Outside In Technology
|
cpe:2.3:a:oracle:outside_in_technology:8.5.7:*:*:*:*:*:*:*
|
vers:oracle/8.5.7 | |
|
vers:unknown/8.5.7
Oracle / Oracle / Outside In Technology
|
vers:unknown/8.5.7 | ||
|
vers:unknown/12.2.1.4.0
Oracle / Coherence
|
cpe:2.3:a:oracle:coherence:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:unknown/12.2.1.4.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Coherence
|
vers:unknown/12.2.1.4.0 | ||
|
vers:unknown/14.1.1.0.0
Oracle / Oracle / Coherence
|
vers:unknown/14.1.1.0.0 | ||
|
vers:unknown/14.1.1.0.0
Oracle / Coherence
|
cpe:2.3:a:oracle:coherence:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:unknown/14.1.1.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Coherence
|
cpe:2.3:a:oracle:coherence:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle Fusion Middleware / Oracle Coherence
|
cpe:2.3:a:oracle:coherence:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Coherence
|
cpe:2.3:a:oracle:coherence:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Fusion Middleware MapViewer
|
cpe:2.3:a:oracle:fusion_middleware_mapviewer:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Jdeveloper (Application)
|
vers:unknown/12.2.1.4.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle JDeveloper
|
cpe:2.3:a:oracle:jdeveloper:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle Fusion Middleware / Oracle WebCenter Forms Recognition
|
cpe:2.3:a:oracle:webcenter_forms_recognition:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:oracle/12.2.1.3.0
Oracle / Oracle WebCenter Portal
|
vers:oracle/12.2.1.3.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle WebCenter Portal
|
cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle WebCenter Portal
|
cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:unknown/12.2.1.3.0
Oracle / Oracle / WebCenter Portal
|
vers:unknown/12.2.1.3.0 | ||
|
vers:unknown/12.2.1.3.0
Oracle / WebCenter Portal
|
cpe:2.3:a:ibm:oracle_webcenter_portal:12.2.1.3.0:*:*:*:*:*:*:*
|
vers:unknown/12.2.1.3.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / WebCenter Portal
|
vers:unknown/12.2.1.4.0 | ||
|
vers:unknown/12.2.1.4.0
Oracle / WebCenter Portal
|
cpe:2.3:a:ibm:oracle_webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:unknown/12.2.1.4.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Data Integrator
|
vers:unknown/12.2.1.4.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Data Integrator
|
cpe:2.3:a:oracle:data_integrator:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Business Activity Monitoring
|
cpe:2.3:a:oracle:business_activity_monitoring:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Business Activity Monitoring
|
cpe:2.3:a:oracle:business_activity_monitoring:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Service Bus
|
cpe:2.3:a:oracle:service_bus:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 |
7.5 (High)
Affected products
Known affected
43 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Access Manager
|
cpe:2.3:a:oracle:access_manager:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Business Process Management Suite
|
cpe:2.3:a:oracle:business_process_management_suite:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Business Process Management Suite
|
cpe:2.3:a:oracle:business_process_management_suite:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle HTTP Server
|
cpe:2.3:a:oracle:http_server:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle HTTP Server
|
cpe:2.3:a:oracle:http_server:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Managed File Transfer
|
vers:unknown/12.2.1.4.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Managed File Transfer
|
cpe:2.3:a:oracle:managed_file_transfer:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Managed File Transfer
|
cpe:2.3:a:oracle:managed_file_transfer:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle SOA Suite
|
cpe:2.3:a:oracle:soa_suite:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle SOA Suite
|
cpe:2.3:a:oracle:soa_suite:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle Fusion Middleware / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:unknown/12.2.1.3.0
Oracle / Oracle / Weblogic Server
|
vers:unknown/12.2.1.3.0 | ||
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Weblogic Server
|
vers:unknown/12.2.1.4.0 | ||
|
vers:unknown/14.1.1.0.0
Oracle / Oracle / Weblogic Server
|
vers:unknown/14.1.1.0.0 | ||
|
vers:oracle/8.5.7
Oracle / Oracle Fusion Middleware / Oracle Outside In Technology
|
cpe:2.3:a:oracle:outside_in_technology:8.5.7:*:*:*:*:*:*:*
|
vers:oracle/8.5.7 | |
|
vers:unknown/8.5.7
Oracle / Oracle / Outside In Technology
|
vers:unknown/8.5.7 | ||
|
vers:unknown/12.2.1.4.0
Oracle / Coherence
|
cpe:2.3:a:oracle:coherence:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:unknown/12.2.1.4.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Coherence
|
vers:unknown/12.2.1.4.0 | ||
|
vers:unknown/14.1.1.0.0
Oracle / Oracle / Coherence
|
vers:unknown/14.1.1.0.0 | ||
|
vers:unknown/14.1.1.0.0
Oracle / Coherence
|
cpe:2.3:a:oracle:coherence:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:unknown/14.1.1.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Coherence
|
cpe:2.3:a:oracle:coherence:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle Fusion Middleware / Oracle Coherence
|
cpe:2.3:a:oracle:coherence:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Coherence
|
cpe:2.3:a:oracle:coherence:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Fusion Middleware MapViewer
|
cpe:2.3:a:oracle:fusion_middleware_mapviewer:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Jdeveloper (Application)
|
vers:unknown/12.2.1.4.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle JDeveloper
|
cpe:2.3:a:oracle:jdeveloper:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle Fusion Middleware / Oracle WebCenter Forms Recognition
|
cpe:2.3:a:oracle:webcenter_forms_recognition:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:oracle/12.2.1.3.0
Oracle / Oracle WebCenter Portal
|
vers:oracle/12.2.1.3.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle WebCenter Portal
|
cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle WebCenter Portal
|
cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:unknown/12.2.1.3.0
Oracle / Oracle / WebCenter Portal
|
vers:unknown/12.2.1.3.0 | ||
|
vers:unknown/12.2.1.3.0
Oracle / WebCenter Portal
|
cpe:2.3:a:ibm:oracle_webcenter_portal:12.2.1.3.0:*:*:*:*:*:*:*
|
vers:unknown/12.2.1.3.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / WebCenter Portal
|
vers:unknown/12.2.1.4.0 | ||
|
vers:unknown/12.2.1.4.0
Oracle / WebCenter Portal
|
cpe:2.3:a:ibm:oracle_webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:unknown/12.2.1.4.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Data Integrator
|
vers:unknown/12.2.1.4.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Data Integrator
|
cpe:2.3:a:oracle:data_integrator:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Business Activity Monitoring
|
cpe:2.3:a:oracle:business_activity_monitoring:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Business Activity Monitoring
|
cpe:2.3:a:oracle:business_activity_monitoring:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Service Bus
|
cpe:2.3:a:oracle:service_bus:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 |
9.8 (Critical)
Affected products
Known affected
43 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Access Manager
|
cpe:2.3:a:oracle:access_manager:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Business Process Management Suite
|
cpe:2.3:a:oracle:business_process_management_suite:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Business Process Management Suite
|
cpe:2.3:a:oracle:business_process_management_suite:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle HTTP Server
|
cpe:2.3:a:oracle:http_server:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle HTTP Server
|
cpe:2.3:a:oracle:http_server:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Managed File Transfer
|
vers:unknown/12.2.1.4.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Managed File Transfer
|
cpe:2.3:a:oracle:managed_file_transfer:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Managed File Transfer
|
cpe:2.3:a:oracle:managed_file_transfer:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle SOA Suite
|
cpe:2.3:a:oracle:soa_suite:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle SOA Suite
|
cpe:2.3:a:oracle:soa_suite:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle Fusion Middleware / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:unknown/12.2.1.3.0
Oracle / Oracle / Weblogic Server
|
vers:unknown/12.2.1.3.0 | ||
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Weblogic Server
|
vers:unknown/12.2.1.4.0 | ||
|
vers:unknown/14.1.1.0.0
Oracle / Oracle / Weblogic Server
|
vers:unknown/14.1.1.0.0 | ||
|
vers:oracle/8.5.7
Oracle / Oracle Fusion Middleware / Oracle Outside In Technology
|
cpe:2.3:a:oracle:outside_in_technology:8.5.7:*:*:*:*:*:*:*
|
vers:oracle/8.5.7 | |
|
vers:unknown/8.5.7
Oracle / Oracle / Outside In Technology
|
vers:unknown/8.5.7 | ||
|
vers:unknown/12.2.1.4.0
Oracle / Coherence
|
cpe:2.3:a:oracle:coherence:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:unknown/12.2.1.4.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Coherence
|
vers:unknown/12.2.1.4.0 | ||
|
vers:unknown/14.1.1.0.0
Oracle / Oracle / Coherence
|
vers:unknown/14.1.1.0.0 | ||
|
vers:unknown/14.1.1.0.0
Oracle / Coherence
|
cpe:2.3:a:oracle:coherence:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:unknown/14.1.1.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Coherence
|
cpe:2.3:a:oracle:coherence:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle Fusion Middleware / Oracle Coherence
|
cpe:2.3:a:oracle:coherence:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Coherence
|
cpe:2.3:a:oracle:coherence:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Fusion Middleware MapViewer
|
cpe:2.3:a:oracle:fusion_middleware_mapviewer:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Jdeveloper (Application)
|
vers:unknown/12.2.1.4.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle JDeveloper
|
cpe:2.3:a:oracle:jdeveloper:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle Fusion Middleware / Oracle WebCenter Forms Recognition
|
cpe:2.3:a:oracle:webcenter_forms_recognition:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:oracle/12.2.1.3.0
Oracle / Oracle WebCenter Portal
|
vers:oracle/12.2.1.3.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle WebCenter Portal
|
cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle WebCenter Portal
|
cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:unknown/12.2.1.3.0
Oracle / Oracle / WebCenter Portal
|
vers:unknown/12.2.1.3.0 | ||
|
vers:unknown/12.2.1.3.0
Oracle / WebCenter Portal
|
cpe:2.3:a:ibm:oracle_webcenter_portal:12.2.1.3.0:*:*:*:*:*:*:*
|
vers:unknown/12.2.1.3.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / WebCenter Portal
|
vers:unknown/12.2.1.4.0 | ||
|
vers:unknown/12.2.1.4.0
Oracle / WebCenter Portal
|
cpe:2.3:a:ibm:oracle_webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:unknown/12.2.1.4.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Data Integrator
|
vers:unknown/12.2.1.4.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Data Integrator
|
cpe:2.3:a:oracle:data_integrator:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Business Activity Monitoring
|
cpe:2.3:a:oracle:business_activity_monitoring:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Business Activity Monitoring
|
cpe:2.3:a:oracle:business_activity_monitoring:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Service Bus
|
cpe:2.3:a:oracle:service_bus:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 |
9.8 (Critical)
Affected products
Known affected
43 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Access Manager
|
cpe:2.3:a:oracle:access_manager:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Business Process Management Suite
|
cpe:2.3:a:oracle:business_process_management_suite:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Business Process Management Suite
|
cpe:2.3:a:oracle:business_process_management_suite:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle HTTP Server
|
cpe:2.3:a:oracle:http_server:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle HTTP Server
|
cpe:2.3:a:oracle:http_server:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Managed File Transfer
|
vers:unknown/12.2.1.4.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Managed File Transfer
|
cpe:2.3:a:oracle:managed_file_transfer:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Managed File Transfer
|
cpe:2.3:a:oracle:managed_file_transfer:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle SOA Suite
|
cpe:2.3:a:oracle:soa_suite:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle SOA Suite
|
cpe:2.3:a:oracle:soa_suite:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle Fusion Middleware / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:unknown/12.2.1.3.0
Oracle / Oracle / Weblogic Server
|
vers:unknown/12.2.1.3.0 | ||
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Weblogic Server
|
vers:unknown/12.2.1.4.0 | ||
|
vers:unknown/14.1.1.0.0
Oracle / Oracle / Weblogic Server
|
vers:unknown/14.1.1.0.0 | ||
|
vers:oracle/8.5.7
Oracle / Oracle Fusion Middleware / Oracle Outside In Technology
|
cpe:2.3:a:oracle:outside_in_technology:8.5.7:*:*:*:*:*:*:*
|
vers:oracle/8.5.7 | |
|
vers:unknown/8.5.7
Oracle / Oracle / Outside In Technology
|
vers:unknown/8.5.7 | ||
|
vers:unknown/12.2.1.4.0
Oracle / Coherence
|
cpe:2.3:a:oracle:coherence:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:unknown/12.2.1.4.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Coherence
|
vers:unknown/12.2.1.4.0 | ||
|
vers:unknown/14.1.1.0.0
Oracle / Oracle / Coherence
|
vers:unknown/14.1.1.0.0 | ||
|
vers:unknown/14.1.1.0.0
Oracle / Coherence
|
cpe:2.3:a:oracle:coherence:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:unknown/14.1.1.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Coherence
|
cpe:2.3:a:oracle:coherence:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle Fusion Middleware / Oracle Coherence
|
cpe:2.3:a:oracle:coherence:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Coherence
|
cpe:2.3:a:oracle:coherence:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Fusion Middleware MapViewer
|
cpe:2.3:a:oracle:fusion_middleware_mapviewer:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Jdeveloper (Application)
|
vers:unknown/12.2.1.4.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle JDeveloper
|
cpe:2.3:a:oracle:jdeveloper:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle Fusion Middleware / Oracle WebCenter Forms Recognition
|
cpe:2.3:a:oracle:webcenter_forms_recognition:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:oracle/12.2.1.3.0
Oracle / Oracle WebCenter Portal
|
vers:oracle/12.2.1.3.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle WebCenter Portal
|
cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle WebCenter Portal
|
cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:unknown/12.2.1.3.0
Oracle / Oracle / WebCenter Portal
|
vers:unknown/12.2.1.3.0 | ||
|
vers:unknown/12.2.1.3.0
Oracle / WebCenter Portal
|
cpe:2.3:a:ibm:oracle_webcenter_portal:12.2.1.3.0:*:*:*:*:*:*:*
|
vers:unknown/12.2.1.3.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / WebCenter Portal
|
vers:unknown/12.2.1.4.0 | ||
|
vers:unknown/12.2.1.4.0
Oracle / WebCenter Portal
|
cpe:2.3:a:ibm:oracle_webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:unknown/12.2.1.4.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Data Integrator
|
vers:unknown/12.2.1.4.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Data Integrator
|
cpe:2.3:a:oracle:data_integrator:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Business Activity Monitoring
|
cpe:2.3:a:oracle:business_activity_monitoring:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Business Activity Monitoring
|
cpe:2.3:a:oracle:business_activity_monitoring:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Service Bus
|
cpe:2.3:a:oracle:service_bus:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 |
CWE-400
- Uncontrolled Resource Consumption
Affected products
Known affected
43 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Access Manager
|
cpe:2.3:a:oracle:access_manager:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Business Process Management Suite
|
cpe:2.3:a:oracle:business_process_management_suite:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Business Process Management Suite
|
cpe:2.3:a:oracle:business_process_management_suite:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle HTTP Server
|
cpe:2.3:a:oracle:http_server:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle HTTP Server
|
cpe:2.3:a:oracle:http_server:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Managed File Transfer
|
vers:unknown/12.2.1.4.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Managed File Transfer
|
cpe:2.3:a:oracle:managed_file_transfer:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Managed File Transfer
|
cpe:2.3:a:oracle:managed_file_transfer:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle SOA Suite
|
cpe:2.3:a:oracle:soa_suite:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle SOA Suite
|
cpe:2.3:a:oracle:soa_suite:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle Fusion Middleware / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:unknown/12.2.1.3.0
Oracle / Oracle / Weblogic Server
|
vers:unknown/12.2.1.3.0 | ||
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Weblogic Server
|
vers:unknown/12.2.1.4.0 | ||
|
vers:unknown/14.1.1.0.0
Oracle / Oracle / Weblogic Server
|
vers:unknown/14.1.1.0.0 | ||
|
vers:oracle/8.5.7
Oracle / Oracle Fusion Middleware / Oracle Outside In Technology
|
cpe:2.3:a:oracle:outside_in_technology:8.5.7:*:*:*:*:*:*:*
|
vers:oracle/8.5.7 | |
|
vers:unknown/8.5.7
Oracle / Oracle / Outside In Technology
|
vers:unknown/8.5.7 | ||
|
vers:unknown/12.2.1.4.0
Oracle / Coherence
|
cpe:2.3:a:oracle:coherence:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:unknown/12.2.1.4.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Coherence
|
vers:unknown/12.2.1.4.0 | ||
|
vers:unknown/14.1.1.0.0
Oracle / Oracle / Coherence
|
vers:unknown/14.1.1.0.0 | ||
|
vers:unknown/14.1.1.0.0
Oracle / Coherence
|
cpe:2.3:a:oracle:coherence:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:unknown/14.1.1.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Coherence
|
cpe:2.3:a:oracle:coherence:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle Fusion Middleware / Oracle Coherence
|
cpe:2.3:a:oracle:coherence:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Coherence
|
cpe:2.3:a:oracle:coherence:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Fusion Middleware MapViewer
|
cpe:2.3:a:oracle:fusion_middleware_mapviewer:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Jdeveloper (Application)
|
vers:unknown/12.2.1.4.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle JDeveloper
|
cpe:2.3:a:oracle:jdeveloper:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle Fusion Middleware / Oracle WebCenter Forms Recognition
|
cpe:2.3:a:oracle:webcenter_forms_recognition:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:oracle/12.2.1.3.0
Oracle / Oracle WebCenter Portal
|
vers:oracle/12.2.1.3.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle WebCenter Portal
|
cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle WebCenter Portal
|
cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:unknown/12.2.1.3.0
Oracle / Oracle / WebCenter Portal
|
vers:unknown/12.2.1.3.0 | ||
|
vers:unknown/12.2.1.3.0
Oracle / WebCenter Portal
|
cpe:2.3:a:ibm:oracle_webcenter_portal:12.2.1.3.0:*:*:*:*:*:*:*
|
vers:unknown/12.2.1.3.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / WebCenter Portal
|
vers:unknown/12.2.1.4.0 | ||
|
vers:unknown/12.2.1.4.0
Oracle / WebCenter Portal
|
cpe:2.3:a:ibm:oracle_webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:unknown/12.2.1.4.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Data Integrator
|
vers:unknown/12.2.1.4.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Data Integrator
|
cpe:2.3:a:oracle:data_integrator:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Business Activity Monitoring
|
cpe:2.3:a:oracle:business_activity_monitoring:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Business Activity Monitoring
|
cpe:2.3:a:oracle:business_activity_monitoring:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Service Bus
|
cpe:2.3:a:oracle:service_bus:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 |
7.5 (High)
Affected products
Known affected
43 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Access Manager
|
cpe:2.3:a:oracle:access_manager:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Business Process Management Suite
|
cpe:2.3:a:oracle:business_process_management_suite:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Business Process Management Suite
|
cpe:2.3:a:oracle:business_process_management_suite:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle HTTP Server
|
cpe:2.3:a:oracle:http_server:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle HTTP Server
|
cpe:2.3:a:oracle:http_server:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Managed File Transfer
|
vers:unknown/12.2.1.4.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Managed File Transfer
|
cpe:2.3:a:oracle:managed_file_transfer:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Managed File Transfer
|
cpe:2.3:a:oracle:managed_file_transfer:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle SOA Suite
|
cpe:2.3:a:oracle:soa_suite:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle SOA Suite
|
cpe:2.3:a:oracle:soa_suite:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle Fusion Middleware / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:unknown/12.2.1.3.0
Oracle / Oracle / Weblogic Server
|
vers:unknown/12.2.1.3.0 | ||
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Weblogic Server
|
vers:unknown/12.2.1.4.0 | ||
|
vers:unknown/14.1.1.0.0
Oracle / Oracle / Weblogic Server
|
vers:unknown/14.1.1.0.0 | ||
|
vers:oracle/8.5.7
Oracle / Oracle Fusion Middleware / Oracle Outside In Technology
|
cpe:2.3:a:oracle:outside_in_technology:8.5.7:*:*:*:*:*:*:*
|
vers:oracle/8.5.7 | |
|
vers:unknown/8.5.7
Oracle / Oracle / Outside In Technology
|
vers:unknown/8.5.7 | ||
|
vers:unknown/12.2.1.4.0
Oracle / Coherence
|
cpe:2.3:a:oracle:coherence:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:unknown/12.2.1.4.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Coherence
|
vers:unknown/12.2.1.4.0 | ||
|
vers:unknown/14.1.1.0.0
Oracle / Oracle / Coherence
|
vers:unknown/14.1.1.0.0 | ||
|
vers:unknown/14.1.1.0.0
Oracle / Coherence
|
cpe:2.3:a:oracle:coherence:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:unknown/14.1.1.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Coherence
|
cpe:2.3:a:oracle:coherence:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle Fusion Middleware / Oracle Coherence
|
cpe:2.3:a:oracle:coherence:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Coherence
|
cpe:2.3:a:oracle:coherence:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Fusion Middleware MapViewer
|
cpe:2.3:a:oracle:fusion_middleware_mapviewer:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Jdeveloper (Application)
|
vers:unknown/12.2.1.4.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle JDeveloper
|
cpe:2.3:a:oracle:jdeveloper:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle Fusion Middleware / Oracle WebCenter Forms Recognition
|
cpe:2.3:a:oracle:webcenter_forms_recognition:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:oracle/12.2.1.3.0
Oracle / Oracle WebCenter Portal
|
vers:oracle/12.2.1.3.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle WebCenter Portal
|
cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle WebCenter Portal
|
cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:unknown/12.2.1.3.0
Oracle / Oracle / WebCenter Portal
|
vers:unknown/12.2.1.3.0 | ||
|
vers:unknown/12.2.1.3.0
Oracle / WebCenter Portal
|
cpe:2.3:a:ibm:oracle_webcenter_portal:12.2.1.3.0:*:*:*:*:*:*:*
|
vers:unknown/12.2.1.3.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / WebCenter Portal
|
vers:unknown/12.2.1.4.0 | ||
|
vers:unknown/12.2.1.4.0
Oracle / WebCenter Portal
|
cpe:2.3:a:ibm:oracle_webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:unknown/12.2.1.4.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Data Integrator
|
vers:unknown/12.2.1.4.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Data Integrator
|
cpe:2.3:a:oracle:data_integrator:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Business Activity Monitoring
|
cpe:2.3:a:oracle:business_activity_monitoring:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Business Activity Monitoring
|
cpe:2.3:a:oracle:business_activity_monitoring:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Service Bus
|
cpe:2.3:a:oracle:service_bus:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 |
CWE-787
- Out-of-bounds Write
Affected products
Known affected
43 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Access Manager
|
cpe:2.3:a:oracle:access_manager:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Business Process Management Suite
|
cpe:2.3:a:oracle:business_process_management_suite:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Business Process Management Suite
|
cpe:2.3:a:oracle:business_process_management_suite:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle HTTP Server
|
cpe:2.3:a:oracle:http_server:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle HTTP Server
|
cpe:2.3:a:oracle:http_server:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Managed File Transfer
|
vers:unknown/12.2.1.4.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Managed File Transfer
|
cpe:2.3:a:oracle:managed_file_transfer:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Managed File Transfer
|
cpe:2.3:a:oracle:managed_file_transfer:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle SOA Suite
|
cpe:2.3:a:oracle:soa_suite:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle SOA Suite
|
cpe:2.3:a:oracle:soa_suite:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle Fusion Middleware / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:unknown/12.2.1.3.0
Oracle / Oracle / Weblogic Server
|
vers:unknown/12.2.1.3.0 | ||
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle WebLogic Server
|
cpe:2.3:a:oracle:weblogic_server:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Weblogic Server
|
vers:unknown/12.2.1.4.0 | ||
|
vers:unknown/14.1.1.0.0
Oracle / Oracle / Weblogic Server
|
vers:unknown/14.1.1.0.0 | ||
|
vers:oracle/8.5.7
Oracle / Oracle Fusion Middleware / Oracle Outside In Technology
|
cpe:2.3:a:oracle:outside_in_technology:8.5.7:*:*:*:*:*:*:*
|
vers:oracle/8.5.7 | |
|
vers:unknown/8.5.7
Oracle / Oracle / Outside In Technology
|
vers:unknown/8.5.7 | ||
|
vers:unknown/12.2.1.4.0
Oracle / Coherence
|
cpe:2.3:a:oracle:coherence:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:unknown/12.2.1.4.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Coherence
|
vers:unknown/12.2.1.4.0 | ||
|
vers:unknown/14.1.1.0.0
Oracle / Oracle / Coherence
|
vers:unknown/14.1.1.0.0 | ||
|
vers:unknown/14.1.1.0.0
Oracle / Coherence
|
cpe:2.3:a:oracle:coherence:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:unknown/14.1.1.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Coherence
|
cpe:2.3:a:oracle:coherence:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle Fusion Middleware / Oracle Coherence
|
cpe:2.3:a:oracle:coherence:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Coherence
|
cpe:2.3:a:oracle:coherence:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Fusion Middleware MapViewer
|
cpe:2.3:a:oracle:fusion_middleware_mapviewer:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Jdeveloper (Application)
|
vers:unknown/12.2.1.4.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle JDeveloper
|
cpe:2.3:a:oracle:jdeveloper:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.1.0.0
Oracle / Oracle Fusion Middleware / Oracle WebCenter Forms Recognition
|
cpe:2.3:a:oracle:webcenter_forms_recognition:14.1.1.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.1.0.0 | |
|
vers:oracle/12.2.1.3.0
Oracle / Oracle WebCenter Portal
|
vers:oracle/12.2.1.3.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle WebCenter Portal
|
cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle WebCenter Portal
|
cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:unknown/12.2.1.3.0
Oracle / Oracle / WebCenter Portal
|
vers:unknown/12.2.1.3.0 | ||
|
vers:unknown/12.2.1.3.0
Oracle / WebCenter Portal
|
cpe:2.3:a:ibm:oracle_webcenter_portal:12.2.1.3.0:*:*:*:*:*:*:*
|
vers:unknown/12.2.1.3.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / WebCenter Portal
|
vers:unknown/12.2.1.4.0 | ||
|
vers:unknown/12.2.1.4.0
Oracle / WebCenter Portal
|
cpe:2.3:a:ibm:oracle_webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:unknown/12.2.1.4.0 | |
|
vers:unknown/12.2.1.4.0
Oracle / Oracle / Data Integrator
|
vers:unknown/12.2.1.4.0 | ||
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Data Integrator
|
cpe:2.3:a:oracle:data_integrator:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Business Activity Monitoring
|
cpe:2.3:a:oracle:business_activity_monitoring:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 | |
|
vers:oracle/14.1.2.0.0
Oracle / Oracle Fusion Middleware / Oracle Business Activity Monitoring
|
cpe:2.3:a:oracle:business_activity_monitoring:14.1.2.0.0:*:*:*:*:*:*:*
|
vers:oracle/14.1.2.0.0 | |
|
vers:oracle/12.2.1.4.0
Oracle / Oracle Fusion Middleware / Oracle Service Bus
|
cpe:2.3:a:oracle:service_bus:12.2.1.4.0:*:*:*:*:*:*:*
|
vers:oracle/12.2.1.4.0 |
References
22 references
{
"document": {
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE"
}
},
"lang": "nl",
"notes": [
{
"category": "legal_disclaimer",
"text": "The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:\n\n NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.\n\n NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.\n This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings."
},
{
"category": "description",
"text": "Oracle heeft meerdere kwetsbaarheden verholpen in verschillende producten, waaronder de Utilities Application Framework, WebLogic Server, en Fusion Middleware.",
"title": "Feiten"
},
{
"category": "description",
"text": "De kwetsbaarheden stellen ongeauthenticeerde kwaadwillenden in staat om toegang te krijgen tot kritieke gegevens, Denial-of-Service (DoS) te veroorzaken, en in sommige gevallen zelfs volledige controle over systemen te verkrijgen. Kwaadwillenden kunnen deze kwetsbaarheden misbruiken door speciaal vervaardigde verzoeken te sturen of door gebruik te maken van onveilige configuraties in de getroffen producten.",
"title": "Interpretaties"
},
{
"category": "description",
"text": "Oracle heeft updates uitgebracht om de kwetsbaarheden te verhelpen. Zie bijgevoegde referenties voor meer informatie.",
"title": "Oplossingen"
},
{
"category": "general",
"text": "medium",
"title": "Kans"
},
{
"category": "general",
"text": "high",
"title": "Schade"
},
{
"category": "general",
"text": "Improper Neutralization of Special Elements Used in a Template Engine",
"title": "CWE-1336"
},
{
"category": "general",
"text": "Time-of-check Time-of-use (TOCTOU) Race Condition",
"title": "CWE-367"
},
{
"category": "general",
"text": "Improper Check for Unusual or Exceptional Conditions",
"title": "CWE-754"
},
{
"category": "general",
"text": "Out-of-bounds Read",
"title": "CWE-125"
},
{
"category": "general",
"text": "Improper Resource Shutdown or Release",
"title": "CWE-404"
},
{
"category": "general",
"text": "Inclusion of Functionality from Untrusted Control Sphere",
"title": "CWE-829"
},
{
"category": "general",
"text": "Improper Control of Generation of Code (\u0027Code Injection\u0027)",
"title": "CWE-94"
},
{
"category": "general",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
},
{
"category": "general",
"text": "Deserialization of Untrusted Data",
"title": "CWE-502"
},
{
"category": "general",
"text": "Uncontrolled Recursion",
"title": "CWE-674"
},
{
"category": "general",
"text": "Improper Restriction of XML External Entity Reference",
"title": "CWE-611"
},
{
"category": "general",
"text": "Out-of-bounds Write",
"title": "CWE-787"
},
{
"category": "general",
"text": "Exposure of Sensitive Information to an Unauthorized Actor",
"title": "CWE-200"
},
{
"category": "general",
"text": "Stack-based Buffer Overflow",
"title": "CWE-121"
},
{
"category": "general",
"text": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)",
"title": "CWE-835"
},
{
"category": "general",
"text": "Improper Input Validation",
"title": "CWE-20"
}
],
"publisher": {
"category": "coordinator",
"contact_details": "cert@ncsc.nl",
"name": "Nationaal Cyber Security Centrum",
"namespace": "https://www.ncsc.nl/"
},
"references": [
{
"category": "external",
"summary": "Reference - cveprojectv5; nvd; oracle",
"url": "https://www.oracle.com/security-alerts/cpuapr2025.html"
}
],
"title": "Kwetsbaarheden verholpen in Oracle Fusion Middleware",
"tracking": {
"current_release_date": "2025-04-16T15:01:24.587426Z",
"generator": {
"date": "2025-02-25T15:15:00Z",
"engine": {
"name": "V.A.",
"version": "1.0"
}
},
"id": "NCSC-2025-0128",
"initial_release_date": "2025-04-16T15:01:24.587426Z",
"revision_history": [
{
"date": "2025-04-16T15:01:24.587426Z",
"number": "1.0.0",
"summary": "Initiele versie"
}
],
"status": "final",
"version": "1.0.0"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "vers:oracle/12.2.1.4.0",
"product": {
"name": "vers:oracle/12.2.1.4.0",
"product_id": "CSAFPID-2699078",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:access_manager:12.2.1.4.0:*:*:*:*:*:*:*"
}
}
}
],
"category": "product_name",
"name": "Oracle Access Manager"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:oracle/12.2.1.4.0",
"product": {
"name": "vers:oracle/12.2.1.4.0",
"product_id": "CSAFPID-1839842",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:business_process_management_suite:12.2.1.4.0:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_version_range",
"name": "vers:oracle/14.1.2.0.0",
"product": {
"name": "vers:oracle/14.1.2.0.0",
"product_id": "CSAFPID-2698989",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:business_process_management_suite:14.1.2.0.0:*:*:*:*:*:*:*"
}
}
}
],
"category": "product_name",
"name": "Oracle Business Process Management Suite"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:oracle/12.2.1.4.0",
"product": {
"name": "vers:oracle/12.2.1.4.0",
"product_id": "CSAFPID-1839864",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:http_server:12.2.1.4.0:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_version_range",
"name": "vers:oracle/14.1.2.0.0",
"product": {
"name": "vers:oracle/14.1.2.0.0",
"product_id": "CSAFPID-2698967",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:http_server:14.1.2.0.0:*:*:*:*:*:*:*"
}
}
}
],
"category": "product_name",
"name": "Oracle HTTP Server"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:oracle/12.2.1.4.0",
"product": {
"name": "vers:oracle/12.2.1.4.0",
"product_id": "CSAFPID-1839938",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:managed_file_transfer:12.2.1.4.0:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_version_range",
"name": "vers:oracle/14.1.2.0.0",
"product": {
"name": "vers:oracle/14.1.2.0.0",
"product_id": "CSAFPID-2699074",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:managed_file_transfer:14.1.2.0.0:*:*:*:*:*:*:*"
}
}
}
],
"category": "product_name",
"name": "Oracle Managed File Transfer"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:oracle/12.2.1.4.0",
"product": {
"name": "vers:oracle/12.2.1.4.0",
"product_id": "CSAFPID-2698998",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:soa_suite:12.2.1.4.0:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_version_range",
"name": "vers:oracle/14.1.2.0.0",
"product": {
"name": "vers:oracle/14.1.2.0.0",
"product_id": "CSAFPID-2698997",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:soa_suite:14.1.2.0.0:*:*:*:*:*:*:*"
}
}
}
],
"category": "product_name",
"name": "Oracle SOA Suite"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:oracle/12.2.1.4.0",
"product": {
"name": "vers:oracle/12.2.1.4.0",
"product_id": "CSAFPID-1839896",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_version_range",
"name": "vers:oracle/14.1.1.0.0",
"product": {
"name": "vers:oracle/14.1.1.0.0",
"product_id": "CSAFPID-1839897",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_version_range",
"name": "vers:oracle/14.1.2.0.0",
"product": {
"name": "vers:oracle/14.1.2.0.0",
"product_id": "CSAFPID-1840030",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:weblogic_server:14.1.2.0.0:*:*:*:*:*:*:*"
}
}
}
],
"category": "product_name",
"name": "Oracle WebLogic Server"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:oracle/8.5.7",
"product": {
"name": "vers:oracle/8.5.7",
"product_id": "CSAFPID-1839872",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:outside_in_technology:8.5.7:*:*:*:*:*:*:*"
}
}
}
],
"category": "product_name",
"name": "Oracle Outside In Technology"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:oracle/12.2.1.4.0",
"product": {
"name": "vers:oracle/12.2.1.4.0",
"product_id": "CSAFPID-1840014",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:coherence:12.2.1.4.0:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_version_range",
"name": "vers:oracle/14.1.1.0.0",
"product": {
"name": "vers:oracle/14.1.1.0.0",
"product_id": "CSAFPID-1839982",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:coherence:14.1.1.0.0:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_version_range",
"name": "vers:oracle/14.1.2.0.0",
"product": {
"name": "vers:oracle/14.1.2.0.0",
"product_id": "CSAFPID-2699125",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:coherence:14.1.2.0.0:*:*:*:*:*:*:*"
}
}
}
],
"category": "product_name",
"name": "Oracle Coherence"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:oracle/12.2.1.4.0",
"product": {
"name": "vers:oracle/12.2.1.4.0",
"product_id": "CSAFPID-1839988",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:fusion_middleware_mapviewer:12.2.1.4.0:*:*:*:*:*:*:*"
}
}
}
],
"category": "product_name",
"name": "Oracle Fusion Middleware MapViewer"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:oracle/12.2.1.4.0",
"product": {
"name": "vers:oracle/12.2.1.4.0",
"product_id": "CSAFPID-2698948",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:jdeveloper:12.2.1.4.0:*:*:*:*:*:*:*"
}
}
}
],
"category": "product_name",
"name": "Oracle JDeveloper"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:oracle/14.1.1.0.0",
"product": {
"name": "vers:oracle/14.1.1.0.0",
"product_id": "CSAFPID-2699057",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:webcenter_forms_recognition:14.1.1.0.0:*:*:*:*:*:*:*"
}
}
}
],
"category": "product_name",
"name": "Oracle WebCenter Forms Recognition"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:oracle/12.2.1.4.0",
"product": {
"name": "vers:oracle/12.2.1.4.0",
"product_id": "CSAFPID-1840006",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*"
}
}
}
],
"category": "product_name",
"name": "Oracle WebCenter Portal"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:oracle/12.2.1.4.0",
"product": {
"name": "vers:oracle/12.2.1.4.0",
"product_id": "CSAFPID-2698985",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:data_integrator:12.2.1.4.0:*:*:*:*:*:*:*"
}
}
}
],
"category": "product_name",
"name": "Oracle Data Integrator"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:oracle/12.2.1.4.0",
"product": {
"name": "vers:oracle/12.2.1.4.0",
"product_id": "CSAFPID-1840028",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:business_activity_monitoring:12.2.1.4.0:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_version_range",
"name": "vers:oracle/14.1.2.0.0",
"product": {
"name": "vers:oracle/14.1.2.0.0",
"product_id": "CSAFPID-2699064",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:business_activity_monitoring:14.1.2.0.0:*:*:*:*:*:*:*"
}
}
}
],
"category": "product_name",
"name": "Oracle Business Activity Monitoring"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:oracle/12.2.1.4.0",
"product": {
"name": "vers:oracle/12.2.1.4.0",
"product_id": "CSAFPID-2699044",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:service_bus:12.2.1.4.0:*:*:*:*:*:*:*"
}
}
}
],
"category": "product_name",
"name": "Oracle Service Bus"
}
],
"category": "product_family",
"name": "Oracle Fusion Middleware"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/12.2.1.4.0",
"product": {
"name": "vers:unknown/12.2.1.4.0",
"product_id": "CSAFPID-1213401"
}
}
],
"category": "product_name",
"name": "Managed File Transfer"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/12.2.1.3.0",
"product": {
"name": "vers:unknown/12.2.1.3.0",
"product_id": "CSAFPID-1536644"
}
},
{
"category": "product_version_range",
"name": "vers:unknown/12.2.1.4.0",
"product": {
"name": "vers:unknown/12.2.1.4.0",
"product_id": "CSAFPID-1536288"
}
},
{
"category": "product_version_range",
"name": "vers:unknown/14.1.1.0.0",
"product": {
"name": "vers:unknown/14.1.1.0.0",
"product_id": "CSAFPID-1536278"
}
}
],
"category": "product_name",
"name": "Weblogic Server"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/8.5.7",
"product": {
"name": "vers:unknown/8.5.7",
"product_id": "CSAFPID-1233360"
}
}
],
"category": "product_name",
"name": "Outside In Technology"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/12.2.1.4.0",
"product": {
"name": "vers:unknown/12.2.1.4.0",
"product_id": "CSAFPID-1210435"
}
},
{
"category": "product_version_range",
"name": "vers:unknown/14.1.1.0.0",
"product": {
"name": "vers:unknown/14.1.1.0.0",
"product_id": "CSAFPID-1210304"
}
}
],
"category": "product_name",
"name": "Coherence"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/12.2.1.4.0",
"product": {
"name": "vers:unknown/12.2.1.4.0",
"product_id": "CSAFPID-1247956"
}
}
],
"category": "product_name",
"name": "Jdeveloper (Application)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/12.2.1.3.0",
"product": {
"name": "vers:unknown/12.2.1.3.0",
"product_id": "CSAFPID-1214253"
}
},
{
"category": "product_version_range",
"name": "vers:unknown/12.2.1.4.0",
"product": {
"name": "vers:unknown/12.2.1.4.0",
"product_id": "CSAFPID-1232894"
}
}
],
"category": "product_name",
"name": "WebCenter Portal"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/12.2.1.4.0",
"product": {
"name": "vers:unknown/12.2.1.4.0",
"product_id": "CSAFPID-1201529"
}
}
],
"category": "product_name",
"name": "Data Integrator"
}
],
"category": "product_family",
"name": "Oracle"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:oracle/12.2.1.4.0",
"product": {
"name": "vers:oracle/12.2.1.4.0",
"product_id": "CSAFPID-1144680",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_version_range",
"name": "vers:oracle/14.1.1.0.0",
"product": {
"name": "vers:oracle/14.1.1.0.0",
"product_id": "CSAFPID-1144604",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*"
}
}
}
],
"category": "product_name",
"name": "Oracle WebLogic Server"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/12.2.1.4.0",
"product": {
"name": "vers:unknown/12.2.1.4.0",
"product_id": "CSAFPID-39413",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:coherence:12.2.1.4.0:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_version_range",
"name": "vers:unknown/14.1.1.0.0",
"product": {
"name": "vers:unknown/14.1.1.0.0",
"product_id": "CSAFPID-39412",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:coherence:14.1.1.0.0:*:*:*:*:*:*:*"
}
}
}
],
"category": "product_name",
"name": "Coherence"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:oracle/12.2.1.3.0",
"product": {
"name": "vers:oracle/12.2.1.3.0",
"product_id": "CSAFPID-1144910"
}
},
{
"category": "product_version_range",
"name": "vers:oracle/12.2.1.4.0",
"product": {
"name": "vers:oracle/12.2.1.4.0",
"product_id": "CSAFPID-1144911",
"product_identification_helper": {
"cpe": "cpe:2.3:a:oracle:webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*"
}
}
}
],
"category": "product_name",
"name": "Oracle WebCenter Portal"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/12.2.1.3.0",
"product": {
"name": "vers:unknown/12.2.1.3.0",
"product_id": "CSAFPID-317201",
"product_identification_helper": {
"cpe": "cpe:2.3:a:ibm:oracle_webcenter_portal:12.2.1.3.0:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_version_range",
"name": "vers:unknown/12.2.1.4.0",
"product": {
"name": "vers:unknown/12.2.1.4.0",
"product_id": "CSAFPID-307786",
"product_identification_helper": {
"cpe": "cpe:2.3:a:ibm:oracle_webcenter_portal:12.2.1.4.0:*:*:*:*:*:*:*"
}
}
}
],
"category": "product_name",
"name": "WebCenter Portal"
}
],
"category": "vendor",
"name": "Oracle"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-13936",
"cwe": {
"id": "CWE-94",
"name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
},
"notes": [
{
"category": "other",
"text": "Improper Control of Generation of Code (\u0027Code Injection\u0027)",
"title": "CWE-94"
},
{
"category": "other",
"text": "Improper Neutralization of Special Elements Used in a Template Engine",
"title": "CWE-1336"
}
],
"product_status": {
"known_affected": [
"CSAFPID-2699078",
"CSAFPID-1839842",
"CSAFPID-2698989",
"CSAFPID-1839864",
"CSAFPID-2698967",
"CSAFPID-1213401",
"CSAFPID-1839938",
"CSAFPID-2699074",
"CSAFPID-2698998",
"CSAFPID-2698997",
"CSAFPID-1144680",
"CSAFPID-1839896",
"CSAFPID-1144604",
"CSAFPID-1839897",
"CSAFPID-1536644",
"CSAFPID-1840030",
"CSAFPID-1536288",
"CSAFPID-1536278",
"CSAFPID-1839872",
"CSAFPID-1233360",
"CSAFPID-39413",
"CSAFPID-1210435",
"CSAFPID-1210304",
"CSAFPID-39412",
"CSAFPID-1840014",
"CSAFPID-1839982",
"CSAFPID-2699125",
"CSAFPID-1839988",
"CSAFPID-1247956",
"CSAFPID-2698948",
"CSAFPID-2699057",
"CSAFPID-1144910",
"CSAFPID-1840006",
"CSAFPID-1144911",
"CSAFPID-1214253",
"CSAFPID-317201",
"CSAFPID-1232894",
"CSAFPID-307786",
"CSAFPID-1201529",
"CSAFPID-2698985",
"CSAFPID-1840028",
"CSAFPID-2699064",
"CSAFPID-2699044"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2020-13936",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2020/CVE-2020-13936.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-2699078",
"CSAFPID-1839842",
"CSAFPID-2698989",
"CSAFPID-1839864",
"CSAFPID-2698967",
"CSAFPID-1213401",
"CSAFPID-1839938",
"CSAFPID-2699074",
"CSAFPID-2698998",
"CSAFPID-2698997",
"CSAFPID-1144680",
"CSAFPID-1839896",
"CSAFPID-1144604",
"CSAFPID-1839897",
"CSAFPID-1536644",
"CSAFPID-1840030",
"CSAFPID-1536288",
"CSAFPID-1536278",
"CSAFPID-1839872",
"CSAFPID-1233360",
"CSAFPID-39413",
"CSAFPID-1210435",
"CSAFPID-1210304",
"CSAFPID-39412",
"CSAFPID-1840014",
"CSAFPID-1839982",
"CSAFPID-2699125",
"CSAFPID-1839988",
"CSAFPID-1247956",
"CSAFPID-2698948",
"CSAFPID-2699057",
"CSAFPID-1144910",
"CSAFPID-1840006",
"CSAFPID-1144911",
"CSAFPID-1214253",
"CSAFPID-317201",
"CSAFPID-1232894",
"CSAFPID-307786",
"CSAFPID-1201529",
"CSAFPID-2698985",
"CSAFPID-1840028",
"CSAFPID-2699064",
"CSAFPID-2699044"
]
}
],
"title": "CVE-2020-13936"
},
{
"cve": "CVE-2020-25649",
"cwe": {
"id": "CWE-611",
"name": "Improper Restriction of XML External Entity Reference"
},
"notes": [
{
"category": "other",
"text": "Improper Restriction of XML External Entity Reference",
"title": "CWE-611"
}
],
"product_status": {
"known_affected": [
"CSAFPID-2699078",
"CSAFPID-1839842",
"CSAFPID-2698989",
"CSAFPID-1839864",
"CSAFPID-2698967",
"CSAFPID-1213401",
"CSAFPID-1839938",
"CSAFPID-2699074",
"CSAFPID-2698998",
"CSAFPID-2698997",
"CSAFPID-1144680",
"CSAFPID-1839896",
"CSAFPID-1144604",
"CSAFPID-1839897",
"CSAFPID-1536644",
"CSAFPID-1840030",
"CSAFPID-1536288",
"CSAFPID-1536278",
"CSAFPID-1839872",
"CSAFPID-1233360",
"CSAFPID-39413",
"CSAFPID-1210435",
"CSAFPID-1210304",
"CSAFPID-39412",
"CSAFPID-1840014",
"CSAFPID-1839982",
"CSAFPID-2699125",
"CSAFPID-1839988",
"CSAFPID-1247956",
"CSAFPID-2698948",
"CSAFPID-2699057",
"CSAFPID-1144910",
"CSAFPID-1840006",
"CSAFPID-1144911",
"CSAFPID-1214253",
"CSAFPID-317201",
"CSAFPID-1232894",
"CSAFPID-307786",
"CSAFPID-1201529",
"CSAFPID-2698985",
"CSAFPID-1840028",
"CSAFPID-2699064",
"CSAFPID-2699044"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2020-25649",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2020/CVE-2020-25649.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-2699078",
"CSAFPID-1839842",
"CSAFPID-2698989",
"CSAFPID-1839864",
"CSAFPID-2698967",
"CSAFPID-1213401",
"CSAFPID-1839938",
"CSAFPID-2699074",
"CSAFPID-2698998",
"CSAFPID-2698997",
"CSAFPID-1144680",
"CSAFPID-1839896",
"CSAFPID-1144604",
"CSAFPID-1839897",
"CSAFPID-1536644",
"CSAFPID-1840030",
"CSAFPID-1536288",
"CSAFPID-1536278",
"CSAFPID-1839872",
"CSAFPID-1233360",
"CSAFPID-39413",
"CSAFPID-1210435",
"CSAFPID-1210304",
"CSAFPID-39412",
"CSAFPID-1840014",
"CSAFPID-1839982",
"CSAFPID-2699125",
"CSAFPID-1839988",
"CSAFPID-1247956",
"CSAFPID-2698948",
"CSAFPID-2699057",
"CSAFPID-1144910",
"CSAFPID-1840006",
"CSAFPID-1144911",
"CSAFPID-1214253",
"CSAFPID-317201",
"CSAFPID-1232894",
"CSAFPID-307786",
"CSAFPID-1201529",
"CSAFPID-2698985",
"CSAFPID-1840028",
"CSAFPID-2699064",
"CSAFPID-2699044"
]
}
],
"title": "CVE-2020-25649"
},
{
"cve": "CVE-2023-26464",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"notes": [
{
"category": "other",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
},
{
"category": "other",
"text": "Deserialization of Untrusted Data",
"title": "CWE-502"
}
],
"product_status": {
"known_affected": [
"CSAFPID-2699078",
"CSAFPID-1839842",
"CSAFPID-2698989",
"CSAFPID-1839864",
"CSAFPID-2698967",
"CSAFPID-1213401",
"CSAFPID-1839938",
"CSAFPID-2699074",
"CSAFPID-2698998",
"CSAFPID-2698997",
"CSAFPID-1144680",
"CSAFPID-1839896",
"CSAFPID-1144604",
"CSAFPID-1839897",
"CSAFPID-1536644",
"CSAFPID-1840030",
"CSAFPID-1536288",
"CSAFPID-1536278",
"CSAFPID-1839872",
"CSAFPID-1233360",
"CSAFPID-39413",
"CSAFPID-1210435",
"CSAFPID-1210304",
"CSAFPID-39412",
"CSAFPID-1840014",
"CSAFPID-1839982",
"CSAFPID-2699125",
"CSAFPID-1839988",
"CSAFPID-1247956",
"CSAFPID-2698948",
"CSAFPID-2699057",
"CSAFPID-1144910",
"CSAFPID-1840006",
"CSAFPID-1144911",
"CSAFPID-1214253",
"CSAFPID-317201",
"CSAFPID-1232894",
"CSAFPID-307786",
"CSAFPID-1201529",
"CSAFPID-2698985",
"CSAFPID-1840028",
"CSAFPID-2699064",
"CSAFPID-2699044"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2023-26464",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-26464.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-2699078",
"CSAFPID-1839842",
"CSAFPID-2698989",
"CSAFPID-1839864",
"CSAFPID-2698967",
"CSAFPID-1213401",
"CSAFPID-1839938",
"CSAFPID-2699074",
"CSAFPID-2698998",
"CSAFPID-2698997",
"CSAFPID-1144680",
"CSAFPID-1839896",
"CSAFPID-1144604",
"CSAFPID-1839897",
"CSAFPID-1536644",
"CSAFPID-1840030",
"CSAFPID-1536288",
"CSAFPID-1536278",
"CSAFPID-1839872",
"CSAFPID-1233360",
"CSAFPID-39413",
"CSAFPID-1210435",
"CSAFPID-1210304",
"CSAFPID-39412",
"CSAFPID-1840014",
"CSAFPID-1839982",
"CSAFPID-2699125",
"CSAFPID-1839988",
"CSAFPID-1247956",
"CSAFPID-2698948",
"CSAFPID-2699057",
"CSAFPID-1144910",
"CSAFPID-1840006",
"CSAFPID-1144911",
"CSAFPID-1214253",
"CSAFPID-317201",
"CSAFPID-1232894",
"CSAFPID-307786",
"CSAFPID-1201529",
"CSAFPID-2698985",
"CSAFPID-1840028",
"CSAFPID-2699064",
"CSAFPID-2699044"
]
}
],
"title": "CVE-2023-26464"
},
{
"cve": "CVE-2024-7254",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "other",
"text": "Improper Input Validation",
"title": "CWE-20"
},
{
"category": "other",
"text": "Uncontrolled Recursion",
"title": "CWE-674"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-2699078",
"CSAFPID-1839842",
"CSAFPID-2698989",
"CSAFPID-1839864",
"CSAFPID-2698967",
"CSAFPID-1213401",
"CSAFPID-1839938",
"CSAFPID-2699074",
"CSAFPID-2698998",
"CSAFPID-2698997",
"CSAFPID-1144680",
"CSAFPID-1839896",
"CSAFPID-1144604",
"CSAFPID-1839897",
"CSAFPID-1536644",
"CSAFPID-1840030",
"CSAFPID-1536288",
"CSAFPID-1536278",
"CSAFPID-1839872",
"CSAFPID-1233360",
"CSAFPID-39413",
"CSAFPID-1210435",
"CSAFPID-1210304",
"CSAFPID-39412",
"CSAFPID-1840014",
"CSAFPID-1839982",
"CSAFPID-2699125",
"CSAFPID-1839988",
"CSAFPID-1247956",
"CSAFPID-2698948",
"CSAFPID-2699057",
"CSAFPID-1144910",
"CSAFPID-1840006",
"CSAFPID-1144911",
"CSAFPID-1214253",
"CSAFPID-317201",
"CSAFPID-1232894",
"CSAFPID-307786",
"CSAFPID-1201529",
"CSAFPID-2698985",
"CSAFPID-1840028",
"CSAFPID-2699064",
"CSAFPID-2699044"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-7254",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-7254.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-2699078",
"CSAFPID-1839842",
"CSAFPID-2698989",
"CSAFPID-1839864",
"CSAFPID-2698967",
"CSAFPID-1213401",
"CSAFPID-1839938",
"CSAFPID-2699074",
"CSAFPID-2698998",
"CSAFPID-2698997",
"CSAFPID-1144680",
"CSAFPID-1839896",
"CSAFPID-1144604",
"CSAFPID-1839897",
"CSAFPID-1536644",
"CSAFPID-1840030",
"CSAFPID-1536288",
"CSAFPID-1536278",
"CSAFPID-1839872",
"CSAFPID-1233360",
"CSAFPID-39413",
"CSAFPID-1210435",
"CSAFPID-1210304",
"CSAFPID-39412",
"CSAFPID-1840014",
"CSAFPID-1839982",
"CSAFPID-2699125",
"CSAFPID-1839988",
"CSAFPID-1247956",
"CSAFPID-2698948",
"CSAFPID-2699057",
"CSAFPID-1144910",
"CSAFPID-1840006",
"CSAFPID-1144911",
"CSAFPID-1214253",
"CSAFPID-317201",
"CSAFPID-1232894",
"CSAFPID-307786",
"CSAFPID-1201529",
"CSAFPID-2698985",
"CSAFPID-1840028",
"CSAFPID-2699064",
"CSAFPID-2699044"
]
}
],
"title": "CVE-2024-7254"
},
{
"cve": "CVE-2024-9143",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "other",
"text": "Out-of-bounds Write",
"title": "CWE-787"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-2699078",
"CSAFPID-1839842",
"CSAFPID-2698989",
"CSAFPID-1839864",
"CSAFPID-2698967",
"CSAFPID-1213401",
"CSAFPID-1839938",
"CSAFPID-2699074",
"CSAFPID-2698998",
"CSAFPID-2698997",
"CSAFPID-1144680",
"CSAFPID-1839896",
"CSAFPID-1144604",
"CSAFPID-1839897",
"CSAFPID-1536644",
"CSAFPID-1840030",
"CSAFPID-1536288",
"CSAFPID-1536278",
"CSAFPID-1839872",
"CSAFPID-1233360",
"CSAFPID-39413",
"CSAFPID-1210435",
"CSAFPID-1210304",
"CSAFPID-39412",
"CSAFPID-1840014",
"CSAFPID-1839982",
"CSAFPID-2699125",
"CSAFPID-1839988",
"CSAFPID-1247956",
"CSAFPID-2698948",
"CSAFPID-2699057",
"CSAFPID-1144910",
"CSAFPID-1840006",
"CSAFPID-1144911",
"CSAFPID-1214253",
"CSAFPID-317201",
"CSAFPID-1232894",
"CSAFPID-307786",
"CSAFPID-1201529",
"CSAFPID-2698985",
"CSAFPID-1840028",
"CSAFPID-2699064",
"CSAFPID-2699044"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-9143",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-9143.json"
}
],
"title": "CVE-2024-9143"
},
{
"cve": "CVE-2024-11053",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"notes": [
{
"category": "other",
"text": "Exposure of Sensitive Information to an Unauthorized Actor",
"title": "CWE-200"
}
],
"product_status": {
"known_affected": [
"CSAFPID-2699078",
"CSAFPID-1839842",
"CSAFPID-2698989",
"CSAFPID-1839864",
"CSAFPID-2698967",
"CSAFPID-1213401",
"CSAFPID-1839938",
"CSAFPID-2699074",
"CSAFPID-2698998",
"CSAFPID-2698997",
"CSAFPID-1144680",
"CSAFPID-1839896",
"CSAFPID-1144604",
"CSAFPID-1839897",
"CSAFPID-1536644",
"CSAFPID-1840030",
"CSAFPID-1536288",
"CSAFPID-1536278",
"CSAFPID-1839872",
"CSAFPID-1233360",
"CSAFPID-39413",
"CSAFPID-1210435",
"CSAFPID-1210304",
"CSAFPID-39412",
"CSAFPID-1840014",
"CSAFPID-1839982",
"CSAFPID-2699125",
"CSAFPID-1839988",
"CSAFPID-1247956",
"CSAFPID-2698948",
"CSAFPID-2699057",
"CSAFPID-1144910",
"CSAFPID-1840006",
"CSAFPID-1144911",
"CSAFPID-1214253",
"CSAFPID-317201",
"CSAFPID-1232894",
"CSAFPID-307786",
"CSAFPID-1201529",
"CSAFPID-2698985",
"CSAFPID-1840028",
"CSAFPID-2699064",
"CSAFPID-2699044"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-11053",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-11053.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-2699078",
"CSAFPID-1839842",
"CSAFPID-2698989",
"CSAFPID-1839864",
"CSAFPID-2698967",
"CSAFPID-1213401",
"CSAFPID-1839938",
"CSAFPID-2699074",
"CSAFPID-2698998",
"CSAFPID-2698997",
"CSAFPID-1144680",
"CSAFPID-1839896",
"CSAFPID-1144604",
"CSAFPID-1839897",
"CSAFPID-1536644",
"CSAFPID-1840030",
"CSAFPID-1536288",
"CSAFPID-1536278",
"CSAFPID-1839872",
"CSAFPID-1233360",
"CSAFPID-39413",
"CSAFPID-1210435",
"CSAFPID-1210304",
"CSAFPID-39412",
"CSAFPID-1840014",
"CSAFPID-1839982",
"CSAFPID-2699125",
"CSAFPID-1839988",
"CSAFPID-1247956",
"CSAFPID-2698948",
"CSAFPID-2699057",
"CSAFPID-1144910",
"CSAFPID-1840006",
"CSAFPID-1144911",
"CSAFPID-1214253",
"CSAFPID-317201",
"CSAFPID-1232894",
"CSAFPID-307786",
"CSAFPID-1201529",
"CSAFPID-2698985",
"CSAFPID-1840028",
"CSAFPID-2699064",
"CSAFPID-2699044"
]
}
],
"title": "CVE-2024-11053"
},
{
"cve": "CVE-2024-11612",
"cwe": {
"id": "CWE-404",
"name": "Improper Resource Shutdown or Release"
},
"notes": [
{
"category": "other",
"text": "Improper Resource Shutdown or Release",
"title": "CWE-404"
},
{
"category": "other",
"text": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)",
"title": "CWE-835"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-2699078",
"CSAFPID-1839842",
"CSAFPID-2698989",
"CSAFPID-1839864",
"CSAFPID-2698967",
"CSAFPID-1213401",
"CSAFPID-1839938",
"CSAFPID-2699074",
"CSAFPID-2698998",
"CSAFPID-2698997",
"CSAFPID-1144680",
"CSAFPID-1839896",
"CSAFPID-1144604",
"CSAFPID-1839897",
"CSAFPID-1536644",
"CSAFPID-1840030",
"CSAFPID-1536288",
"CSAFPID-1536278",
"CSAFPID-1839872",
"CSAFPID-1233360",
"CSAFPID-39413",
"CSAFPID-1210435",
"CSAFPID-1210304",
"CSAFPID-39412",
"CSAFPID-1840014",
"CSAFPID-1839982",
"CSAFPID-2699125",
"CSAFPID-1839988",
"CSAFPID-1247956",
"CSAFPID-2698948",
"CSAFPID-2699057",
"CSAFPID-1144910",
"CSAFPID-1840006",
"CSAFPID-1144911",
"CSAFPID-1214253",
"CSAFPID-317201",
"CSAFPID-1232894",
"CSAFPID-307786",
"CSAFPID-1201529",
"CSAFPID-2698985",
"CSAFPID-1840028",
"CSAFPID-2699064",
"CSAFPID-2699044"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-11612",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-11612.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-2699078",
"CSAFPID-1839842",
"CSAFPID-2698989",
"CSAFPID-1839864",
"CSAFPID-2698967",
"CSAFPID-1213401",
"CSAFPID-1839938",
"CSAFPID-2699074",
"CSAFPID-2698998",
"CSAFPID-2698997",
"CSAFPID-1144680",
"CSAFPID-1839896",
"CSAFPID-1144604",
"CSAFPID-1839897",
"CSAFPID-1536644",
"CSAFPID-1840030",
"CSAFPID-1536288",
"CSAFPID-1536278",
"CSAFPID-1839872",
"CSAFPID-1233360",
"CSAFPID-39413",
"CSAFPID-1210435",
"CSAFPID-1210304",
"CSAFPID-39412",
"CSAFPID-1840014",
"CSAFPID-1839982",
"CSAFPID-2699125",
"CSAFPID-1839988",
"CSAFPID-1247956",
"CSAFPID-2698948",
"CSAFPID-2699057",
"CSAFPID-1144910",
"CSAFPID-1840006",
"CSAFPID-1144911",
"CSAFPID-1214253",
"CSAFPID-317201",
"CSAFPID-1232894",
"CSAFPID-307786",
"CSAFPID-1201529",
"CSAFPID-2698985",
"CSAFPID-1840028",
"CSAFPID-2699064",
"CSAFPID-2699044"
]
}
],
"title": "CVE-2024-11612"
},
{
"cve": "CVE-2024-25710",
"cwe": {
"id": "CWE-835",
"name": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)"
},
"notes": [
{
"category": "other",
"text": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)",
"title": "CWE-835"
}
],
"product_status": {
"known_affected": [
"CSAFPID-2699078",
"CSAFPID-1839842",
"CSAFPID-2698989",
"CSAFPID-1839864",
"CSAFPID-2698967",
"CSAFPID-1213401",
"CSAFPID-1839938",
"CSAFPID-2699074",
"CSAFPID-2698998",
"CSAFPID-2698997",
"CSAFPID-1144680",
"CSAFPID-1839896",
"CSAFPID-1144604",
"CSAFPID-1839897",
"CSAFPID-1536644",
"CSAFPID-1840030",
"CSAFPID-1536288",
"CSAFPID-1536278",
"CSAFPID-1839872",
"CSAFPID-1233360",
"CSAFPID-39413",
"CSAFPID-1210435",
"CSAFPID-1210304",
"CSAFPID-39412",
"CSAFPID-1840014",
"CSAFPID-1839982",
"CSAFPID-2699125",
"CSAFPID-1839988",
"CSAFPID-1247956",
"CSAFPID-2698948",
"CSAFPID-2699057",
"CSAFPID-1144910",
"CSAFPID-1840006",
"CSAFPID-1144911",
"CSAFPID-1214253",
"CSAFPID-317201",
"CSAFPID-1232894",
"CSAFPID-307786",
"CSAFPID-1201529",
"CSAFPID-2698985",
"CSAFPID-1840028",
"CSAFPID-2699064",
"CSAFPID-2699044"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-25710",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-25710.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-2699078",
"CSAFPID-1839842",
"CSAFPID-2698989",
"CSAFPID-1839864",
"CSAFPID-2698967",
"CSAFPID-1213401",
"CSAFPID-1839938",
"CSAFPID-2699074",
"CSAFPID-2698998",
"CSAFPID-2698997",
"CSAFPID-1144680",
"CSAFPID-1839896",
"CSAFPID-1144604",
"CSAFPID-1839897",
"CSAFPID-1536644",
"CSAFPID-1840030",
"CSAFPID-1536288",
"CSAFPID-1536278",
"CSAFPID-1839872",
"CSAFPID-1233360",
"CSAFPID-39413",
"CSAFPID-1210435",
"CSAFPID-1210304",
"CSAFPID-39412",
"CSAFPID-1840014",
"CSAFPID-1839982",
"CSAFPID-2699125",
"CSAFPID-1839988",
"CSAFPID-1247956",
"CSAFPID-2698948",
"CSAFPID-2699057",
"CSAFPID-1144910",
"CSAFPID-1840006",
"CSAFPID-1144911",
"CSAFPID-1214253",
"CSAFPID-317201",
"CSAFPID-1232894",
"CSAFPID-307786",
"CSAFPID-1201529",
"CSAFPID-2698985",
"CSAFPID-1840028",
"CSAFPID-2699064",
"CSAFPID-2699044"
]
}
],
"title": "CVE-2024-25710"
},
{
"cve": "CVE-2024-28168",
"cwe": {
"id": "CWE-611",
"name": "Improper Restriction of XML External Entity Reference"
},
"notes": [
{
"category": "other",
"text": "Improper Restriction of XML External Entity Reference",
"title": "CWE-611"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-2699078",
"CSAFPID-1839842",
"CSAFPID-2698989",
"CSAFPID-1839864",
"CSAFPID-2698967",
"CSAFPID-1213401",
"CSAFPID-1839938",
"CSAFPID-2699074",
"CSAFPID-2698998",
"CSAFPID-2698997",
"CSAFPID-1144680",
"CSAFPID-1839896",
"CSAFPID-1144604",
"CSAFPID-1839897",
"CSAFPID-1536644",
"CSAFPID-1840030",
"CSAFPID-1536288",
"CSAFPID-1536278",
"CSAFPID-1839872",
"CSAFPID-1233360",
"CSAFPID-39413",
"CSAFPID-1210435",
"CSAFPID-1210304",
"CSAFPID-39412",
"CSAFPID-1840014",
"CSAFPID-1839982",
"CSAFPID-2699125",
"CSAFPID-1839988",
"CSAFPID-1247956",
"CSAFPID-2698948",
"CSAFPID-2699057",
"CSAFPID-1144910",
"CSAFPID-1840006",
"CSAFPID-1144911",
"CSAFPID-1214253",
"CSAFPID-317201",
"CSAFPID-1232894",
"CSAFPID-307786",
"CSAFPID-1201529",
"CSAFPID-2698985",
"CSAFPID-1840028",
"CSAFPID-2699064",
"CSAFPID-2699044"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-28168",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-28168.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-2699078",
"CSAFPID-1839842",
"CSAFPID-2698989",
"CSAFPID-1839864",
"CSAFPID-2698967",
"CSAFPID-1213401",
"CSAFPID-1839938",
"CSAFPID-2699074",
"CSAFPID-2698998",
"CSAFPID-2698997",
"CSAFPID-1144680",
"CSAFPID-1839896",
"CSAFPID-1144604",
"CSAFPID-1839897",
"CSAFPID-1536644",
"CSAFPID-1840030",
"CSAFPID-1536288",
"CSAFPID-1536278",
"CSAFPID-1839872",
"CSAFPID-1233360",
"CSAFPID-39413",
"CSAFPID-1210435",
"CSAFPID-1210304",
"CSAFPID-39412",
"CSAFPID-1840014",
"CSAFPID-1839982",
"CSAFPID-2699125",
"CSAFPID-1839988",
"CSAFPID-1247956",
"CSAFPID-2698948",
"CSAFPID-2699057",
"CSAFPID-1144910",
"CSAFPID-1840006",
"CSAFPID-1144911",
"CSAFPID-1214253",
"CSAFPID-317201",
"CSAFPID-1232894",
"CSAFPID-307786",
"CSAFPID-1201529",
"CSAFPID-2698985",
"CSAFPID-1840028",
"CSAFPID-2699064",
"CSAFPID-2699044"
]
}
],
"title": "CVE-2024-28168"
},
{
"cve": "CVE-2024-29857",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"notes": [
{
"category": "other",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
},
{
"category": "other",
"text": "Improper Input Validation",
"title": "CWE-20"
},
{
"category": "other",
"text": "Out-of-bounds Read",
"title": "CWE-125"
}
],
"product_status": {
"known_affected": [
"CSAFPID-2699078",
"CSAFPID-1839842",
"CSAFPID-2698989",
"CSAFPID-1839864",
"CSAFPID-2698967",
"CSAFPID-1213401",
"CSAFPID-1839938",
"CSAFPID-2699074",
"CSAFPID-2698998",
"CSAFPID-2698997",
"CSAFPID-1144680",
"CSAFPID-1839896",
"CSAFPID-1144604",
"CSAFPID-1839897",
"CSAFPID-1536644",
"CSAFPID-1840030",
"CSAFPID-1536288",
"CSAFPID-1536278",
"CSAFPID-1839872",
"CSAFPID-1233360",
"CSAFPID-39413",
"CSAFPID-1210435",
"CSAFPID-1210304",
"CSAFPID-39412",
"CSAFPID-1840014",
"CSAFPID-1839982",
"CSAFPID-2699125",
"CSAFPID-1839988",
"CSAFPID-1247956",
"CSAFPID-2698948",
"CSAFPID-2699057",
"CSAFPID-1144910",
"CSAFPID-1840006",
"CSAFPID-1144911",
"CSAFPID-1214253",
"CSAFPID-317201",
"CSAFPID-1232894",
"CSAFPID-307786",
"CSAFPID-1201529",
"CSAFPID-2698985",
"CSAFPID-1840028",
"CSAFPID-2699064",
"CSAFPID-2699044"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-29857",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-29857.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-2699078",
"CSAFPID-1839842",
"CSAFPID-2698989",
"CSAFPID-1839864",
"CSAFPID-2698967",
"CSAFPID-1213401",
"CSAFPID-1839938",
"CSAFPID-2699074",
"CSAFPID-2698998",
"CSAFPID-2698997",
"CSAFPID-1144680",
"CSAFPID-1839896",
"CSAFPID-1144604",
"CSAFPID-1839897",
"CSAFPID-1536644",
"CSAFPID-1840030",
"CSAFPID-1536288",
"CSAFPID-1536278",
"CSAFPID-1839872",
"CSAFPID-1233360",
"CSAFPID-39413",
"CSAFPID-1210435",
"CSAFPID-1210304",
"CSAFPID-39412",
"CSAFPID-1840014",
"CSAFPID-1839982",
"CSAFPID-2699125",
"CSAFPID-1839988",
"CSAFPID-1247956",
"CSAFPID-2698948",
"CSAFPID-2699057",
"CSAFPID-1144910",
"CSAFPID-1840006",
"CSAFPID-1144911",
"CSAFPID-1214253",
"CSAFPID-317201",
"CSAFPID-1232894",
"CSAFPID-307786",
"CSAFPID-1201529",
"CSAFPID-2698985",
"CSAFPID-1840028",
"CSAFPID-2699064",
"CSAFPID-2699044"
]
}
],
"title": "CVE-2024-29857"
},
{
"cve": "CVE-2024-38476",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"notes": [
{
"category": "other",
"text": "Exposure of Sensitive Information to an Unauthorized Actor",
"title": "CWE-200"
},
{
"category": "other",
"text": "Inclusion of Functionality from Untrusted Control Sphere",
"title": "CWE-829"
}
],
"product_status": {
"known_affected": [
"CSAFPID-2699078",
"CSAFPID-1839842",
"CSAFPID-2698989",
"CSAFPID-1839864",
"CSAFPID-2698967",
"CSAFPID-1213401",
"CSAFPID-1839938",
"CSAFPID-2699074",
"CSAFPID-2698998",
"CSAFPID-2698997",
"CSAFPID-1144680",
"CSAFPID-1839896",
"CSAFPID-1144604",
"CSAFPID-1839897",
"CSAFPID-1536644",
"CSAFPID-1840030",
"CSAFPID-1536288",
"CSAFPID-1536278",
"CSAFPID-1839872",
"CSAFPID-1233360",
"CSAFPID-39413",
"CSAFPID-1210435",
"CSAFPID-1210304",
"CSAFPID-39412",
"CSAFPID-1840014",
"CSAFPID-1839982",
"CSAFPID-2699125",
"CSAFPID-1839988",
"CSAFPID-1247956",
"CSAFPID-2698948",
"CSAFPID-2699057",
"CSAFPID-1144910",
"CSAFPID-1840006",
"CSAFPID-1144911",
"CSAFPID-1214253",
"CSAFPID-317201",
"CSAFPID-1232894",
"CSAFPID-307786",
"CSAFPID-1201529",
"CSAFPID-2698985",
"CSAFPID-1840028",
"CSAFPID-2699064",
"CSAFPID-2699044"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-38476",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-38476.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-2699078",
"CSAFPID-1839842",
"CSAFPID-2698989",
"CSAFPID-1839864",
"CSAFPID-2698967",
"CSAFPID-1213401",
"CSAFPID-1839938",
"CSAFPID-2699074",
"CSAFPID-2698998",
"CSAFPID-2698997",
"CSAFPID-1144680",
"CSAFPID-1839896",
"CSAFPID-1144604",
"CSAFPID-1839897",
"CSAFPID-1536644",
"CSAFPID-1840030",
"CSAFPID-1536288",
"CSAFPID-1536278",
"CSAFPID-1839872",
"CSAFPID-1233360",
"CSAFPID-39413",
"CSAFPID-1210435",
"CSAFPID-1210304",
"CSAFPID-39412",
"CSAFPID-1840014",
"CSAFPID-1839982",
"CSAFPID-2699125",
"CSAFPID-1839988",
"CSAFPID-1247956",
"CSAFPID-2698948",
"CSAFPID-2699057",
"CSAFPID-1144910",
"CSAFPID-1840006",
"CSAFPID-1144911",
"CSAFPID-1214253",
"CSAFPID-317201",
"CSAFPID-1232894",
"CSAFPID-307786",
"CSAFPID-1201529",
"CSAFPID-2698985",
"CSAFPID-1840028",
"CSAFPID-2699064",
"CSAFPID-2699044"
]
}
],
"title": "CVE-2024-38476"
},
{
"cve": "CVE-2024-40896",
"cwe": {
"id": "CWE-611",
"name": "Improper Restriction of XML External Entity Reference"
},
"notes": [
{
"category": "other",
"text": "Improper Restriction of XML External Entity Reference",
"title": "CWE-611"
}
],
"product_status": {
"known_affected": [
"CSAFPID-2699078",
"CSAFPID-1839842",
"CSAFPID-2698989",
"CSAFPID-1839864",
"CSAFPID-2698967",
"CSAFPID-1213401",
"CSAFPID-1839938",
"CSAFPID-2699074",
"CSAFPID-2698998",
"CSAFPID-2698997",
"CSAFPID-1144680",
"CSAFPID-1839896",
"CSAFPID-1144604",
"CSAFPID-1839897",
"CSAFPID-1536644",
"CSAFPID-1840030",
"CSAFPID-1536288",
"CSAFPID-1536278",
"CSAFPID-1839872",
"CSAFPID-1233360",
"CSAFPID-39413",
"CSAFPID-1210435",
"CSAFPID-1210304",
"CSAFPID-39412",
"CSAFPID-1840014",
"CSAFPID-1839982",
"CSAFPID-2699125",
"CSAFPID-1839988",
"CSAFPID-1247956",
"CSAFPID-2698948",
"CSAFPID-2699057",
"CSAFPID-1144910",
"CSAFPID-1840006",
"CSAFPID-1144911",
"CSAFPID-1214253",
"CSAFPID-317201",
"CSAFPID-1232894",
"CSAFPID-307786",
"CSAFPID-1201529",
"CSAFPID-2698985",
"CSAFPID-1840028",
"CSAFPID-2699064",
"CSAFPID-2699044"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-40896",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-40896.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-2699078",
"CSAFPID-1839842",
"CSAFPID-2698989",
"CSAFPID-1839864",
"CSAFPID-2698967",
"CSAFPID-1213401",
"CSAFPID-1839938",
"CSAFPID-2699074",
"CSAFPID-2698998",
"CSAFPID-2698997",
"CSAFPID-1144680",
"CSAFPID-1839896",
"CSAFPID-1144604",
"CSAFPID-1839897",
"CSAFPID-1536644",
"CSAFPID-1840030",
"CSAFPID-1536288",
"CSAFPID-1536278",
"CSAFPID-1839872",
"CSAFPID-1233360",
"CSAFPID-39413",
"CSAFPID-1210435",
"CSAFPID-1210304",
"CSAFPID-39412",
"CSAFPID-1840014",
"CSAFPID-1839982",
"CSAFPID-2699125",
"CSAFPID-1839988",
"CSAFPID-1247956",
"CSAFPID-2698948",
"CSAFPID-2699057",
"CSAFPID-1144910",
"CSAFPID-1840006",
"CSAFPID-1144911",
"CSAFPID-1214253",
"CSAFPID-317201",
"CSAFPID-1232894",
"CSAFPID-307786",
"CSAFPID-1201529",
"CSAFPID-2698985",
"CSAFPID-1840028",
"CSAFPID-2699064",
"CSAFPID-2699044"
]
}
],
"title": "CVE-2024-40896"
},
{
"cve": "CVE-2024-47072",
"cwe": {
"id": "CWE-121",
"name": "Stack-based Buffer Overflow"
},
"notes": [
{
"category": "other",
"text": "Stack-based Buffer Overflow",
"title": "CWE-121"
},
{
"category": "other",
"text": "Deserialization of Untrusted Data",
"title": "CWE-502"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:P",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-2699078",
"CSAFPID-1839842",
"CSAFPID-2698989",
"CSAFPID-1839864",
"CSAFPID-2698967",
"CSAFPID-1213401",
"CSAFPID-1839938",
"CSAFPID-2699074",
"CSAFPID-2698998",
"CSAFPID-2698997",
"CSAFPID-1144680",
"CSAFPID-1839896",
"CSAFPID-1144604",
"CSAFPID-1839897",
"CSAFPID-1536644",
"CSAFPID-1840030",
"CSAFPID-1536288",
"CSAFPID-1536278",
"CSAFPID-1839872",
"CSAFPID-1233360",
"CSAFPID-39413",
"CSAFPID-1210435",
"CSAFPID-1210304",
"CSAFPID-39412",
"CSAFPID-1840014",
"CSAFPID-1839982",
"CSAFPID-2699125",
"CSAFPID-1839988",
"CSAFPID-1247956",
"CSAFPID-2698948",
"CSAFPID-2699057",
"CSAFPID-1144910",
"CSAFPID-1840006",
"CSAFPID-1144911",
"CSAFPID-1214253",
"CSAFPID-317201",
"CSAFPID-1232894",
"CSAFPID-307786",
"CSAFPID-1201529",
"CSAFPID-2698985",
"CSAFPID-1840028",
"CSAFPID-2699064",
"CSAFPID-2699044"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-47072",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-47072.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-2699078",
"CSAFPID-1839842",
"CSAFPID-2698989",
"CSAFPID-1839864",
"CSAFPID-2698967",
"CSAFPID-1213401",
"CSAFPID-1839938",
"CSAFPID-2699074",
"CSAFPID-2698998",
"CSAFPID-2698997",
"CSAFPID-1144680",
"CSAFPID-1839896",
"CSAFPID-1144604",
"CSAFPID-1839897",
"CSAFPID-1536644",
"CSAFPID-1840030",
"CSAFPID-1536288",
"CSAFPID-1536278",
"CSAFPID-1839872",
"CSAFPID-1233360",
"CSAFPID-39413",
"CSAFPID-1210435",
"CSAFPID-1210304",
"CSAFPID-39412",
"CSAFPID-1840014",
"CSAFPID-1839982",
"CSAFPID-2699125",
"CSAFPID-1839988",
"CSAFPID-1247956",
"CSAFPID-2698948",
"CSAFPID-2699057",
"CSAFPID-1144910",
"CSAFPID-1840006",
"CSAFPID-1144911",
"CSAFPID-1214253",
"CSAFPID-317201",
"CSAFPID-1232894",
"CSAFPID-307786",
"CSAFPID-1201529",
"CSAFPID-2698985",
"CSAFPID-1840028",
"CSAFPID-2699064",
"CSAFPID-2699044"
]
}
],
"title": "CVE-2024-47072"
},
{
"cve": "CVE-2024-47554",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"notes": [
{
"category": "other",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-2699078",
"CSAFPID-1839842",
"CSAFPID-2698989",
"CSAFPID-1839864",
"CSAFPID-2698967",
"CSAFPID-1213401",
"CSAFPID-1839938",
"CSAFPID-2699074",
"CSAFPID-2698998",
"CSAFPID-2698997",
"CSAFPID-1144680",
"CSAFPID-1839896",
"CSAFPID-1144604",
"CSAFPID-1839897",
"CSAFPID-1536644",
"CSAFPID-1840030",
"CSAFPID-1536288",
"CSAFPID-1536278",
"CSAFPID-1839872",
"CSAFPID-1233360",
"CSAFPID-39413",
"CSAFPID-1210435",
"CSAFPID-1210304",
"CSAFPID-39412",
"CSAFPID-1840014",
"CSAFPID-1839982",
"CSAFPID-2699125",
"CSAFPID-1839988",
"CSAFPID-1247956",
"CSAFPID-2698948",
"CSAFPID-2699057",
"CSAFPID-1144910",
"CSAFPID-1840006",
"CSAFPID-1144911",
"CSAFPID-1214253",
"CSAFPID-317201",
"CSAFPID-1232894",
"CSAFPID-307786",
"CSAFPID-1201529",
"CSAFPID-2698985",
"CSAFPID-1840028",
"CSAFPID-2699064",
"CSAFPID-2699044"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-47554",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-47554.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-2699078",
"CSAFPID-1839842",
"CSAFPID-2698989",
"CSAFPID-1839864",
"CSAFPID-2698967",
"CSAFPID-1213401",
"CSAFPID-1839938",
"CSAFPID-2699074",
"CSAFPID-2698998",
"CSAFPID-2698997",
"CSAFPID-1144680",
"CSAFPID-1839896",
"CSAFPID-1144604",
"CSAFPID-1839897",
"CSAFPID-1536644",
"CSAFPID-1840030",
"CSAFPID-1536288",
"CSAFPID-1536278",
"CSAFPID-1839872",
"CSAFPID-1233360",
"CSAFPID-39413",
"CSAFPID-1210435",
"CSAFPID-1210304",
"CSAFPID-39412",
"CSAFPID-1840014",
"CSAFPID-1839982",
"CSAFPID-2699125",
"CSAFPID-1839988",
"CSAFPID-1247956",
"CSAFPID-2698948",
"CSAFPID-2699057",
"CSAFPID-1144910",
"CSAFPID-1840006",
"CSAFPID-1144911",
"CSAFPID-1214253",
"CSAFPID-317201",
"CSAFPID-1232894",
"CSAFPID-307786",
"CSAFPID-1201529",
"CSAFPID-2698985",
"CSAFPID-1840028",
"CSAFPID-2699064",
"CSAFPID-2699044"
]
}
],
"title": "CVE-2024-47554"
},
{
"cve": "CVE-2024-47561",
"cwe": {
"id": "CWE-502",
"name": "Deserialization of Untrusted Data"
},
"notes": [
{
"category": "other",
"text": "Deserialization of Untrusted Data",
"title": "CWE-502"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-2699078",
"CSAFPID-1839842",
"CSAFPID-2698989",
"CSAFPID-1839864",
"CSAFPID-2698967",
"CSAFPID-1213401",
"CSAFPID-1839938",
"CSAFPID-2699074",
"CSAFPID-2698998",
"CSAFPID-2698997",
"CSAFPID-1144680",
"CSAFPID-1839896",
"CSAFPID-1144604",
"CSAFPID-1839897",
"CSAFPID-1536644",
"CSAFPID-1840030",
"CSAFPID-1536288",
"CSAFPID-1536278",
"CSAFPID-1839872",
"CSAFPID-1233360",
"CSAFPID-39413",
"CSAFPID-1210435",
"CSAFPID-1210304",
"CSAFPID-39412",
"CSAFPID-1840014",
"CSAFPID-1839982",
"CSAFPID-2699125",
"CSAFPID-1839988",
"CSAFPID-1247956",
"CSAFPID-2698948",
"CSAFPID-2699057",
"CSAFPID-1144910",
"CSAFPID-1840006",
"CSAFPID-1144911",
"CSAFPID-1214253",
"CSAFPID-317201",
"CSAFPID-1232894",
"CSAFPID-307786",
"CSAFPID-1201529",
"CSAFPID-2698985",
"CSAFPID-1840028",
"CSAFPID-2699064",
"CSAFPID-2699044"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-47561",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-47561.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-2699078",
"CSAFPID-1839842",
"CSAFPID-2698989",
"CSAFPID-1839864",
"CSAFPID-2698967",
"CSAFPID-1213401",
"CSAFPID-1839938",
"CSAFPID-2699074",
"CSAFPID-2698998",
"CSAFPID-2698997",
"CSAFPID-1144680",
"CSAFPID-1839896",
"CSAFPID-1144604",
"CSAFPID-1839897",
"CSAFPID-1536644",
"CSAFPID-1840030",
"CSAFPID-1536288",
"CSAFPID-1536278",
"CSAFPID-1839872",
"CSAFPID-1233360",
"CSAFPID-39413",
"CSAFPID-1210435",
"CSAFPID-1210304",
"CSAFPID-39412",
"CSAFPID-1840014",
"CSAFPID-1839982",
"CSAFPID-2699125",
"CSAFPID-1839988",
"CSAFPID-1247956",
"CSAFPID-2698948",
"CSAFPID-2699057",
"CSAFPID-1144910",
"CSAFPID-1840006",
"CSAFPID-1144911",
"CSAFPID-1214253",
"CSAFPID-317201",
"CSAFPID-1232894",
"CSAFPID-307786",
"CSAFPID-1201529",
"CSAFPID-2698985",
"CSAFPID-1840028",
"CSAFPID-2699064",
"CSAFPID-2699044"
]
}
],
"title": "CVE-2024-47561"
},
{
"cve": "CVE-2024-50602",
"cwe": {
"id": "CWE-404",
"name": "Improper Resource Shutdown or Release"
},
"notes": [
{
"category": "other",
"text": "Improper Resource Shutdown or Release",
"title": "CWE-404"
},
{
"category": "other",
"text": "Improper Check for Unusual or Exceptional Conditions",
"title": "CWE-754"
},
{
"category": "general",
"text": "CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-2699078",
"CSAFPID-1839842",
"CSAFPID-2698989",
"CSAFPID-1839864",
"CSAFPID-2698967",
"CSAFPID-1213401",
"CSAFPID-1839938",
"CSAFPID-2699074",
"CSAFPID-2698998",
"CSAFPID-2698997",
"CSAFPID-1144680",
"CSAFPID-1839896",
"CSAFPID-1144604",
"CSAFPID-1839897",
"CSAFPID-1536644",
"CSAFPID-1840030",
"CSAFPID-1536288",
"CSAFPID-1536278",
"CSAFPID-1839872",
"CSAFPID-1233360",
"CSAFPID-39413",
"CSAFPID-1210435",
"CSAFPID-1210304",
"CSAFPID-39412",
"CSAFPID-1840014",
"CSAFPID-1839982",
"CSAFPID-2699125",
"CSAFPID-1839988",
"CSAFPID-1247956",
"CSAFPID-2698948",
"CSAFPID-2699057",
"CSAFPID-1144910",
"CSAFPID-1840006",
"CSAFPID-1144911",
"CSAFPID-1214253",
"CSAFPID-317201",
"CSAFPID-1232894",
"CSAFPID-307786",
"CSAFPID-1201529",
"CSAFPID-2698985",
"CSAFPID-1840028",
"CSAFPID-2699064",
"CSAFPID-2699044"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-50602",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-50602.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-2699078",
"CSAFPID-1839842",
"CSAFPID-2698989",
"CSAFPID-1839864",
"CSAFPID-2698967",
"CSAFPID-1213401",
"CSAFPID-1839938",
"CSAFPID-2699074",
"CSAFPID-2698998",
"CSAFPID-2698997",
"CSAFPID-1144680",
"CSAFPID-1839896",
"CSAFPID-1144604",
"CSAFPID-1839897",
"CSAFPID-1536644",
"CSAFPID-1840030",
"CSAFPID-1536288",
"CSAFPID-1536278",
"CSAFPID-1839872",
"CSAFPID-1233360",
"CSAFPID-39413",
"CSAFPID-1210435",
"CSAFPID-1210304",
"CSAFPID-39412",
"CSAFPID-1840014",
"CSAFPID-1839982",
"CSAFPID-2699125",
"CSAFPID-1839988",
"CSAFPID-1247956",
"CSAFPID-2698948",
"CSAFPID-2699057",
"CSAFPID-1144910",
"CSAFPID-1840006",
"CSAFPID-1144911",
"CSAFPID-1214253",
"CSAFPID-317201",
"CSAFPID-1232894",
"CSAFPID-307786",
"CSAFPID-1201529",
"CSAFPID-2698985",
"CSAFPID-1840028",
"CSAFPID-2699064",
"CSAFPID-2699044"
]
}
],
"title": "CVE-2024-50602"
},
{
"cve": "CVE-2024-52046",
"cwe": {
"id": "CWE-94",
"name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
},
"notes": [
{
"category": "other",
"text": "Improper Control of Generation of Code (\u0027Code Injection\u0027)",
"title": "CWE-94"
},
{
"category": "other",
"text": "Deserialization of Untrusted Data",
"title": "CWE-502"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-2699078",
"CSAFPID-1839842",
"CSAFPID-2698989",
"CSAFPID-1839864",
"CSAFPID-2698967",
"CSAFPID-1213401",
"CSAFPID-1839938",
"CSAFPID-2699074",
"CSAFPID-2698998",
"CSAFPID-2698997",
"CSAFPID-1144680",
"CSAFPID-1839896",
"CSAFPID-1144604",
"CSAFPID-1839897",
"CSAFPID-1536644",
"CSAFPID-1840030",
"CSAFPID-1536288",
"CSAFPID-1536278",
"CSAFPID-1839872",
"CSAFPID-1233360",
"CSAFPID-39413",
"CSAFPID-1210435",
"CSAFPID-1210304",
"CSAFPID-39412",
"CSAFPID-1840014",
"CSAFPID-1839982",
"CSAFPID-2699125",
"CSAFPID-1839988",
"CSAFPID-1247956",
"CSAFPID-2698948",
"CSAFPID-2699057",
"CSAFPID-1144910",
"CSAFPID-1840006",
"CSAFPID-1144911",
"CSAFPID-1214253",
"CSAFPID-317201",
"CSAFPID-1232894",
"CSAFPID-307786",
"CSAFPID-1201529",
"CSAFPID-2698985",
"CSAFPID-1840028",
"CSAFPID-2699064",
"CSAFPID-2699044"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-52046",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-52046.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-2699078",
"CSAFPID-1839842",
"CSAFPID-2698989",
"CSAFPID-1839864",
"CSAFPID-2698967",
"CSAFPID-1213401",
"CSAFPID-1839938",
"CSAFPID-2699074",
"CSAFPID-2698998",
"CSAFPID-2698997",
"CSAFPID-1144680",
"CSAFPID-1839896",
"CSAFPID-1144604",
"CSAFPID-1839897",
"CSAFPID-1536644",
"CSAFPID-1840030",
"CSAFPID-1536288",
"CSAFPID-1536278",
"CSAFPID-1839872",
"CSAFPID-1233360",
"CSAFPID-39413",
"CSAFPID-1210435",
"CSAFPID-1210304",
"CSAFPID-39412",
"CSAFPID-1840014",
"CSAFPID-1839982",
"CSAFPID-2699125",
"CSAFPID-1839988",
"CSAFPID-1247956",
"CSAFPID-2698948",
"CSAFPID-2699057",
"CSAFPID-1144910",
"CSAFPID-1840006",
"CSAFPID-1144911",
"CSAFPID-1214253",
"CSAFPID-317201",
"CSAFPID-1232894",
"CSAFPID-307786",
"CSAFPID-1201529",
"CSAFPID-2698985",
"CSAFPID-1840028",
"CSAFPID-2699064",
"CSAFPID-2699044"
]
}
],
"title": "CVE-2024-52046"
},
{
"cve": "CVE-2024-56337",
"cwe": {
"id": "CWE-367",
"name": "Time-of-check Time-of-use (TOCTOU) Race Condition"
},
"notes": [
{
"category": "other",
"text": "Time-of-check Time-of-use (TOCTOU) Race Condition",
"title": "CWE-367"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-2699078",
"CSAFPID-1839842",
"CSAFPID-2698989",
"CSAFPID-1839864",
"CSAFPID-2698967",
"CSAFPID-1213401",
"CSAFPID-1839938",
"CSAFPID-2699074",
"CSAFPID-2698998",
"CSAFPID-2698997",
"CSAFPID-1144680",
"CSAFPID-1839896",
"CSAFPID-1144604",
"CSAFPID-1839897",
"CSAFPID-1536644",
"CSAFPID-1840030",
"CSAFPID-1536288",
"CSAFPID-1536278",
"CSAFPID-1839872",
"CSAFPID-1233360",
"CSAFPID-39413",
"CSAFPID-1210435",
"CSAFPID-1210304",
"CSAFPID-39412",
"CSAFPID-1840014",
"CSAFPID-1839982",
"CSAFPID-2699125",
"CSAFPID-1839988",
"CSAFPID-1247956",
"CSAFPID-2698948",
"CSAFPID-2699057",
"CSAFPID-1144910",
"CSAFPID-1840006",
"CSAFPID-1144911",
"CSAFPID-1214253",
"CSAFPID-317201",
"CSAFPID-1232894",
"CSAFPID-307786",
"CSAFPID-1201529",
"CSAFPID-2698985",
"CSAFPID-1840028",
"CSAFPID-2699064",
"CSAFPID-2699044"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-56337",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-56337.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-2699078",
"CSAFPID-1839842",
"CSAFPID-2698989",
"CSAFPID-1839864",
"CSAFPID-2698967",
"CSAFPID-1213401",
"CSAFPID-1839938",
"CSAFPID-2699074",
"CSAFPID-2698998",
"CSAFPID-2698997",
"CSAFPID-1144680",
"CSAFPID-1839896",
"CSAFPID-1144604",
"CSAFPID-1839897",
"CSAFPID-1536644",
"CSAFPID-1840030",
"CSAFPID-1536288",
"CSAFPID-1536278",
"CSAFPID-1839872",
"CSAFPID-1233360",
"CSAFPID-39413",
"CSAFPID-1210435",
"CSAFPID-1210304",
"CSAFPID-39412",
"CSAFPID-1840014",
"CSAFPID-1839982",
"CSAFPID-2699125",
"CSAFPID-1839988",
"CSAFPID-1247956",
"CSAFPID-2698948",
"CSAFPID-2699057",
"CSAFPID-1144910",
"CSAFPID-1840006",
"CSAFPID-1144911",
"CSAFPID-1214253",
"CSAFPID-317201",
"CSAFPID-1232894",
"CSAFPID-307786",
"CSAFPID-1201529",
"CSAFPID-2698985",
"CSAFPID-1840028",
"CSAFPID-2699064",
"CSAFPID-2699044"
]
}
],
"title": "CVE-2024-56337"
},
{
"cve": "CVE-2025-23184",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"notes": [
{
"category": "other",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
}
],
"product_status": {
"known_affected": [
"CSAFPID-2699078",
"CSAFPID-1839842",
"CSAFPID-2698989",
"CSAFPID-1839864",
"CSAFPID-2698967",
"CSAFPID-1213401",
"CSAFPID-1839938",
"CSAFPID-2699074",
"CSAFPID-2698998",
"CSAFPID-2698997",
"CSAFPID-1144680",
"CSAFPID-1839896",
"CSAFPID-1144604",
"CSAFPID-1839897",
"CSAFPID-1536644",
"CSAFPID-1840030",
"CSAFPID-1536288",
"CSAFPID-1536278",
"CSAFPID-1839872",
"CSAFPID-1233360",
"CSAFPID-39413",
"CSAFPID-1210435",
"CSAFPID-1210304",
"CSAFPID-39412",
"CSAFPID-1840014",
"CSAFPID-1839982",
"CSAFPID-2699125",
"CSAFPID-1839988",
"CSAFPID-1247956",
"CSAFPID-2698948",
"CSAFPID-2699057",
"CSAFPID-1144910",
"CSAFPID-1840006",
"CSAFPID-1144911",
"CSAFPID-1214253",
"CSAFPID-317201",
"CSAFPID-1232894",
"CSAFPID-307786",
"CSAFPID-1201529",
"CSAFPID-2698985",
"CSAFPID-1840028",
"CSAFPID-2699064",
"CSAFPID-2699044"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-23184",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-23184.json"
}
],
"title": "CVE-2025-23184"
},
{
"cve": "CVE-2025-24970",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "other",
"text": "Improper Input Validation",
"title": "CWE-20"
},
{
"category": "other",
"text": "Improper Resource Shutdown or Release",
"title": "CWE-404"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-2699078",
"CSAFPID-1839842",
"CSAFPID-2698989",
"CSAFPID-1839864",
"CSAFPID-2698967",
"CSAFPID-1213401",
"CSAFPID-1839938",
"CSAFPID-2699074",
"CSAFPID-2698998",
"CSAFPID-2698997",
"CSAFPID-1144680",
"CSAFPID-1839896",
"CSAFPID-1144604",
"CSAFPID-1839897",
"CSAFPID-1536644",
"CSAFPID-1840030",
"CSAFPID-1536288",
"CSAFPID-1536278",
"CSAFPID-1839872",
"CSAFPID-1233360",
"CSAFPID-39413",
"CSAFPID-1210435",
"CSAFPID-1210304",
"CSAFPID-39412",
"CSAFPID-1840014",
"CSAFPID-1839982",
"CSAFPID-2699125",
"CSAFPID-1839988",
"CSAFPID-1247956",
"CSAFPID-2698948",
"CSAFPID-2699057",
"CSAFPID-1144910",
"CSAFPID-1840006",
"CSAFPID-1144911",
"CSAFPID-1214253",
"CSAFPID-317201",
"CSAFPID-1232894",
"CSAFPID-307786",
"CSAFPID-1201529",
"CSAFPID-2698985",
"CSAFPID-1840028",
"CSAFPID-2699064",
"CSAFPID-2699044"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-24970",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-24970.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-2699078",
"CSAFPID-1839842",
"CSAFPID-2698989",
"CSAFPID-1839864",
"CSAFPID-2698967",
"CSAFPID-1213401",
"CSAFPID-1839938",
"CSAFPID-2699074",
"CSAFPID-2698998",
"CSAFPID-2698997",
"CSAFPID-1144680",
"CSAFPID-1839896",
"CSAFPID-1144604",
"CSAFPID-1839897",
"CSAFPID-1536644",
"CSAFPID-1840030",
"CSAFPID-1536288",
"CSAFPID-1536278",
"CSAFPID-1839872",
"CSAFPID-1233360",
"CSAFPID-39413",
"CSAFPID-1210435",
"CSAFPID-1210304",
"CSAFPID-39412",
"CSAFPID-1840014",
"CSAFPID-1839982",
"CSAFPID-2699125",
"CSAFPID-1839988",
"CSAFPID-1247956",
"CSAFPID-2698948",
"CSAFPID-2699057",
"CSAFPID-1144910",
"CSAFPID-1840006",
"CSAFPID-1144911",
"CSAFPID-1214253",
"CSAFPID-317201",
"CSAFPID-1232894",
"CSAFPID-307786",
"CSAFPID-1201529",
"CSAFPID-2698985",
"CSAFPID-1840028",
"CSAFPID-2699064",
"CSAFPID-2699044"
]
}
],
"title": "CVE-2025-24970"
},
{
"cve": "CVE-2025-27363",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "other",
"text": "Out-of-bounds Write",
"title": "CWE-787"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-2699078",
"CSAFPID-1839842",
"CSAFPID-2698989",
"CSAFPID-1839864",
"CSAFPID-2698967",
"CSAFPID-1213401",
"CSAFPID-1839938",
"CSAFPID-2699074",
"CSAFPID-2698998",
"CSAFPID-2698997",
"CSAFPID-1144680",
"CSAFPID-1839896",
"CSAFPID-1144604",
"CSAFPID-1839897",
"CSAFPID-1536644",
"CSAFPID-1840030",
"CSAFPID-1536288",
"CSAFPID-1536278",
"CSAFPID-1839872",
"CSAFPID-1233360",
"CSAFPID-39413",
"CSAFPID-1210435",
"CSAFPID-1210304",
"CSAFPID-39412",
"CSAFPID-1840014",
"CSAFPID-1839982",
"CSAFPID-2699125",
"CSAFPID-1839988",
"CSAFPID-1247956",
"CSAFPID-2698948",
"CSAFPID-2699057",
"CSAFPID-1144910",
"CSAFPID-1840006",
"CSAFPID-1144911",
"CSAFPID-1214253",
"CSAFPID-317201",
"CSAFPID-1232894",
"CSAFPID-307786",
"CSAFPID-1201529",
"CSAFPID-2698985",
"CSAFPID-1840028",
"CSAFPID-2699064",
"CSAFPID-2699044"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-27363",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2025/CVE-2025-27363.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:F/RL:O/RC:C/CR:H/IR:H/AR:H/MAV:N/MAC:L/MPR:N/MUI:N/MS:U/MC:H/MI:H/MA:H",
"version": "3.1"
},
"products": [
"CSAFPID-2699078",
"CSAFPID-1839842",
"CSAFPID-2698989",
"CSAFPID-1839864",
"CSAFPID-2698967",
"CSAFPID-1213401",
"CSAFPID-1839938",
"CSAFPID-2699074",
"CSAFPID-2698998",
"CSAFPID-2698997",
"CSAFPID-1144680",
"CSAFPID-1839896",
"CSAFPID-1144604",
"CSAFPID-1839897",
"CSAFPID-1536644",
"CSAFPID-1840030",
"CSAFPID-1536288",
"CSAFPID-1536278",
"CSAFPID-1839872",
"CSAFPID-1233360",
"CSAFPID-39413",
"CSAFPID-1210435",
"CSAFPID-1210304",
"CSAFPID-39412",
"CSAFPID-1840014",
"CSAFPID-1839982",
"CSAFPID-2699125",
"CSAFPID-1839988",
"CSAFPID-1247956",
"CSAFPID-2698948",
"CSAFPID-2699057",
"CSAFPID-1144910",
"CSAFPID-1840006",
"CSAFPID-1144911",
"CSAFPID-1214253",
"CSAFPID-317201",
"CSAFPID-1232894",
"CSAFPID-307786",
"CSAFPID-1201529",
"CSAFPID-2698985",
"CSAFPID-1840028",
"CSAFPID-2699064",
"CSAFPID-2699044"
]
}
],
"title": "CVE-2025-27363"
}
]
}
OPENSUSE-SU-2021:0447-1
Vulnerability from csaf_opensuse - Published: 2021-03-19 11:12 - Updated: 2021-03-19 11:12Summary
Security update for velocity
Severity
Important
Notes
Title of the patch: Security update for velocity
Description of the patch: This update for velocity fixes the following issues:
- CVE-2020-13936: Fixed an arbitrary code execution when attacker is able to modify templates (bsc#1183360).
This update was imported from the SUSE:SLE-15-SP2:Update update project.
Patchnames: openSUSE-2021-447
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
8.8 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.2:velocity-1.7-lp152.5.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:velocity-demo-1.7-lp152.5.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:velocity-javadoc-1.7-lp152.5.3.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:velocity-manual-1.7-lp152.5.3.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
References
8 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for velocity",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for velocity fixes the following issues:\n\n- CVE-2020-13936: Fixed an arbitrary code execution when attacker is able to modify templates (bsc#1183360).\n\nThis update was imported from the SUSE:SLE-15-SP2:Update update project.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-2021-447",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2021_0447-1.json"
},
{
"category": "self",
"summary": "URL for openSUSE-SU-2021:0447-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/X7H6XAK2KQMJUKMVVIRDA5YQLUSPV5YO/"
},
{
"category": "self",
"summary": "E-Mail link for openSUSE-SU-2021:0447-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/X7H6XAK2KQMJUKMVVIRDA5YQLUSPV5YO/"
},
{
"category": "self",
"summary": "SUSE Bug 1183360",
"url": "https://bugzilla.suse.com/1183360"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-13936 page",
"url": "https://www.suse.com/security/cve/CVE-2020-13936/"
}
],
"title": "Security update for velocity",
"tracking": {
"current_release_date": "2021-03-19T11:12:16Z",
"generator": {
"date": "2021-03-19T11:12:16Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2021:0447-1",
"initial_release_date": "2021-03-19T11:12:16Z",
"revision_history": [
{
"date": "2021-03-19T11:12:16Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "velocity-1.7-lp152.5.3.1.noarch",
"product": {
"name": "velocity-1.7-lp152.5.3.1.noarch",
"product_id": "velocity-1.7-lp152.5.3.1.noarch"
}
},
{
"category": "product_version",
"name": "velocity-demo-1.7-lp152.5.3.1.noarch",
"product": {
"name": "velocity-demo-1.7-lp152.5.3.1.noarch",
"product_id": "velocity-demo-1.7-lp152.5.3.1.noarch"
}
},
{
"category": "product_version",
"name": "velocity-javadoc-1.7-lp152.5.3.1.noarch",
"product": {
"name": "velocity-javadoc-1.7-lp152.5.3.1.noarch",
"product_id": "velocity-javadoc-1.7-lp152.5.3.1.noarch"
}
},
{
"category": "product_version",
"name": "velocity-manual-1.7-lp152.5.3.1.noarch",
"product": {
"name": "velocity-manual-1.7-lp152.5.3.1.noarch",
"product_id": "velocity-manual-1.7-lp152.5.3.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Leap 15.2",
"product": {
"name": "openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.2"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "velocity-1.7-lp152.5.3.1.noarch as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:velocity-1.7-lp152.5.3.1.noarch"
},
"product_reference": "velocity-1.7-lp152.5.3.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "velocity-demo-1.7-lp152.5.3.1.noarch as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:velocity-demo-1.7-lp152.5.3.1.noarch"
},
"product_reference": "velocity-demo-1.7-lp152.5.3.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "velocity-javadoc-1.7-lp152.5.3.1.noarch as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:velocity-javadoc-1.7-lp152.5.3.1.noarch"
},
"product_reference": "velocity-javadoc-1.7-lp152.5.3.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "velocity-manual-1.7-lp152.5.3.1.noarch as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:velocity-manual-1.7-lp152.5.3.1.noarch"
},
"product_reference": "velocity-manual-1.7-lp152.5.3.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.2"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-13936",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-13936"
}
],
"notes": [
{
"category": "general",
"text": "An attacker that is able to modify Velocity templates may execute arbitrary Java code or run arbitrary system commands with the same privileges as the account running the Servlet container. This applies to applications that allow untrusted users to upload/modify velocity templates running Apache Velocity Engine versions up to 2.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:velocity-1.7-lp152.5.3.1.noarch",
"openSUSE Leap 15.2:velocity-demo-1.7-lp152.5.3.1.noarch",
"openSUSE Leap 15.2:velocity-javadoc-1.7-lp152.5.3.1.noarch",
"openSUSE Leap 15.2:velocity-manual-1.7-lp152.5.3.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-13936",
"url": "https://www.suse.com/security/cve/CVE-2020-13936"
},
{
"category": "external",
"summary": "SUSE Bug 1183360 for CVE-2020-13936",
"url": "https://bugzilla.suse.com/1183360"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:velocity-1.7-lp152.5.3.1.noarch",
"openSUSE Leap 15.2:velocity-demo-1.7-lp152.5.3.1.noarch",
"openSUSE Leap 15.2:velocity-javadoc-1.7-lp152.5.3.1.noarch",
"openSUSE Leap 15.2:velocity-manual-1.7-lp152.5.3.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:velocity-1.7-lp152.5.3.1.noarch",
"openSUSE Leap 15.2:velocity-demo-1.7-lp152.5.3.1.noarch",
"openSUSE Leap 15.2:velocity-javadoc-1.7-lp152.5.3.1.noarch",
"openSUSE Leap 15.2:velocity-manual-1.7-lp152.5.3.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-03-19T11:12:16Z",
"details": "important"
}
],
"title": "CVE-2020-13936"
}
]
}
OPENSUSE-SU-2024:11495-1
Vulnerability from csaf_opensuse - Published: 2024-06-15 00:00 - Updated: 2024-06-15 00:00Summary
velocity-1.7-9.3 on GA media
Severity
Moderate
Notes
Title of the patch: velocity-1.7-9.3 on GA media
Description of the patch: These are all security issues fixed in the velocity-1.7-9.3 package on the GA media of openSUSE Tumbleweed.
Patchnames: openSUSE-Tumbleweed-2024-11495
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
8.8 (High)
Affected products
Recommended
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:velocity-1.7-9.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velocity-1.7-9.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velocity-1.7-9.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velocity-1.7-9.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velocity-demo-1.7-9.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velocity-demo-1.7-9.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velocity-demo-1.7-9.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velocity-demo-1.7-9.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velocity-javadoc-1.7-9.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velocity-javadoc-1.7-9.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velocity-javadoc-1.7-9.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velocity-javadoc-1.7-9.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velocity-manual-1.7-9.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velocity-manual-1.7-9.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velocity-manual-1.7-9.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velocity-manual-1.7-9.3.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
5 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "velocity-1.7-9.3 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the velocity-1.7-9.3 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2024-11495",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_11495-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-13936 page",
"url": "https://www.suse.com/security/cve/CVE-2020-13936/"
}
],
"title": "velocity-1.7-9.3 on GA media",
"tracking": {
"current_release_date": "2024-06-15T00:00:00Z",
"generator": {
"date": "2024-06-15T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2024:11495-1",
"initial_release_date": "2024-06-15T00:00:00Z",
"revision_history": [
{
"date": "2024-06-15T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "velocity-1.7-9.3.aarch64",
"product": {
"name": "velocity-1.7-9.3.aarch64",
"product_id": "velocity-1.7-9.3.aarch64"
}
},
{
"category": "product_version",
"name": "velocity-demo-1.7-9.3.aarch64",
"product": {
"name": "velocity-demo-1.7-9.3.aarch64",
"product_id": "velocity-demo-1.7-9.3.aarch64"
}
},
{
"category": "product_version",
"name": "velocity-javadoc-1.7-9.3.aarch64",
"product": {
"name": "velocity-javadoc-1.7-9.3.aarch64",
"product_id": "velocity-javadoc-1.7-9.3.aarch64"
}
},
{
"category": "product_version",
"name": "velocity-manual-1.7-9.3.aarch64",
"product": {
"name": "velocity-manual-1.7-9.3.aarch64",
"product_id": "velocity-manual-1.7-9.3.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "velocity-1.7-9.3.ppc64le",
"product": {
"name": "velocity-1.7-9.3.ppc64le",
"product_id": "velocity-1.7-9.3.ppc64le"
}
},
{
"category": "product_version",
"name": "velocity-demo-1.7-9.3.ppc64le",
"product": {
"name": "velocity-demo-1.7-9.3.ppc64le",
"product_id": "velocity-demo-1.7-9.3.ppc64le"
}
},
{
"category": "product_version",
"name": "velocity-javadoc-1.7-9.3.ppc64le",
"product": {
"name": "velocity-javadoc-1.7-9.3.ppc64le",
"product_id": "velocity-javadoc-1.7-9.3.ppc64le"
}
},
{
"category": "product_version",
"name": "velocity-manual-1.7-9.3.ppc64le",
"product": {
"name": "velocity-manual-1.7-9.3.ppc64le",
"product_id": "velocity-manual-1.7-9.3.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "velocity-1.7-9.3.s390x",
"product": {
"name": "velocity-1.7-9.3.s390x",
"product_id": "velocity-1.7-9.3.s390x"
}
},
{
"category": "product_version",
"name": "velocity-demo-1.7-9.3.s390x",
"product": {
"name": "velocity-demo-1.7-9.3.s390x",
"product_id": "velocity-demo-1.7-9.3.s390x"
}
},
{
"category": "product_version",
"name": "velocity-javadoc-1.7-9.3.s390x",
"product": {
"name": "velocity-javadoc-1.7-9.3.s390x",
"product_id": "velocity-javadoc-1.7-9.3.s390x"
}
},
{
"category": "product_version",
"name": "velocity-manual-1.7-9.3.s390x",
"product": {
"name": "velocity-manual-1.7-9.3.s390x",
"product_id": "velocity-manual-1.7-9.3.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "velocity-1.7-9.3.x86_64",
"product": {
"name": "velocity-1.7-9.3.x86_64",
"product_id": "velocity-1.7-9.3.x86_64"
}
},
{
"category": "product_version",
"name": "velocity-demo-1.7-9.3.x86_64",
"product": {
"name": "velocity-demo-1.7-9.3.x86_64",
"product_id": "velocity-demo-1.7-9.3.x86_64"
}
},
{
"category": "product_version",
"name": "velocity-javadoc-1.7-9.3.x86_64",
"product": {
"name": "velocity-javadoc-1.7-9.3.x86_64",
"product_id": "velocity-javadoc-1.7-9.3.x86_64"
}
},
{
"category": "product_version",
"name": "velocity-manual-1.7-9.3.x86_64",
"product": {
"name": "velocity-manual-1.7-9.3.x86_64",
"product_id": "velocity-manual-1.7-9.3.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "velocity-1.7-9.3.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:velocity-1.7-9.3.aarch64"
},
"product_reference": "velocity-1.7-9.3.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "velocity-1.7-9.3.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:velocity-1.7-9.3.ppc64le"
},
"product_reference": "velocity-1.7-9.3.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "velocity-1.7-9.3.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:velocity-1.7-9.3.s390x"
},
"product_reference": "velocity-1.7-9.3.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "velocity-1.7-9.3.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:velocity-1.7-9.3.x86_64"
},
"product_reference": "velocity-1.7-9.3.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "velocity-demo-1.7-9.3.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:velocity-demo-1.7-9.3.aarch64"
},
"product_reference": "velocity-demo-1.7-9.3.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "velocity-demo-1.7-9.3.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:velocity-demo-1.7-9.3.ppc64le"
},
"product_reference": "velocity-demo-1.7-9.3.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "velocity-demo-1.7-9.3.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:velocity-demo-1.7-9.3.s390x"
},
"product_reference": "velocity-demo-1.7-9.3.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "velocity-demo-1.7-9.3.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:velocity-demo-1.7-9.3.x86_64"
},
"product_reference": "velocity-demo-1.7-9.3.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "velocity-javadoc-1.7-9.3.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:velocity-javadoc-1.7-9.3.aarch64"
},
"product_reference": "velocity-javadoc-1.7-9.3.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "velocity-javadoc-1.7-9.3.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:velocity-javadoc-1.7-9.3.ppc64le"
},
"product_reference": "velocity-javadoc-1.7-9.3.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "velocity-javadoc-1.7-9.3.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:velocity-javadoc-1.7-9.3.s390x"
},
"product_reference": "velocity-javadoc-1.7-9.3.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "velocity-javadoc-1.7-9.3.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:velocity-javadoc-1.7-9.3.x86_64"
},
"product_reference": "velocity-javadoc-1.7-9.3.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "velocity-manual-1.7-9.3.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:velocity-manual-1.7-9.3.aarch64"
},
"product_reference": "velocity-manual-1.7-9.3.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "velocity-manual-1.7-9.3.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:velocity-manual-1.7-9.3.ppc64le"
},
"product_reference": "velocity-manual-1.7-9.3.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "velocity-manual-1.7-9.3.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:velocity-manual-1.7-9.3.s390x"
},
"product_reference": "velocity-manual-1.7-9.3.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "velocity-manual-1.7-9.3.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:velocity-manual-1.7-9.3.x86_64"
},
"product_reference": "velocity-manual-1.7-9.3.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-13936",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-13936"
}
],
"notes": [
{
"category": "general",
"text": "An attacker that is able to modify Velocity templates may execute arbitrary Java code or run arbitrary system commands with the same privileges as the account running the Servlet container. This applies to applications that allow untrusted users to upload/modify velocity templates running Apache Velocity Engine versions up to 2.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:velocity-1.7-9.3.aarch64",
"openSUSE Tumbleweed:velocity-1.7-9.3.ppc64le",
"openSUSE Tumbleweed:velocity-1.7-9.3.s390x",
"openSUSE Tumbleweed:velocity-1.7-9.3.x86_64",
"openSUSE Tumbleweed:velocity-demo-1.7-9.3.aarch64",
"openSUSE Tumbleweed:velocity-demo-1.7-9.3.ppc64le",
"openSUSE Tumbleweed:velocity-demo-1.7-9.3.s390x",
"openSUSE Tumbleweed:velocity-demo-1.7-9.3.x86_64",
"openSUSE Tumbleweed:velocity-javadoc-1.7-9.3.aarch64",
"openSUSE Tumbleweed:velocity-javadoc-1.7-9.3.ppc64le",
"openSUSE Tumbleweed:velocity-javadoc-1.7-9.3.s390x",
"openSUSE Tumbleweed:velocity-javadoc-1.7-9.3.x86_64",
"openSUSE Tumbleweed:velocity-manual-1.7-9.3.aarch64",
"openSUSE Tumbleweed:velocity-manual-1.7-9.3.ppc64le",
"openSUSE Tumbleweed:velocity-manual-1.7-9.3.s390x",
"openSUSE Tumbleweed:velocity-manual-1.7-9.3.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-13936",
"url": "https://www.suse.com/security/cve/CVE-2020-13936"
},
{
"category": "external",
"summary": "SUSE Bug 1183360 for CVE-2020-13936",
"url": "https://bugzilla.suse.com/1183360"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:velocity-1.7-9.3.aarch64",
"openSUSE Tumbleweed:velocity-1.7-9.3.ppc64le",
"openSUSE Tumbleweed:velocity-1.7-9.3.s390x",
"openSUSE Tumbleweed:velocity-1.7-9.3.x86_64",
"openSUSE Tumbleweed:velocity-demo-1.7-9.3.aarch64",
"openSUSE Tumbleweed:velocity-demo-1.7-9.3.ppc64le",
"openSUSE Tumbleweed:velocity-demo-1.7-9.3.s390x",
"openSUSE Tumbleweed:velocity-demo-1.7-9.3.x86_64",
"openSUSE Tumbleweed:velocity-javadoc-1.7-9.3.aarch64",
"openSUSE Tumbleweed:velocity-javadoc-1.7-9.3.ppc64le",
"openSUSE Tumbleweed:velocity-javadoc-1.7-9.3.s390x",
"openSUSE Tumbleweed:velocity-javadoc-1.7-9.3.x86_64",
"openSUSE Tumbleweed:velocity-manual-1.7-9.3.aarch64",
"openSUSE Tumbleweed:velocity-manual-1.7-9.3.ppc64le",
"openSUSE Tumbleweed:velocity-manual-1.7-9.3.s390x",
"openSUSE Tumbleweed:velocity-manual-1.7-9.3.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:velocity-1.7-9.3.aarch64",
"openSUSE Tumbleweed:velocity-1.7-9.3.ppc64le",
"openSUSE Tumbleweed:velocity-1.7-9.3.s390x",
"openSUSE Tumbleweed:velocity-1.7-9.3.x86_64",
"openSUSE Tumbleweed:velocity-demo-1.7-9.3.aarch64",
"openSUSE Tumbleweed:velocity-demo-1.7-9.3.ppc64le",
"openSUSE Tumbleweed:velocity-demo-1.7-9.3.s390x",
"openSUSE Tumbleweed:velocity-demo-1.7-9.3.x86_64",
"openSUSE Tumbleweed:velocity-javadoc-1.7-9.3.aarch64",
"openSUSE Tumbleweed:velocity-javadoc-1.7-9.3.ppc64le",
"openSUSE Tumbleweed:velocity-javadoc-1.7-9.3.s390x",
"openSUSE Tumbleweed:velocity-javadoc-1.7-9.3.x86_64",
"openSUSE Tumbleweed:velocity-manual-1.7-9.3.aarch64",
"openSUSE Tumbleweed:velocity-manual-1.7-9.3.ppc64le",
"openSUSE Tumbleweed:velocity-manual-1.7-9.3.s390x",
"openSUSE Tumbleweed:velocity-manual-1.7-9.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2020-13936"
}
]
}
OPENSUSE-SU-2024:11678-1
Vulnerability from csaf_opensuse - Published: 2024-06-15 00:00 - Updated: 2024-06-15 00:00Summary
velocity-custom-parser-example-2.2-1.1 on GA media
Severity
Moderate
Notes
Title of the patch: velocity-custom-parser-example-2.2-1.1 on GA media
Description of the patch: These are all security issues fixed in the velocity-custom-parser-example-2.2-1.1 package on the GA media of openSUSE Tumbleweed.
Patchnames: openSUSE-Tumbleweed-2024-11678
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
8.8 (High)
Affected products
Recommended
24 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:velocity-custom-parser-example-2.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velocity-custom-parser-example-2.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velocity-custom-parser-example-2.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velocity-custom-parser-example-2.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velocity-engine-core-2.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velocity-engine-core-2.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velocity-engine-core-2.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velocity-engine-core-2.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velocity-engine-examples-2.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velocity-engine-examples-2.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velocity-engine-examples-2.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velocity-engine-examples-2.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velocity-engine-javadoc-2.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velocity-engine-javadoc-2.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velocity-engine-javadoc-2.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velocity-engine-javadoc-2.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velocity-engine-parent-2.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velocity-engine-parent-2.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velocity-engine-parent-2.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velocity-engine-parent-2.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velocity-engine-scripting-2.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velocity-engine-scripting-2.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velocity-engine-scripting-2.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:velocity-engine-scripting-2.2-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
5 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "velocity-custom-parser-example-2.2-1.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the velocity-custom-parser-example-2.2-1.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2024-11678",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_11678-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-13936 page",
"url": "https://www.suse.com/security/cve/CVE-2020-13936/"
}
],
"title": "velocity-custom-parser-example-2.2-1.1 on GA media",
"tracking": {
"current_release_date": "2024-06-15T00:00:00Z",
"generator": {
"date": "2024-06-15T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2024:11678-1",
"initial_release_date": "2024-06-15T00:00:00Z",
"revision_history": [
{
"date": "2024-06-15T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "velocity-custom-parser-example-2.2-1.1.aarch64",
"product": {
"name": "velocity-custom-parser-example-2.2-1.1.aarch64",
"product_id": "velocity-custom-parser-example-2.2-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "velocity-engine-core-2.2-1.1.aarch64",
"product": {
"name": "velocity-engine-core-2.2-1.1.aarch64",
"product_id": "velocity-engine-core-2.2-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "velocity-engine-examples-2.2-1.1.aarch64",
"product": {
"name": "velocity-engine-examples-2.2-1.1.aarch64",
"product_id": "velocity-engine-examples-2.2-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "velocity-engine-javadoc-2.2-1.1.aarch64",
"product": {
"name": "velocity-engine-javadoc-2.2-1.1.aarch64",
"product_id": "velocity-engine-javadoc-2.2-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "velocity-engine-parent-2.2-1.1.aarch64",
"product": {
"name": "velocity-engine-parent-2.2-1.1.aarch64",
"product_id": "velocity-engine-parent-2.2-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "velocity-engine-scripting-2.2-1.1.aarch64",
"product": {
"name": "velocity-engine-scripting-2.2-1.1.aarch64",
"product_id": "velocity-engine-scripting-2.2-1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "velocity-custom-parser-example-2.2-1.1.ppc64le",
"product": {
"name": "velocity-custom-parser-example-2.2-1.1.ppc64le",
"product_id": "velocity-custom-parser-example-2.2-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "velocity-engine-core-2.2-1.1.ppc64le",
"product": {
"name": "velocity-engine-core-2.2-1.1.ppc64le",
"product_id": "velocity-engine-core-2.2-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "velocity-engine-examples-2.2-1.1.ppc64le",
"product": {
"name": "velocity-engine-examples-2.2-1.1.ppc64le",
"product_id": "velocity-engine-examples-2.2-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "velocity-engine-javadoc-2.2-1.1.ppc64le",
"product": {
"name": "velocity-engine-javadoc-2.2-1.1.ppc64le",
"product_id": "velocity-engine-javadoc-2.2-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "velocity-engine-parent-2.2-1.1.ppc64le",
"product": {
"name": "velocity-engine-parent-2.2-1.1.ppc64le",
"product_id": "velocity-engine-parent-2.2-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "velocity-engine-scripting-2.2-1.1.ppc64le",
"product": {
"name": "velocity-engine-scripting-2.2-1.1.ppc64le",
"product_id": "velocity-engine-scripting-2.2-1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "velocity-custom-parser-example-2.2-1.1.s390x",
"product": {
"name": "velocity-custom-parser-example-2.2-1.1.s390x",
"product_id": "velocity-custom-parser-example-2.2-1.1.s390x"
}
},
{
"category": "product_version",
"name": "velocity-engine-core-2.2-1.1.s390x",
"product": {
"name": "velocity-engine-core-2.2-1.1.s390x",
"product_id": "velocity-engine-core-2.2-1.1.s390x"
}
},
{
"category": "product_version",
"name": "velocity-engine-examples-2.2-1.1.s390x",
"product": {
"name": "velocity-engine-examples-2.2-1.1.s390x",
"product_id": "velocity-engine-examples-2.2-1.1.s390x"
}
},
{
"category": "product_version",
"name": "velocity-engine-javadoc-2.2-1.1.s390x",
"product": {
"name": "velocity-engine-javadoc-2.2-1.1.s390x",
"product_id": "velocity-engine-javadoc-2.2-1.1.s390x"
}
},
{
"category": "product_version",
"name": "velocity-engine-parent-2.2-1.1.s390x",
"product": {
"name": "velocity-engine-parent-2.2-1.1.s390x",
"product_id": "velocity-engine-parent-2.2-1.1.s390x"
}
},
{
"category": "product_version",
"name": "velocity-engine-scripting-2.2-1.1.s390x",
"product": {
"name": "velocity-engine-scripting-2.2-1.1.s390x",
"product_id": "velocity-engine-scripting-2.2-1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "velocity-custom-parser-example-2.2-1.1.x86_64",
"product": {
"name": "velocity-custom-parser-example-2.2-1.1.x86_64",
"product_id": "velocity-custom-parser-example-2.2-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "velocity-engine-core-2.2-1.1.x86_64",
"product": {
"name": "velocity-engine-core-2.2-1.1.x86_64",
"product_id": "velocity-engine-core-2.2-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "velocity-engine-examples-2.2-1.1.x86_64",
"product": {
"name": "velocity-engine-examples-2.2-1.1.x86_64",
"product_id": "velocity-engine-examples-2.2-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "velocity-engine-javadoc-2.2-1.1.x86_64",
"product": {
"name": "velocity-engine-javadoc-2.2-1.1.x86_64",
"product_id": "velocity-engine-javadoc-2.2-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "velocity-engine-parent-2.2-1.1.x86_64",
"product": {
"name": "velocity-engine-parent-2.2-1.1.x86_64",
"product_id": "velocity-engine-parent-2.2-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "velocity-engine-scripting-2.2-1.1.x86_64",
"product": {
"name": "velocity-engine-scripting-2.2-1.1.x86_64",
"product_id": "velocity-engine-scripting-2.2-1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "velocity-custom-parser-example-2.2-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:velocity-custom-parser-example-2.2-1.1.aarch64"
},
"product_reference": "velocity-custom-parser-example-2.2-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "velocity-custom-parser-example-2.2-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:velocity-custom-parser-example-2.2-1.1.ppc64le"
},
"product_reference": "velocity-custom-parser-example-2.2-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "velocity-custom-parser-example-2.2-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:velocity-custom-parser-example-2.2-1.1.s390x"
},
"product_reference": "velocity-custom-parser-example-2.2-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "velocity-custom-parser-example-2.2-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:velocity-custom-parser-example-2.2-1.1.x86_64"
},
"product_reference": "velocity-custom-parser-example-2.2-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "velocity-engine-core-2.2-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:velocity-engine-core-2.2-1.1.aarch64"
},
"product_reference": "velocity-engine-core-2.2-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "velocity-engine-core-2.2-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:velocity-engine-core-2.2-1.1.ppc64le"
},
"product_reference": "velocity-engine-core-2.2-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "velocity-engine-core-2.2-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:velocity-engine-core-2.2-1.1.s390x"
},
"product_reference": "velocity-engine-core-2.2-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "velocity-engine-core-2.2-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:velocity-engine-core-2.2-1.1.x86_64"
},
"product_reference": "velocity-engine-core-2.2-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "velocity-engine-examples-2.2-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:velocity-engine-examples-2.2-1.1.aarch64"
},
"product_reference": "velocity-engine-examples-2.2-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "velocity-engine-examples-2.2-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:velocity-engine-examples-2.2-1.1.ppc64le"
},
"product_reference": "velocity-engine-examples-2.2-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "velocity-engine-examples-2.2-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:velocity-engine-examples-2.2-1.1.s390x"
},
"product_reference": "velocity-engine-examples-2.2-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "velocity-engine-examples-2.2-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:velocity-engine-examples-2.2-1.1.x86_64"
},
"product_reference": "velocity-engine-examples-2.2-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "velocity-engine-javadoc-2.2-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:velocity-engine-javadoc-2.2-1.1.aarch64"
},
"product_reference": "velocity-engine-javadoc-2.2-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "velocity-engine-javadoc-2.2-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:velocity-engine-javadoc-2.2-1.1.ppc64le"
},
"product_reference": "velocity-engine-javadoc-2.2-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "velocity-engine-javadoc-2.2-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:velocity-engine-javadoc-2.2-1.1.s390x"
},
"product_reference": "velocity-engine-javadoc-2.2-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "velocity-engine-javadoc-2.2-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:velocity-engine-javadoc-2.2-1.1.x86_64"
},
"product_reference": "velocity-engine-javadoc-2.2-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "velocity-engine-parent-2.2-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:velocity-engine-parent-2.2-1.1.aarch64"
},
"product_reference": "velocity-engine-parent-2.2-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "velocity-engine-parent-2.2-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:velocity-engine-parent-2.2-1.1.ppc64le"
},
"product_reference": "velocity-engine-parent-2.2-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "velocity-engine-parent-2.2-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:velocity-engine-parent-2.2-1.1.s390x"
},
"product_reference": "velocity-engine-parent-2.2-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "velocity-engine-parent-2.2-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:velocity-engine-parent-2.2-1.1.x86_64"
},
"product_reference": "velocity-engine-parent-2.2-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "velocity-engine-scripting-2.2-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:velocity-engine-scripting-2.2-1.1.aarch64"
},
"product_reference": "velocity-engine-scripting-2.2-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "velocity-engine-scripting-2.2-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:velocity-engine-scripting-2.2-1.1.ppc64le"
},
"product_reference": "velocity-engine-scripting-2.2-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "velocity-engine-scripting-2.2-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:velocity-engine-scripting-2.2-1.1.s390x"
},
"product_reference": "velocity-engine-scripting-2.2-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "velocity-engine-scripting-2.2-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:velocity-engine-scripting-2.2-1.1.x86_64"
},
"product_reference": "velocity-engine-scripting-2.2-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-13936",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-13936"
}
],
"notes": [
{
"category": "general",
"text": "An attacker that is able to modify Velocity templates may execute arbitrary Java code or run arbitrary system commands with the same privileges as the account running the Servlet container. This applies to applications that allow untrusted users to upload/modify velocity templates running Apache Velocity Engine versions up to 2.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:velocity-custom-parser-example-2.2-1.1.aarch64",
"openSUSE Tumbleweed:velocity-custom-parser-example-2.2-1.1.ppc64le",
"openSUSE Tumbleweed:velocity-custom-parser-example-2.2-1.1.s390x",
"openSUSE Tumbleweed:velocity-custom-parser-example-2.2-1.1.x86_64",
"openSUSE Tumbleweed:velocity-engine-core-2.2-1.1.aarch64",
"openSUSE Tumbleweed:velocity-engine-core-2.2-1.1.ppc64le",
"openSUSE Tumbleweed:velocity-engine-core-2.2-1.1.s390x",
"openSUSE Tumbleweed:velocity-engine-core-2.2-1.1.x86_64",
"openSUSE Tumbleweed:velocity-engine-examples-2.2-1.1.aarch64",
"openSUSE Tumbleweed:velocity-engine-examples-2.2-1.1.ppc64le",
"openSUSE Tumbleweed:velocity-engine-examples-2.2-1.1.s390x",
"openSUSE Tumbleweed:velocity-engine-examples-2.2-1.1.x86_64",
"openSUSE Tumbleweed:velocity-engine-javadoc-2.2-1.1.aarch64",
"openSUSE Tumbleweed:velocity-engine-javadoc-2.2-1.1.ppc64le",
"openSUSE Tumbleweed:velocity-engine-javadoc-2.2-1.1.s390x",
"openSUSE Tumbleweed:velocity-engine-javadoc-2.2-1.1.x86_64",
"openSUSE Tumbleweed:velocity-engine-parent-2.2-1.1.aarch64",
"openSUSE Tumbleweed:velocity-engine-parent-2.2-1.1.ppc64le",
"openSUSE Tumbleweed:velocity-engine-parent-2.2-1.1.s390x",
"openSUSE Tumbleweed:velocity-engine-parent-2.2-1.1.x86_64",
"openSUSE Tumbleweed:velocity-engine-scripting-2.2-1.1.aarch64",
"openSUSE Tumbleweed:velocity-engine-scripting-2.2-1.1.ppc64le",
"openSUSE Tumbleweed:velocity-engine-scripting-2.2-1.1.s390x",
"openSUSE Tumbleweed:velocity-engine-scripting-2.2-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-13936",
"url": "https://www.suse.com/security/cve/CVE-2020-13936"
},
{
"category": "external",
"summary": "SUSE Bug 1183360 for CVE-2020-13936",
"url": "https://bugzilla.suse.com/1183360"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:velocity-custom-parser-example-2.2-1.1.aarch64",
"openSUSE Tumbleweed:velocity-custom-parser-example-2.2-1.1.ppc64le",
"openSUSE Tumbleweed:velocity-custom-parser-example-2.2-1.1.s390x",
"openSUSE Tumbleweed:velocity-custom-parser-example-2.2-1.1.x86_64",
"openSUSE Tumbleweed:velocity-engine-core-2.2-1.1.aarch64",
"openSUSE Tumbleweed:velocity-engine-core-2.2-1.1.ppc64le",
"openSUSE Tumbleweed:velocity-engine-core-2.2-1.1.s390x",
"openSUSE Tumbleweed:velocity-engine-core-2.2-1.1.x86_64",
"openSUSE Tumbleweed:velocity-engine-examples-2.2-1.1.aarch64",
"openSUSE Tumbleweed:velocity-engine-examples-2.2-1.1.ppc64le",
"openSUSE Tumbleweed:velocity-engine-examples-2.2-1.1.s390x",
"openSUSE Tumbleweed:velocity-engine-examples-2.2-1.1.x86_64",
"openSUSE Tumbleweed:velocity-engine-javadoc-2.2-1.1.aarch64",
"openSUSE Tumbleweed:velocity-engine-javadoc-2.2-1.1.ppc64le",
"openSUSE Tumbleweed:velocity-engine-javadoc-2.2-1.1.s390x",
"openSUSE Tumbleweed:velocity-engine-javadoc-2.2-1.1.x86_64",
"openSUSE Tumbleweed:velocity-engine-parent-2.2-1.1.aarch64",
"openSUSE Tumbleweed:velocity-engine-parent-2.2-1.1.ppc64le",
"openSUSE Tumbleweed:velocity-engine-parent-2.2-1.1.s390x",
"openSUSE Tumbleweed:velocity-engine-parent-2.2-1.1.x86_64",
"openSUSE Tumbleweed:velocity-engine-scripting-2.2-1.1.aarch64",
"openSUSE Tumbleweed:velocity-engine-scripting-2.2-1.1.ppc64le",
"openSUSE Tumbleweed:velocity-engine-scripting-2.2-1.1.s390x",
"openSUSE Tumbleweed:velocity-engine-scripting-2.2-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:velocity-custom-parser-example-2.2-1.1.aarch64",
"openSUSE Tumbleweed:velocity-custom-parser-example-2.2-1.1.ppc64le",
"openSUSE Tumbleweed:velocity-custom-parser-example-2.2-1.1.s390x",
"openSUSE Tumbleweed:velocity-custom-parser-example-2.2-1.1.x86_64",
"openSUSE Tumbleweed:velocity-engine-core-2.2-1.1.aarch64",
"openSUSE Tumbleweed:velocity-engine-core-2.2-1.1.ppc64le",
"openSUSE Tumbleweed:velocity-engine-core-2.2-1.1.s390x",
"openSUSE Tumbleweed:velocity-engine-core-2.2-1.1.x86_64",
"openSUSE Tumbleweed:velocity-engine-examples-2.2-1.1.aarch64",
"openSUSE Tumbleweed:velocity-engine-examples-2.2-1.1.ppc64le",
"openSUSE Tumbleweed:velocity-engine-examples-2.2-1.1.s390x",
"openSUSE Tumbleweed:velocity-engine-examples-2.2-1.1.x86_64",
"openSUSE Tumbleweed:velocity-engine-javadoc-2.2-1.1.aarch64",
"openSUSE Tumbleweed:velocity-engine-javadoc-2.2-1.1.ppc64le",
"openSUSE Tumbleweed:velocity-engine-javadoc-2.2-1.1.s390x",
"openSUSE Tumbleweed:velocity-engine-javadoc-2.2-1.1.x86_64",
"openSUSE Tumbleweed:velocity-engine-parent-2.2-1.1.aarch64",
"openSUSE Tumbleweed:velocity-engine-parent-2.2-1.1.ppc64le",
"openSUSE Tumbleweed:velocity-engine-parent-2.2-1.1.s390x",
"openSUSE Tumbleweed:velocity-engine-parent-2.2-1.1.x86_64",
"openSUSE Tumbleweed:velocity-engine-scripting-2.2-1.1.aarch64",
"openSUSE Tumbleweed:velocity-engine-scripting-2.2-1.1.ppc64le",
"openSUSE Tumbleweed:velocity-engine-scripting-2.2-1.1.s390x",
"openSUSE Tumbleweed:velocity-engine-scripting-2.2-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2020-13936"
}
]
}
OPENSUSE-SU-2024:12308-1
Vulnerability from csaf_opensuse - Published: 2024-06-15 00:00 - Updated: 2024-06-15 00:00Summary
snakeyaml-1.31-1.1 on GA media
Severity
Moderate
Notes
Title of the patch: snakeyaml-1.31-1.1 on GA media
Description of the patch: These are all security issues fixed in the snakeyaml-1.31-1.1 package on the GA media of openSUSE Tumbleweed.
Patchnames: openSUSE-Tumbleweed-2024-12308
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
8.8 (High)
Affected products
Recommended
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:snakeyaml-1.31-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:snakeyaml-1.31-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:snakeyaml-1.31-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:snakeyaml-1.31-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6.2 (Medium)
Affected products
Recommended
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:snakeyaml-1.31-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:snakeyaml-1.31-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:snakeyaml-1.31-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:snakeyaml-1.31-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:snakeyaml-1.31-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:snakeyaml-1.31-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:snakeyaml-1.31-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:snakeyaml-1.31-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:snakeyaml-1.31-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:snakeyaml-1.31-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:snakeyaml-1.31-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:snakeyaml-1.31-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:snakeyaml-1.31-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:snakeyaml-1.31-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:snakeyaml-1.31-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:snakeyaml-1.31-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:snakeyaml-1.31-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:snakeyaml-1.31-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:snakeyaml-1.31-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:snakeyaml-1.31-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
20 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "snakeyaml-1.31-1.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the snakeyaml-1.31-1.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2024-12308",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_12308-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-13936 page",
"url": "https://www.suse.com/security/cve/CVE-2020-13936/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-25857 page",
"url": "https://www.suse.com/security/cve/CVE-2022-25857/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-38749 page",
"url": "https://www.suse.com/security/cve/CVE-2022-38749/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-38750 page",
"url": "https://www.suse.com/security/cve/CVE-2022-38750/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-38751 page",
"url": "https://www.suse.com/security/cve/CVE-2022-38751/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-38752 page",
"url": "https://www.suse.com/security/cve/CVE-2022-38752/"
}
],
"title": "snakeyaml-1.31-1.1 on GA media",
"tracking": {
"current_release_date": "2024-06-15T00:00:00Z",
"generator": {
"date": "2024-06-15T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2024:12308-1",
"initial_release_date": "2024-06-15T00:00:00Z",
"revision_history": [
{
"date": "2024-06-15T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "snakeyaml-1.31-1.1.aarch64",
"product": {
"name": "snakeyaml-1.31-1.1.aarch64",
"product_id": "snakeyaml-1.31-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "snakeyaml-javadoc-1.31-1.1.aarch64",
"product": {
"name": "snakeyaml-javadoc-1.31-1.1.aarch64",
"product_id": "snakeyaml-javadoc-1.31-1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "snakeyaml-1.31-1.1.ppc64le",
"product": {
"name": "snakeyaml-1.31-1.1.ppc64le",
"product_id": "snakeyaml-1.31-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "snakeyaml-javadoc-1.31-1.1.ppc64le",
"product": {
"name": "snakeyaml-javadoc-1.31-1.1.ppc64le",
"product_id": "snakeyaml-javadoc-1.31-1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "snakeyaml-1.31-1.1.s390x",
"product": {
"name": "snakeyaml-1.31-1.1.s390x",
"product_id": "snakeyaml-1.31-1.1.s390x"
}
},
{
"category": "product_version",
"name": "snakeyaml-javadoc-1.31-1.1.s390x",
"product": {
"name": "snakeyaml-javadoc-1.31-1.1.s390x",
"product_id": "snakeyaml-javadoc-1.31-1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "snakeyaml-1.31-1.1.x86_64",
"product": {
"name": "snakeyaml-1.31-1.1.x86_64",
"product_id": "snakeyaml-1.31-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "snakeyaml-javadoc-1.31-1.1.x86_64",
"product": {
"name": "snakeyaml-javadoc-1.31-1.1.x86_64",
"product_id": "snakeyaml-javadoc-1.31-1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "snakeyaml-1.31-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:snakeyaml-1.31-1.1.aarch64"
},
"product_reference": "snakeyaml-1.31-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "snakeyaml-1.31-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:snakeyaml-1.31-1.1.ppc64le"
},
"product_reference": "snakeyaml-1.31-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "snakeyaml-1.31-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:snakeyaml-1.31-1.1.s390x"
},
"product_reference": "snakeyaml-1.31-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "snakeyaml-1.31-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:snakeyaml-1.31-1.1.x86_64"
},
"product_reference": "snakeyaml-1.31-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "snakeyaml-javadoc-1.31-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.aarch64"
},
"product_reference": "snakeyaml-javadoc-1.31-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "snakeyaml-javadoc-1.31-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.ppc64le"
},
"product_reference": "snakeyaml-javadoc-1.31-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "snakeyaml-javadoc-1.31-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.s390x"
},
"product_reference": "snakeyaml-javadoc-1.31-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "snakeyaml-javadoc-1.31-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.x86_64"
},
"product_reference": "snakeyaml-javadoc-1.31-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-13936",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-13936"
}
],
"notes": [
{
"category": "general",
"text": "An attacker that is able to modify Velocity templates may execute arbitrary Java code or run arbitrary system commands with the same privileges as the account running the Servlet container. This applies to applications that allow untrusted users to upload/modify velocity templates running Apache Velocity Engine versions up to 2.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.aarch64",
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.ppc64le",
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.s390x",
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.x86_64",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.aarch64",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.ppc64le",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.s390x",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-13936",
"url": "https://www.suse.com/security/cve/CVE-2020-13936"
},
{
"category": "external",
"summary": "SUSE Bug 1183360 for CVE-2020-13936",
"url": "https://bugzilla.suse.com/1183360"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.aarch64",
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.ppc64le",
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.s390x",
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.x86_64",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.aarch64",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.ppc64le",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.s390x",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.aarch64",
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.ppc64le",
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.s390x",
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.x86_64",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.aarch64",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.ppc64le",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.s390x",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2020-13936"
},
{
"cve": "CVE-2022-25857",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-25857"
}
],
"notes": [
{
"category": "general",
"text": "The package org.yaml:snakeyaml from 0 and before 1.31 are vulnerable to Denial of Service (DoS) due missing to nested depth limitation for collections.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.aarch64",
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.ppc64le",
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.s390x",
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.x86_64",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.aarch64",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.ppc64le",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.s390x",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-25857",
"url": "https://www.suse.com/security/cve/CVE-2022-25857"
},
{
"category": "external",
"summary": "SUSE Bug 1202932 for CVE-2022-25857",
"url": "https://bugzilla.suse.com/1202932"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.aarch64",
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.ppc64le",
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.s390x",
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.x86_64",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.aarch64",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.ppc64le",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.s390x",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.2,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.aarch64",
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.ppc64le",
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.s390x",
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.x86_64",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.aarch64",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.ppc64le",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.s390x",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2022-25857"
},
{
"cve": "CVE-2022-38749",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-38749"
}
],
"notes": [
{
"category": "general",
"text": "Using snakeYAML to parse untrusted YAML files may be vulnerable to Denial of Service attacks (DOS). If the parser is running on user supplied input, an attacker may supply content that causes the parser to crash by stackoverflow.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.aarch64",
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.ppc64le",
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.s390x",
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.x86_64",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.aarch64",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.ppc64le",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.s390x",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-38749",
"url": "https://www.suse.com/security/cve/CVE-2022-38749"
},
{
"category": "external",
"summary": "SUSE Bug 1203149 for CVE-2022-38749",
"url": "https://bugzilla.suse.com/1203149"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.aarch64",
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.ppc64le",
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.s390x",
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.x86_64",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.aarch64",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.ppc64le",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.s390x",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.aarch64",
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.ppc64le",
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.s390x",
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.x86_64",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.aarch64",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.ppc64le",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.s390x",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2022-38749"
},
{
"cve": "CVE-2022-38750",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-38750"
}
],
"notes": [
{
"category": "general",
"text": "Using snakeYAML to parse untrusted YAML files may be vulnerable to Denial of Service attacks (DOS). If the parser is running on user supplied input, an attacker may supply content that causes the parser to crash by stackoverflow.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.aarch64",
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.ppc64le",
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.s390x",
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.x86_64",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.aarch64",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.ppc64le",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.s390x",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-38750",
"url": "https://www.suse.com/security/cve/CVE-2022-38750"
},
{
"category": "external",
"summary": "SUSE Bug 1203158 for CVE-2022-38750",
"url": "https://bugzilla.suse.com/1203158"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.aarch64",
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.ppc64le",
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.s390x",
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.x86_64",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.aarch64",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.ppc64le",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.s390x",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.aarch64",
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.ppc64le",
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.s390x",
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.x86_64",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.aarch64",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.ppc64le",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.s390x",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2022-38750"
},
{
"cve": "CVE-2022-38751",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-38751"
}
],
"notes": [
{
"category": "general",
"text": "Using snakeYAML to parse untrusted YAML files may be vulnerable to Denial of Service attacks (DOS). If the parser is running on user supplied input, an attacker may supply content that causes the parser to crash by stackoverflow.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.aarch64",
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.ppc64le",
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.s390x",
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.x86_64",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.aarch64",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.ppc64le",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.s390x",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-38751",
"url": "https://www.suse.com/security/cve/CVE-2022-38751"
},
{
"category": "external",
"summary": "SUSE Bug 1203153 for CVE-2022-38751",
"url": "https://bugzilla.suse.com/1203153"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.aarch64",
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.ppc64le",
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.s390x",
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.x86_64",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.aarch64",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.ppc64le",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.s390x",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.aarch64",
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.ppc64le",
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.s390x",
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.x86_64",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.aarch64",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.ppc64le",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.s390x",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2022-38751"
},
{
"cve": "CVE-2022-38752",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-38752"
}
],
"notes": [
{
"category": "general",
"text": "Using snakeYAML to parse untrusted YAML files may be vulnerable to Denial of Service attacks (DOS). If the parser is running on user supplied input, an attacker may supply content that causes the parser to crash by stack-overflow.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.aarch64",
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.ppc64le",
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.s390x",
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.x86_64",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.aarch64",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.ppc64le",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.s390x",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-38752",
"url": "https://www.suse.com/security/cve/CVE-2022-38752"
},
{
"category": "external",
"summary": "SUSE Bug 1203154 for CVE-2022-38752",
"url": "https://bugzilla.suse.com/1203154"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.aarch64",
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.ppc64le",
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.s390x",
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.x86_64",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.aarch64",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.ppc64le",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.s390x",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.aarch64",
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.ppc64le",
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.s390x",
"openSUSE Tumbleweed:snakeyaml-1.31-1.1.x86_64",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.aarch64",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.ppc64le",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.s390x",
"openSUSE Tumbleweed:snakeyaml-javadoc-1.31-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2022-38752"
}
]
}
RHSA-2021:2046
Vulnerability from csaf_redhat - Published: 2021-05-19 15:28 - Updated: 2026-05-14 22:30Summary
Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.3.7 security update on RHEL 6
Severity
Moderate
Notes
Topic: A security update is now available for Red Hat JBoss Enterprise Application Platform 7.3 for Red Hat Enterprise Linux 6.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime.
This release of Red Hat JBoss Enterprise Application Platform 7.3.7 serves as a replacement for Red Hat JBoss Enterprise Application Platform 7.3.6, and includes bug fixes and enhancements. See the Red Hat JBoss Enterprise Application Platform 7.3.7 Release Notes for information about the most significant bug fixes and enhancements included in this release.
Security Fix(es):
* velocity: arbitrary code execution when attacker is able to modify templates (CVE-2020-13936)
* netty: Information disclosure via the local system temporary directory (CVE-2021-21290)
* netty: possible request smuggling in HTTP/2 due missing validation (CVE-2021-21295)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in velocity. An attacker, able to modify Velocity templates, may execute arbitrary Java code or run arbitrary system commands with the same privileges as the account running the Servlet container. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
6.6 (Medium)
Affected products
Fixed
118 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el6eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el6eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-bouncycastle-mail-0:1.68.0-2.redhat_00005.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-bouncycastle-pkix-0:1.68.0-2.redhat_00005.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-bouncycastle-prov-0:1.68.0-2.redhat_00005.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el6eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el6eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-infinispan-cachestore-jdbc-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-infinispan-cachestore-remote-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-infinispan-client-hotrod-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-infinispan-commons-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-infinispan-core-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-commons-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-spi-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-v53-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el6eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-ironjacamar-common-api-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-ironjacamar-common-impl-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-ironjacamar-common-spi-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-ironjacamar-core-api-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-ironjacamar-core-impl-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-ironjacamar-deployers-common-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-ironjacamar-jdbc-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-ironjacamar-validator-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el6eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el6eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-marshalling-river-0:2.0.11-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el6eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-cli-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-core-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-eap6.4-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-eap6.4-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.1-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.2-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.2-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.3-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly10.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly10.1-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly11.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly12.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly13.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly14.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly15.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly16.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly17.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly18.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly8.2-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly9.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el6eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-weld-api-0:3.1.0-6.SP3_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-weld-spi-0:3.1.0-6.SP3_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el6eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el6eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el6eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-netty-all-0:4.1.60-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el6eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-resteasy-atom-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-resteasy-cdi-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-resteasy-client-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-resteasy-client-microprofile-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-resteasy-crypto-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-resteasy-jackson-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-resteasy-jackson2-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-resteasy-jaxb-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-resteasy-jaxrs-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-resteasy-jettison-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-resteasy-jose-jwt-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-resteasy-jsapi-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-resteasy-json-binding-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-resteasy-json-p-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-resteasy-multipart-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-resteasy-rxjava2-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-resteasy-spring-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-resteasy-validator-provider-11-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-resteasy-yaml-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el6eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-velocity-0:2.3.0-1.redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-velocity-0:2.3.0-1.redhat_00001.1.el6eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-velocity-engine-core-0:2.3.0-1.redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el6eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-weld-core-impl-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-weld-core-jsf-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-weld-ejb-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-weld-jta-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-weld-probe-core-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-weld-web-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el6eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el6eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-wildfly-elytron-tool-0:1.10.12-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-wildfly-http-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-wildfly-http-client-common-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-wildfly-http-ejb-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-wildfly-http-naming-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-wildfly-http-transaction-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-wildfly-javadocs-0:7.3.7-1.GA_redhat_00002.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-wildfly-modules-0:7.3.7-1.GA_redhat_00002.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el6eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-yasson-0:1.0.9-1.redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-yasson-0:1.0.9-1.redhat_00001.1.el6eap.src | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
In Netty there is a vulnerability on Unix-like systems involving an insecure temp file. When netty's multipart decoders are used, a local information disclosure can occur via the local system temporary directory if temporary storing uploads on the disk is enabled. On unix-like systems, the temporary directory is shared between all user. As such, writing to this directory using APIs that do not explicitly set the file/directory permissions can lead to information disclosure.
6.2 (Medium)
Affected products
Fixed
118 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el6eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el6eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-bouncycastle-mail-0:1.68.0-2.redhat_00005.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-bouncycastle-pkix-0:1.68.0-2.redhat_00005.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-bouncycastle-prov-0:1.68.0-2.redhat_00005.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el6eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el6eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-infinispan-cachestore-jdbc-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-infinispan-cachestore-remote-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-infinispan-client-hotrod-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-infinispan-commons-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-infinispan-core-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-commons-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-spi-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-v53-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el6eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-ironjacamar-common-api-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-ironjacamar-common-impl-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-ironjacamar-common-spi-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-ironjacamar-core-api-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-ironjacamar-core-impl-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-ironjacamar-deployers-common-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-ironjacamar-jdbc-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-ironjacamar-validator-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el6eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el6eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-marshalling-river-0:2.0.11-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el6eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-cli-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-core-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-eap6.4-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-eap6.4-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.1-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.2-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.2-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.3-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly10.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly10.1-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly11.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly12.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly13.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly14.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly15.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly16.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly17.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly18.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly8.2-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly9.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el6eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-weld-api-0:3.1.0-6.SP3_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-weld-spi-0:3.1.0-6.SP3_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el6eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el6eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el6eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-netty-all-0:4.1.60-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el6eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-resteasy-atom-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-resteasy-cdi-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-resteasy-client-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-resteasy-client-microprofile-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-resteasy-crypto-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-resteasy-jackson-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-resteasy-jackson2-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-resteasy-jaxb-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-resteasy-jaxrs-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-resteasy-jettison-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-resteasy-jose-jwt-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-resteasy-jsapi-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-resteasy-json-binding-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-resteasy-json-p-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-resteasy-multipart-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-resteasy-rxjava2-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-resteasy-spring-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-resteasy-validator-provider-11-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-resteasy-yaml-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el6eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-velocity-0:2.3.0-1.redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-velocity-0:2.3.0-1.redhat_00001.1.el6eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-velocity-engine-core-0:2.3.0-1.redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el6eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-weld-core-impl-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-weld-core-jsf-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-weld-ejb-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-weld-jta-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-weld-probe-core-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-weld-web-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el6eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el6eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-wildfly-elytron-tool-0:1.10.12-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-wildfly-http-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-wildfly-http-client-common-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-wildfly-http-ejb-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-wildfly-http-naming-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-wildfly-http-transaction-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-wildfly-javadocs-0:7.3.7-1.GA_redhat_00002.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-wildfly-modules-0:7.3.7-1.GA_redhat_00002.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el6eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-yasson-0:1.0.9-1.redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-yasson-0:1.0.9-1.redhat_00001.1.el6eap.src | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
In Netty (io.netty:netty-codec-http2) before version 4.1.60.Final there is a vulnerability that enables request smuggling. If a Content-Length header is present in the original HTTP/2 request, the field is not validated by `Http2MultiplexHandler` as it is propagated up. This is fine as long as the request is not proxied through as HTTP/1.1. If the request comes in as an HTTP/2 stream, gets converted into the HTTP/1.1 domain objects (`HttpRequest`, `HttpContent`, etc.) via `Http2StreamFrameToHttpObjectCodec `and then sent up to the child channel's pipeline and proxied through a remote peer as HTTP/1.1 this may result in request smuggling.
5.9 (Medium)
Affected products
Fixed
118 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el6eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el6eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-bouncycastle-mail-0:1.68.0-2.redhat_00005.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-bouncycastle-pkix-0:1.68.0-2.redhat_00005.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-bouncycastle-prov-0:1.68.0-2.redhat_00005.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el6eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el6eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-infinispan-cachestore-jdbc-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-infinispan-cachestore-remote-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-infinispan-client-hotrod-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-infinispan-commons-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-infinispan-core-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-commons-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-spi-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-v53-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el6eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-ironjacamar-common-api-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-ironjacamar-common-impl-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-ironjacamar-common-spi-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-ironjacamar-core-api-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-ironjacamar-core-impl-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-ironjacamar-deployers-common-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-ironjacamar-jdbc-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-ironjacamar-validator-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el6eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el6eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-marshalling-river-0:2.0.11-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el6eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-cli-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-core-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-eap6.4-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-eap6.4-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.1-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.2-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.2-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.3-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly10.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly10.1-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly11.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly12.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly13.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly14.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly15.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly16.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly17.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly18.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly8.2-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly9.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el6eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-weld-api-0:3.1.0-6.SP3_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-weld-spi-0:3.1.0-6.SP3_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el6eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el6eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el6eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-netty-all-0:4.1.60-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el6eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-resteasy-atom-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-resteasy-cdi-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-resteasy-client-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-resteasy-client-microprofile-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-resteasy-crypto-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-resteasy-jackson-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-resteasy-jackson2-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-resteasy-jaxb-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-resteasy-jaxrs-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-resteasy-jettison-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-resteasy-jose-jwt-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-resteasy-jsapi-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-resteasy-json-binding-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-resteasy-json-p-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-resteasy-multipart-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-resteasy-rxjava2-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-resteasy-spring-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-resteasy-validator-provider-11-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-resteasy-yaml-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el6eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-velocity-0:2.3.0-1.redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-velocity-0:2.3.0-1.redhat_00001.1.el6eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-velocity-engine-core-0:2.3.0-1.redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el6eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-weld-core-impl-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-weld-core-jsf-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-weld-ejb-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-weld-jta-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-weld-probe-core-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-weld-web-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el6eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el6eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-wildfly-elytron-tool-0:1.10.12-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-wildfly-http-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-wildfly-http-client-common-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-wildfly-http-ejb-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-wildfly-http-naming-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-wildfly-http-transaction-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-wildfly-javadocs-0:7.3.7-1.GA_redhat_00002.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-wildfly-modules-0:7.3.7-1.GA_redhat_00002.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el6eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-yasson-0:1.0.9-1.redhat_00001.1.el6eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-7.3:eap7-yasson-0:1.0.9-1.redhat_00001.1.el6eap.src | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
References
43 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "A security update is now available for Red Hat JBoss Enterprise Application Platform 7.3 for Red Hat Enterprise Linux 6.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime.\n\nThis release of Red Hat JBoss Enterprise Application Platform 7.3.7 serves as a replacement for Red Hat JBoss Enterprise Application Platform 7.3.6, and includes bug fixes and enhancements. See the Red Hat JBoss Enterprise Application Platform 7.3.7 Release Notes for information about the most significant bug fixes and enhancements included in this release.\n\nSecurity Fix(es):\n\n* velocity: arbitrary code execution when attacker is able to modify templates (CVE-2020-13936)\n\n* netty: Information disclosure via the local system temporary directory (CVE-2021-21290)\n\n* netty: possible request smuggling in HTTP/2 due missing validation (CVE-2021-21295)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2021:2046",
"url": "https://access.redhat.com/errata/RHSA-2021:2046"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/7.3/",
"url": "https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/7.3/"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/7.3/html-single/installation_guide/",
"url": "https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/7.3/html-single/installation_guide/"
},
{
"category": "external",
"summary": "1927028",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1927028"
},
{
"category": "external",
"summary": "1937364",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1937364"
},
{
"category": "external",
"summary": "1937440",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1937440"
},
{
"category": "external",
"summary": "JBEAP-20478",
"url": "https://issues.redhat.com/browse/JBEAP-20478"
},
{
"category": "external",
"summary": "JBEAP-20868",
"url": "https://issues.redhat.com/browse/JBEAP-20868"
},
{
"category": "external",
"summary": "JBEAP-20927",
"url": "https://issues.redhat.com/browse/JBEAP-20927"
},
{
"category": "external",
"summary": "JBEAP-20935",
"url": "https://issues.redhat.com/browse/JBEAP-20935"
},
{
"category": "external",
"summary": "JBEAP-20940",
"url": "https://issues.redhat.com/browse/JBEAP-20940"
},
{
"category": "external",
"summary": "JBEAP-21093",
"url": "https://issues.redhat.com/browse/JBEAP-21093"
},
{
"category": "external",
"summary": "JBEAP-21094",
"url": "https://issues.redhat.com/browse/JBEAP-21094"
},
{
"category": "external",
"summary": "JBEAP-21095",
"url": "https://issues.redhat.com/browse/JBEAP-21095"
},
{
"category": "external",
"summary": "JBEAP-21096",
"url": "https://issues.redhat.com/browse/JBEAP-21096"
},
{
"category": "external",
"summary": "JBEAP-21121",
"url": "https://issues.redhat.com/browse/JBEAP-21121"
},
{
"category": "external",
"summary": "JBEAP-21185",
"url": "https://issues.redhat.com/browse/JBEAP-21185"
},
{
"category": "external",
"summary": "JBEAP-21186",
"url": "https://issues.redhat.com/browse/JBEAP-21186"
},
{
"category": "external",
"summary": "JBEAP-21193",
"url": "https://issues.redhat.com/browse/JBEAP-21193"
},
{
"category": "external",
"summary": "JBEAP-21196",
"url": "https://issues.redhat.com/browse/JBEAP-21196"
},
{
"category": "external",
"summary": "JBEAP-21203",
"url": "https://issues.redhat.com/browse/JBEAP-21203"
},
{
"category": "external",
"summary": "JBEAP-21262",
"url": "https://issues.redhat.com/browse/JBEAP-21262"
},
{
"category": "external",
"summary": "JBEAP-21279",
"url": "https://issues.redhat.com/browse/JBEAP-21279"
},
{
"category": "external",
"summary": "JBEAP-21312",
"url": "https://issues.redhat.com/browse/JBEAP-21312"
},
{
"category": "external",
"summary": "JBEAP-21322",
"url": "https://issues.redhat.com/browse/JBEAP-21322"
},
{
"category": "external",
"summary": "JBEAP-21351",
"url": "https://issues.redhat.com/browse/JBEAP-21351"
},
{
"category": "external",
"summary": "JBEAP-21390",
"url": "https://issues.redhat.com/browse/JBEAP-21390"
},
{
"category": "external",
"summary": "JBEAP-21479",
"url": "https://issues.redhat.com/browse/JBEAP-21479"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_2046.json"
}
],
"title": "Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.3.7 security update on RHEL 6",
"tracking": {
"current_release_date": "2026-05-14T22:30:46+00:00",
"generator": {
"date": "2026-05-14T22:30:46+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.8.0"
}
},
"id": "RHSA-2021:2046",
"initial_release_date": "2021-05-19T15:28:42+00:00",
"revision_history": [
{
"date": "2021-05-19T15:28:42+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2021-05-19T15:28:42+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-05-14T22:30:46+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product": {
"name": "Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el6"
}
}
}
],
"category": "product_family",
"name": "Red Hat JBoss Enterprise Application Platform"
},
{
"branches": [
{
"category": "product_version",
"name": "eap7-wildfly-http-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.src",
"product": {
"name": "eap7-wildfly-http-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.src",
"product_id": "eap7-wildfly-http-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-wildfly-http-client@1.0.26-1.Final_redhat_00001.1.el6eap?arch=src"
}
}
},
{
"category": "product_version",
"name": "eap7-velocity-0:2.3.0-1.redhat_00001.1.el6eap.src",
"product": {
"name": "eap7-velocity-0:2.3.0-1.redhat_00001.1.el6eap.src",
"product_id": "eap7-velocity-0:2.3.0-1.redhat_00001.1.el6eap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-velocity@2.3.0-1.redhat_00001.1.el6eap?arch=src"
}
}
},
{
"category": "product_version",
"name": "eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el6eap.src",
"product": {
"name": "eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el6eap.src",
"product_id": "eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el6eap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-hal-console@3.2.14-1.Final_redhat_00001.1.el6eap?arch=src"
}
}
},
{
"category": "product_version",
"name": "eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el6eap.src",
"product": {
"name": "eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el6eap.src",
"product_id": "eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el6eap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-xalan-j2@2.7.1-36.redhat_00013.1.el6eap?arch=src"
}
}
},
{
"category": "product_version",
"name": "eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el6eap.src",
"product": {
"name": "eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el6eap.src",
"product_id": "eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el6eap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jgroups-kubernetes@1.0.16-1.Final_redhat_00001.1.el6eap?arch=src"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el6eap.src",
"product": {
"name": "eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el6eap.src",
"product_id": "eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el6eap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-weld-3.1-api@3.1.0-6.SP3_redhat_00001.1.el6eap?arch=src"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el6eap.src",
"product": {
"name": "eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el6eap.src",
"product_id": "eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el6eap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-genericjms@2.0.9-1.Final_redhat_00001.1.el6eap?arch=src"
}
}
},
{
"category": "product_version",
"name": "eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el6eap.src",
"product": {
"name": "eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el6eap.src",
"product_id": "eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el6eap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-resteasy@3.11.4-1.Final_redhat_00001.1.el6eap?arch=src"
}
}
},
{
"category": "product_version",
"name": "eap7-yasson-0:1.0.9-1.redhat_00001.1.el6eap.src",
"product": {
"name": "eap7-yasson-0:1.0.9-1.redhat_00001.1.el6eap.src",
"product_id": "eap7-yasson-0:1.0.9-1.redhat_00001.1.el6eap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-yasson@1.0.9-1.redhat_00001.1.el6eap?arch=src"
}
}
},
{
"category": "product_version",
"name": "eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el6eap.src",
"product": {
"name": "eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el6eap.src",
"product_id": "eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el6eap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-ironjacamar@1.4.30-1.Final_redhat_00001.1.el6eap?arch=src"
}
}
},
{
"category": "product_version",
"name": "eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el6eap.src",
"product": {
"name": "eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el6eap.src",
"product_id": "eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el6eap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-artemis-wildfly-integration@1.0.4-1.redhat_00001.1.el6eap?arch=src"
}
}
},
{
"category": "product_version",
"name": "eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el6eap.src",
"product": {
"name": "eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el6eap.src",
"product_id": "eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el6eap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-undertow@2.0.35-1.SP1_redhat_00001.1.el6eap?arch=src"
}
}
},
{
"category": "product_version",
"name": "eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el6eap.src",
"product": {
"name": "eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el6eap.src",
"product_id": "eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el6eap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-weld-core@3.1.6-1.Final_redhat_00001.1.el6eap?arch=src"
}
}
},
{
"category": "product_version",
"name": "eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el6eap.src",
"product": {
"name": "eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el6eap.src",
"product_id": "eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el6eap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-netty@4.1.60-1.Final_redhat_00001.1.el6eap?arch=src"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el6eap.src",
"product": {
"name": "eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el6eap.src",
"product_id": "eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el6eap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-marshalling@2.0.11-1.Final_redhat_00001.1.el6eap?arch=src"
}
}
},
{
"category": "product_version",
"name": "eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el6eap.src",
"product": {
"name": "eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el6eap.src",
"product_id": "eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el6eap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-wildfly-elytron@1.10.12-1.Final_redhat_00001.1.el6eap?arch=src"
}
}
},
{
"category": "product_version",
"name": "eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el6eap.src",
"product": {
"name": "eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el6eap.src",
"product_id": "eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el6eap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-bouncycastle@1.68.0-2.redhat_00005.1.el6eap?arch=src"
}
}
},
{
"category": "product_version",
"name": "eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el6eap.src",
"product": {
"name": "eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el6eap.src",
"product_id": "eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el6eap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-mod_cluster@1.4.3-2.Final_redhat_00002.1.el6eap?arch=src"
}
}
},
{
"category": "product_version",
"name": "eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el6eap.src",
"product": {
"name": "eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el6eap.src",
"product_id": "eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el6eap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-infinispan@9.4.22-3.Final_redhat_00001.1.el6eap?arch=src"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el6eap.src",
"product": {
"name": "eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el6eap.src",
"product_id": "eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el6eap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-server-migration@1.7.2-6.Final_redhat_00007.1.el6eap?arch=src"
}
}
},
{
"category": "product_version",
"name": "eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el6eap.src",
"product": {
"name": "eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el6eap.src",
"product_id": "eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el6eap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-wildfly@7.3.7-1.GA_redhat_00002.1.el6eap?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "eap7-wildfly-http-client-common-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-wildfly-http-client-common-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch",
"product_id": "eap7-wildfly-http-client-common-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-wildfly-http-client-common@1.0.26-1.Final_redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-wildfly-http-ejb-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-wildfly-http-ejb-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch",
"product_id": "eap7-wildfly-http-ejb-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-wildfly-http-ejb-client@1.0.26-1.Final_redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-wildfly-http-naming-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-wildfly-http-naming-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch",
"product_id": "eap7-wildfly-http-naming-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-wildfly-http-naming-client@1.0.26-1.Final_redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-wildfly-http-transaction-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-wildfly-http-transaction-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch",
"product_id": "eap7-wildfly-http-transaction-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-wildfly-http-transaction-client@1.0.26-1.Final_redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-velocity-0:2.3.0-1.redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-velocity-0:2.3.0-1.redhat_00001.1.el6eap.noarch",
"product_id": "eap7-velocity-0:2.3.0-1.redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-velocity@2.3.0-1.redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-velocity-engine-core-0:2.3.0-1.redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-velocity-engine-core-0:2.3.0-1.redhat_00001.1.el6eap.noarch",
"product_id": "eap7-velocity-engine-core-0:2.3.0-1.redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-velocity-engine-core@2.3.0-1.redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el6eap.noarch",
"product_id": "eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-hal-console@3.2.14-1.Final_redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el6eap.noarch",
"product": {
"name": "eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el6eap.noarch",
"product_id": "eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-xalan-j2@2.7.1-36.redhat_00013.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el6eap.noarch",
"product_id": "eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jgroups-kubernetes@1.0.16-1.Final_redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el6eap.noarch",
"product_id": "eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-weld-3.1-api@3.1.0-6.SP3_redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-weld-3.1-api-weld-api-0:3.1.0-6.SP3_redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-jboss-weld-3.1-api-weld-api-0:3.1.0-6.SP3_redhat_00001.1.el6eap.noarch",
"product_id": "eap7-jboss-weld-3.1-api-weld-api-0:3.1.0-6.SP3_redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-weld-3.1-api-weld-api@3.1.0-6.SP3_redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-weld-3.1-api-weld-spi-0:3.1.0-6.SP3_redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-jboss-weld-3.1-api-weld-spi-0:3.1.0-6.SP3_redhat_00001.1.el6eap.noarch",
"product_id": "eap7-jboss-weld-3.1-api-weld-spi-0:3.1.0-6.SP3_redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-weld-3.1-api-weld-spi@3.1.0-6.SP3_redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el6eap.noarch",
"product_id": "eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-genericjms@2.0.9-1.Final_redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"product_id": "eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-resteasy@3.11.4-1.Final_redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-resteasy-atom-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-resteasy-atom-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"product_id": "eap7-resteasy-atom-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-resteasy-atom-provider@3.11.4-1.Final_redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-resteasy-cdi-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-resteasy-cdi-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"product_id": "eap7-resteasy-cdi-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-resteasy-cdi@3.11.4-1.Final_redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-resteasy-client-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-resteasy-client-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"product_id": "eap7-resteasy-client-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-resteasy-client@3.11.4-1.Final_redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-resteasy-client-microprofile-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-resteasy-client-microprofile-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"product_id": "eap7-resteasy-client-microprofile-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-resteasy-client-microprofile@3.11.4-1.Final_redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-resteasy-crypto-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-resteasy-crypto-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"product_id": "eap7-resteasy-crypto-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-resteasy-crypto@3.11.4-1.Final_redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-resteasy-jackson-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-resteasy-jackson-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"product_id": "eap7-resteasy-jackson-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-resteasy-jackson-provider@3.11.4-1.Final_redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-resteasy-jackson2-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-resteasy-jackson2-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"product_id": "eap7-resteasy-jackson2-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-resteasy-jackson2-provider@3.11.4-1.Final_redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-resteasy-jaxb-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-resteasy-jaxb-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"product_id": "eap7-resteasy-jaxb-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-resteasy-jaxb-provider@3.11.4-1.Final_redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-resteasy-jaxrs-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-resteasy-jaxrs-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"product_id": "eap7-resteasy-jaxrs-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-resteasy-jaxrs@3.11.4-1.Final_redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-resteasy-jettison-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-resteasy-jettison-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"product_id": "eap7-resteasy-jettison-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-resteasy-jettison-provider@3.11.4-1.Final_redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-resteasy-jose-jwt-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-resteasy-jose-jwt-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"product_id": "eap7-resteasy-jose-jwt-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-resteasy-jose-jwt@3.11.4-1.Final_redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-resteasy-jsapi-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-resteasy-jsapi-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"product_id": "eap7-resteasy-jsapi-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-resteasy-jsapi@3.11.4-1.Final_redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-resteasy-json-binding-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-resteasy-json-binding-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"product_id": "eap7-resteasy-json-binding-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-resteasy-json-binding-provider@3.11.4-1.Final_redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-resteasy-json-p-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-resteasy-json-p-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"product_id": "eap7-resteasy-json-p-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-resteasy-json-p-provider@3.11.4-1.Final_redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-resteasy-multipart-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-resteasy-multipart-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"product_id": "eap7-resteasy-multipart-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-resteasy-multipart-provider@3.11.4-1.Final_redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-resteasy-rxjava2-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-resteasy-rxjava2-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"product_id": "eap7-resteasy-rxjava2-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-resteasy-rxjava2@3.11.4-1.Final_redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-resteasy-spring-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-resteasy-spring-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"product_id": "eap7-resteasy-spring-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-resteasy-spring@3.11.4-1.Final_redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-resteasy-validator-provider-11-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-resteasy-validator-provider-11-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"product_id": "eap7-resteasy-validator-provider-11-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-resteasy-validator-provider-11@3.11.4-1.Final_redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-resteasy-yaml-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-resteasy-yaml-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"product_id": "eap7-resteasy-yaml-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-resteasy-yaml-provider@3.11.4-1.Final_redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-yasson-0:1.0.9-1.redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-yasson-0:1.0.9-1.redhat_00001.1.el6eap.noarch",
"product_id": "eap7-yasson-0:1.0.9-1.redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-yasson@1.0.9-1.redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"product_id": "eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-ironjacamar@1.4.30-1.Final_redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-ironjacamar-common-api-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-ironjacamar-common-api-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"product_id": "eap7-ironjacamar-common-api-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-ironjacamar-common-api@1.4.30-1.Final_redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-ironjacamar-common-impl-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-ironjacamar-common-impl-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"product_id": "eap7-ironjacamar-common-impl-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-ironjacamar-common-impl@1.4.30-1.Final_redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-ironjacamar-common-spi-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-ironjacamar-common-spi-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"product_id": "eap7-ironjacamar-common-spi-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-ironjacamar-common-spi@1.4.30-1.Final_redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-ironjacamar-core-api-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-ironjacamar-core-api-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"product_id": "eap7-ironjacamar-core-api-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-ironjacamar-core-api@1.4.30-1.Final_redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-ironjacamar-core-impl-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-ironjacamar-core-impl-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"product_id": "eap7-ironjacamar-core-impl-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-ironjacamar-core-impl@1.4.30-1.Final_redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-ironjacamar-deployers-common-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-ironjacamar-deployers-common-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"product_id": "eap7-ironjacamar-deployers-common-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-ironjacamar-deployers-common@1.4.30-1.Final_redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-ironjacamar-jdbc-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-ironjacamar-jdbc-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"product_id": "eap7-ironjacamar-jdbc-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-ironjacamar-jdbc@1.4.30-1.Final_redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-ironjacamar-validator-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-ironjacamar-validator-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"product_id": "eap7-ironjacamar-validator-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-ironjacamar-validator@1.4.30-1.Final_redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el6eap.noarch",
"product_id": "eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-artemis-wildfly-integration@1.0.4-1.redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el6eap.noarch",
"product_id": "eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-undertow@2.0.35-1.SP1_redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"product_id": "eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-weld-core@3.1.6-1.Final_redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-weld-core-impl-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-weld-core-impl-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"product_id": "eap7-weld-core-impl-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-weld-core-impl@3.1.6-1.Final_redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-weld-core-jsf-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-weld-core-jsf-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"product_id": "eap7-weld-core-jsf-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-weld-core-jsf@3.1.6-1.Final_redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-weld-ejb-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-weld-ejb-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"product_id": "eap7-weld-ejb-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-weld-ejb@3.1.6-1.Final_redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-weld-jta-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-weld-jta-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"product_id": "eap7-weld-jta-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-weld-jta@3.1.6-1.Final_redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-weld-probe-core-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-weld-probe-core-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"product_id": "eap7-weld-probe-core-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-weld-probe-core@3.1.6-1.Final_redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-weld-web-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-weld-web-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"product_id": "eap7-weld-web-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-weld-web@3.1.6-1.Final_redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el6eap.noarch",
"product_id": "eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-netty@4.1.60-1.Final_redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-netty-all-0:4.1.60-1.Final_redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-netty-all-0:4.1.60-1.Final_redhat_00001.1.el6eap.noarch",
"product_id": "eap7-netty-all-0:4.1.60-1.Final_redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-netty-all@4.1.60-1.Final_redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el6eap.noarch",
"product_id": "eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-marshalling@2.0.11-1.Final_redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-marshalling-river-0:2.0.11-1.Final_redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-jboss-marshalling-river-0:2.0.11-1.Final_redhat_00001.1.el6eap.noarch",
"product_id": "eap7-jboss-marshalling-river-0:2.0.11-1.Final_redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-marshalling-river@2.0.11-1.Final_redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el6eap.noarch",
"product_id": "eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-wildfly-elytron@1.10.12-1.Final_redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-wildfly-elytron-tool-0:1.10.12-1.Final_redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-wildfly-elytron-tool-0:1.10.12-1.Final_redhat_00001.1.el6eap.noarch",
"product_id": "eap7-wildfly-elytron-tool-0:1.10.12-1.Final_redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-wildfly-elytron-tool@1.10.12-1.Final_redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el6eap.noarch",
"product": {
"name": "eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el6eap.noarch",
"product_id": "eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-bouncycastle@1.68.0-2.redhat_00005.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-bouncycastle-mail-0:1.68.0-2.redhat_00005.1.el6eap.noarch",
"product": {
"name": "eap7-bouncycastle-mail-0:1.68.0-2.redhat_00005.1.el6eap.noarch",
"product_id": "eap7-bouncycastle-mail-0:1.68.0-2.redhat_00005.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-bouncycastle-mail@1.68.0-2.redhat_00005.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-bouncycastle-pkix-0:1.68.0-2.redhat_00005.1.el6eap.noarch",
"product": {
"name": "eap7-bouncycastle-pkix-0:1.68.0-2.redhat_00005.1.el6eap.noarch",
"product_id": "eap7-bouncycastle-pkix-0:1.68.0-2.redhat_00005.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-bouncycastle-pkix@1.68.0-2.redhat_00005.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-bouncycastle-prov-0:1.68.0-2.redhat_00005.1.el6eap.noarch",
"product": {
"name": "eap7-bouncycastle-prov-0:1.68.0-2.redhat_00005.1.el6eap.noarch",
"product_id": "eap7-bouncycastle-prov-0:1.68.0-2.redhat_00005.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-bouncycastle-prov@1.68.0-2.redhat_00005.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el6eap.noarch",
"product": {
"name": "eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el6eap.noarch",
"product_id": "eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-mod_cluster@1.4.3-2.Final_redhat_00002.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"product_id": "eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-infinispan@9.4.22-3.Final_redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-infinispan-cachestore-jdbc-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-infinispan-cachestore-jdbc-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"product_id": "eap7-infinispan-cachestore-jdbc-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-infinispan-cachestore-jdbc@9.4.22-3.Final_redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-infinispan-cachestore-remote-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-infinispan-cachestore-remote-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"product_id": "eap7-infinispan-cachestore-remote-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-infinispan-cachestore-remote@9.4.22-3.Final_redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-infinispan-client-hotrod-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-infinispan-client-hotrod-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"product_id": "eap7-infinispan-client-hotrod-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-infinispan-client-hotrod@9.4.22-3.Final_redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-infinispan-commons-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-infinispan-commons-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"product_id": "eap7-infinispan-commons-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-infinispan-commons@9.4.22-3.Final_redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-infinispan-core-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-infinispan-core-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"product_id": "eap7-infinispan-core-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-infinispan-core@9.4.22-3.Final_redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-infinispan-hibernate-cache-commons-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-infinispan-hibernate-cache-commons-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"product_id": "eap7-infinispan-hibernate-cache-commons-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-infinispan-hibernate-cache-commons@9.4.22-3.Final_redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-infinispan-hibernate-cache-spi-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-infinispan-hibernate-cache-spi-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"product_id": "eap7-infinispan-hibernate-cache-spi-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-infinispan-hibernate-cache-spi@9.4.22-3.Final_redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-infinispan-hibernate-cache-v53-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"product": {
"name": "eap7-infinispan-hibernate-cache-v53-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"product_id": "eap7-infinispan-hibernate-cache-v53-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-infinispan-hibernate-cache-v53@9.4.22-3.Final_redhat_00001.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product": {
"name": "eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product_id": "eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-server-migration@1.7.2-6.Final_redhat_00007.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-server-migration-cli-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product": {
"name": "eap7-jboss-server-migration-cli-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product_id": "eap7-jboss-server-migration-cli-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-server-migration-cli@1.7.2-6.Final_redhat_00007.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-server-migration-core-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product": {
"name": "eap7-jboss-server-migration-core-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product_id": "eap7-jboss-server-migration-core-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-server-migration-core@1.7.2-6.Final_redhat_00007.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-server-migration-eap6.4-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product": {
"name": "eap7-jboss-server-migration-eap6.4-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product_id": "eap7-jboss-server-migration-eap6.4-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-server-migration-eap6.4@1.7.2-6.Final_redhat_00007.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-server-migration-eap6.4-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product": {
"name": "eap7-jboss-server-migration-eap6.4-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product_id": "eap7-jboss-server-migration-eap6.4-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-server-migration-eap6.4-to-eap7.3@1.7.2-6.Final_redhat_00007.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-server-migration-eap7.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product": {
"name": "eap7-jboss-server-migration-eap7.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product_id": "eap7-jboss-server-migration-eap7.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-server-migration-eap7.0@1.7.2-6.Final_redhat_00007.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-server-migration-eap7.1-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product": {
"name": "eap7-jboss-server-migration-eap7.1-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product_id": "eap7-jboss-server-migration-eap7.1-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-server-migration-eap7.1@1.7.2-6.Final_redhat_00007.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-server-migration-eap7.2-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product": {
"name": "eap7-jboss-server-migration-eap7.2-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product_id": "eap7-jboss-server-migration-eap7.2-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-server-migration-eap7.2@1.7.2-6.Final_redhat_00007.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-server-migration-eap7.2-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product": {
"name": "eap7-jboss-server-migration-eap7.2-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product_id": "eap7-jboss-server-migration-eap7.2-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-server-migration-eap7.2-to-eap7.3@1.7.2-6.Final_redhat_00007.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-server-migration-eap7.3-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product": {
"name": "eap7-jboss-server-migration-eap7.3-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product_id": "eap7-jboss-server-migration-eap7.3-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-server-migration-eap7.3-server@1.7.2-6.Final_redhat_00007.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-server-migration-wildfly10.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product": {
"name": "eap7-jboss-server-migration-wildfly10.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product_id": "eap7-jboss-server-migration-wildfly10.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly10.0@1.7.2-6.Final_redhat_00007.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-server-migration-wildfly10.1-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product": {
"name": "eap7-jboss-server-migration-wildfly10.1-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product_id": "eap7-jboss-server-migration-wildfly10.1-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly10.1@1.7.2-6.Final_redhat_00007.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-server-migration-wildfly11.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product": {
"name": "eap7-jboss-server-migration-wildfly11.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product_id": "eap7-jboss-server-migration-wildfly11.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly11.0@1.7.2-6.Final_redhat_00007.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-server-migration-wildfly12.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product": {
"name": "eap7-jboss-server-migration-wildfly12.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product_id": "eap7-jboss-server-migration-wildfly12.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly12.0@1.7.2-6.Final_redhat_00007.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-server-migration-wildfly13.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product": {
"name": "eap7-jboss-server-migration-wildfly13.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product_id": "eap7-jboss-server-migration-wildfly13.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly13.0-server@1.7.2-6.Final_redhat_00007.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-server-migration-wildfly14.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product": {
"name": "eap7-jboss-server-migration-wildfly14.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product_id": "eap7-jboss-server-migration-wildfly14.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly14.0-server@1.7.2-6.Final_redhat_00007.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-server-migration-wildfly15.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product": {
"name": "eap7-jboss-server-migration-wildfly15.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product_id": "eap7-jboss-server-migration-wildfly15.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly15.0-server@1.7.2-6.Final_redhat_00007.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-server-migration-wildfly16.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product": {
"name": "eap7-jboss-server-migration-wildfly16.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product_id": "eap7-jboss-server-migration-wildfly16.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly16.0-server@1.7.2-6.Final_redhat_00007.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-server-migration-wildfly17.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product": {
"name": "eap7-jboss-server-migration-wildfly17.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product_id": "eap7-jboss-server-migration-wildfly17.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly17.0-server@1.7.2-6.Final_redhat_00007.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-server-migration-wildfly18.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product": {
"name": "eap7-jboss-server-migration-wildfly18.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product_id": "eap7-jboss-server-migration-wildfly18.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly18.0-server@1.7.2-6.Final_redhat_00007.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-server-migration-wildfly8.2-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product": {
"name": "eap7-jboss-server-migration-wildfly8.2-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product_id": "eap7-jboss-server-migration-wildfly8.2-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly8.2@1.7.2-6.Final_redhat_00007.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-server-migration-wildfly9.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product": {
"name": "eap7-jboss-server-migration-wildfly9.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product_id": "eap7-jboss-server-migration-wildfly9.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly9.0@1.7.2-6.Final_redhat_00007.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el6eap.noarch",
"product": {
"name": "eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el6eap.noarch",
"product_id": "eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-wildfly@7.3.7-1.GA_redhat_00002.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-wildfly-javadocs-0:7.3.7-1.GA_redhat_00002.1.el6eap.noarch",
"product": {
"name": "eap7-wildfly-javadocs-0:7.3.7-1.GA_redhat_00002.1.el6eap.noarch",
"product_id": "eap7-wildfly-javadocs-0:7.3.7-1.GA_redhat_00002.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-wildfly-javadocs@7.3.7-1.GA_redhat_00002.1.el6eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-wildfly-modules-0:7.3.7-1.GA_redhat_00002.1.el6eap.noarch",
"product": {
"name": "eap7-wildfly-modules-0:7.3.7-1.GA_redhat_00002.1.el6eap.noarch",
"product_id": "eap7-wildfly-modules-0:7.3.7-1.GA_redhat_00002.1.el6eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-wildfly-modules@7.3.7-1.GA_redhat_00002.1.el6eap?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el6eap.src as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el6eap.src"
},
"product_reference": "eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el6eap.src",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el6eap.noarch"
},
"product_reference": "eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el6eap.src as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el6eap.src"
},
"product_reference": "eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el6eap.src",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-bouncycastle-mail-0:1.68.0-2.redhat_00005.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-bouncycastle-mail-0:1.68.0-2.redhat_00005.1.el6eap.noarch"
},
"product_reference": "eap7-bouncycastle-mail-0:1.68.0-2.redhat_00005.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-bouncycastle-pkix-0:1.68.0-2.redhat_00005.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-bouncycastle-pkix-0:1.68.0-2.redhat_00005.1.el6eap.noarch"
},
"product_reference": "eap7-bouncycastle-pkix-0:1.68.0-2.redhat_00005.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-bouncycastle-prov-0:1.68.0-2.redhat_00005.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-bouncycastle-prov-0:1.68.0-2.redhat_00005.1.el6eap.noarch"
},
"product_reference": "eap7-bouncycastle-prov-0:1.68.0-2.redhat_00005.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el6eap.src as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el6eap.src"
},
"product_reference": "eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el6eap.src",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el6eap.src as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el6eap.src"
},
"product_reference": "eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el6eap.src",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-infinispan-cachestore-jdbc-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-infinispan-cachestore-jdbc-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-infinispan-cachestore-jdbc-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-infinispan-cachestore-remote-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-infinispan-cachestore-remote-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-infinispan-cachestore-remote-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-infinispan-client-hotrod-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-infinispan-client-hotrod-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-infinispan-client-hotrod-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-infinispan-commons-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-infinispan-commons-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-infinispan-commons-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-infinispan-core-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-infinispan-core-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-infinispan-core-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-infinispan-hibernate-cache-commons-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-commons-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-infinispan-hibernate-cache-commons-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-infinispan-hibernate-cache-spi-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-spi-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-infinispan-hibernate-cache-spi-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-infinispan-hibernate-cache-v53-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-v53-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-infinispan-hibernate-cache-v53-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el6eap.src as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el6eap.src"
},
"product_reference": "eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el6eap.src",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-ironjacamar-common-api-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-ironjacamar-common-api-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-ironjacamar-common-api-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-ironjacamar-common-impl-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-ironjacamar-common-impl-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-ironjacamar-common-impl-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-ironjacamar-common-spi-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-ironjacamar-common-spi-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-ironjacamar-common-spi-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-ironjacamar-core-api-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-ironjacamar-core-api-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-ironjacamar-core-api-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-ironjacamar-core-impl-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-ironjacamar-core-impl-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-ironjacamar-core-impl-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-ironjacamar-deployers-common-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-ironjacamar-deployers-common-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-ironjacamar-deployers-common-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-ironjacamar-jdbc-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-ironjacamar-jdbc-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-ironjacamar-jdbc-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-ironjacamar-validator-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-ironjacamar-validator-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-ironjacamar-validator-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el6eap.src as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el6eap.src"
},
"product_reference": "eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el6eap.src",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el6eap.src as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el6eap.src"
},
"product_reference": "eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el6eap.src",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-marshalling-river-0:2.0.11-1.Final_redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-jboss-marshalling-river-0:2.0.11-1.Final_redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-jboss-marshalling-river-0:2.0.11-1.Final_redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch"
},
"product_reference": "eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el6eap.src as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el6eap.src"
},
"product_reference": "eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el6eap.src",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-server-migration-cli-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-jboss-server-migration-cli-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch"
},
"product_reference": "eap7-jboss-server-migration-cli-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-server-migration-core-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-jboss-server-migration-core-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch"
},
"product_reference": "eap7-jboss-server-migration-core-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-server-migration-eap6.4-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-jboss-server-migration-eap6.4-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch"
},
"product_reference": "eap7-jboss-server-migration-eap6.4-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-server-migration-eap6.4-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-jboss-server-migration-eap6.4-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch"
},
"product_reference": "eap7-jboss-server-migration-eap6.4-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-server-migration-eap7.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch"
},
"product_reference": "eap7-jboss-server-migration-eap7.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-server-migration-eap7.1-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.1-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch"
},
"product_reference": "eap7-jboss-server-migration-eap7.1-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-server-migration-eap7.2-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.2-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch"
},
"product_reference": "eap7-jboss-server-migration-eap7.2-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-server-migration-eap7.2-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.2-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch"
},
"product_reference": "eap7-jboss-server-migration-eap7.2-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-server-migration-eap7.3-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.3-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch"
},
"product_reference": "eap7-jboss-server-migration-eap7.3-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-server-migration-wildfly10.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly10.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch"
},
"product_reference": "eap7-jboss-server-migration-wildfly10.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-server-migration-wildfly10.1-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly10.1-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch"
},
"product_reference": "eap7-jboss-server-migration-wildfly10.1-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-server-migration-wildfly11.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly11.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch"
},
"product_reference": "eap7-jboss-server-migration-wildfly11.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-server-migration-wildfly12.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly12.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch"
},
"product_reference": "eap7-jboss-server-migration-wildfly12.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-server-migration-wildfly13.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly13.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch"
},
"product_reference": "eap7-jboss-server-migration-wildfly13.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-server-migration-wildfly14.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly14.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch"
},
"product_reference": "eap7-jboss-server-migration-wildfly14.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-server-migration-wildfly15.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly15.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch"
},
"product_reference": "eap7-jboss-server-migration-wildfly15.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-server-migration-wildfly16.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly16.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch"
},
"product_reference": "eap7-jboss-server-migration-wildfly16.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-server-migration-wildfly17.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly17.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch"
},
"product_reference": "eap7-jboss-server-migration-wildfly17.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-server-migration-wildfly18.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly18.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch"
},
"product_reference": "eap7-jboss-server-migration-wildfly18.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-server-migration-wildfly8.2-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly8.2-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch"
},
"product_reference": "eap7-jboss-server-migration-wildfly8.2-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-server-migration-wildfly9.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly9.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch"
},
"product_reference": "eap7-jboss-server-migration-wildfly9.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el6eap.src as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el6eap.src"
},
"product_reference": "eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el6eap.src",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-weld-3.1-api-weld-api-0:3.1.0-6.SP3_redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-weld-api-0:3.1.0-6.SP3_redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-jboss-weld-3.1-api-weld-api-0:3.1.0-6.SP3_redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-weld-3.1-api-weld-spi-0:3.1.0-6.SP3_redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-weld-spi-0:3.1.0-6.SP3_redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-jboss-weld-3.1-api-weld-spi-0:3.1.0-6.SP3_redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el6eap.src as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el6eap.src"
},
"product_reference": "eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el6eap.src",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el6eap.noarch"
},
"product_reference": "eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el6eap.src as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el6eap.src"
},
"product_reference": "eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el6eap.src",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el6eap.src as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el6eap.src"
},
"product_reference": "eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el6eap.src",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-netty-all-0:4.1.60-1.Final_redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-netty-all-0:4.1.60-1.Final_redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-netty-all-0:4.1.60-1.Final_redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el6eap.src as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el6eap.src"
},
"product_reference": "eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el6eap.src",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-resteasy-atom-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-resteasy-atom-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-resteasy-atom-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-resteasy-cdi-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-resteasy-cdi-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-resteasy-cdi-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-resteasy-client-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-resteasy-client-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-resteasy-client-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-resteasy-client-microprofile-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-resteasy-client-microprofile-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-resteasy-client-microprofile-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-resteasy-crypto-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-resteasy-crypto-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-resteasy-crypto-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-resteasy-jackson-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-resteasy-jackson-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-resteasy-jackson-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-resteasy-jackson2-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-resteasy-jackson2-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-resteasy-jackson2-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-resteasy-jaxb-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-resteasy-jaxb-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-resteasy-jaxb-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-resteasy-jaxrs-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-resteasy-jaxrs-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-resteasy-jaxrs-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-resteasy-jettison-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-resteasy-jettison-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-resteasy-jettison-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-resteasy-jose-jwt-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-resteasy-jose-jwt-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-resteasy-jose-jwt-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-resteasy-jsapi-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-resteasy-jsapi-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-resteasy-jsapi-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-resteasy-json-binding-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-resteasy-json-binding-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-resteasy-json-binding-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-resteasy-json-p-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-resteasy-json-p-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-resteasy-json-p-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-resteasy-multipart-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-resteasy-multipart-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-resteasy-multipart-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-resteasy-rxjava2-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-resteasy-rxjava2-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-resteasy-rxjava2-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-resteasy-spring-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-resteasy-spring-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-resteasy-spring-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-resteasy-validator-provider-11-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-resteasy-validator-provider-11-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-resteasy-validator-provider-11-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-resteasy-yaml-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-resteasy-yaml-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-resteasy-yaml-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el6eap.src as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el6eap.src"
},
"product_reference": "eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el6eap.src",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-velocity-0:2.3.0-1.redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-velocity-0:2.3.0-1.redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-velocity-0:2.3.0-1.redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-velocity-0:2.3.0-1.redhat_00001.1.el6eap.src as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-velocity-0:2.3.0-1.redhat_00001.1.el6eap.src"
},
"product_reference": "eap7-velocity-0:2.3.0-1.redhat_00001.1.el6eap.src",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-velocity-engine-core-0:2.3.0-1.redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-velocity-engine-core-0:2.3.0-1.redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-velocity-engine-core-0:2.3.0-1.redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el6eap.src as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el6eap.src"
},
"product_reference": "eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el6eap.src",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-weld-core-impl-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-weld-core-impl-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-weld-core-impl-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-weld-core-jsf-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-weld-core-jsf-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-weld-core-jsf-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-weld-ejb-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-weld-ejb-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-weld-ejb-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-weld-jta-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-weld-jta-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-weld-jta-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-weld-probe-core-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-weld-probe-core-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-weld-probe-core-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-weld-web-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-weld-web-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-weld-web-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el6eap.noarch"
},
"product_reference": "eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el6eap.src as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el6eap.src"
},
"product_reference": "eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el6eap.src",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el6eap.src as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el6eap.src"
},
"product_reference": "eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el6eap.src",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-wildfly-elytron-tool-0:1.10.12-1.Final_redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-wildfly-elytron-tool-0:1.10.12-1.Final_redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-wildfly-elytron-tool-0:1.10.12-1.Final_redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-wildfly-http-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.src as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-wildfly-http-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.src"
},
"product_reference": "eap7-wildfly-http-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.src",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-wildfly-http-client-common-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-wildfly-http-client-common-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-wildfly-http-client-common-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-wildfly-http-ejb-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-wildfly-http-ejb-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-wildfly-http-ejb-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-wildfly-http-naming-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-wildfly-http-naming-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-wildfly-http-naming-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-wildfly-http-transaction-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-wildfly-http-transaction-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-wildfly-http-transaction-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-wildfly-javadocs-0:7.3.7-1.GA_redhat_00002.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-wildfly-javadocs-0:7.3.7-1.GA_redhat_00002.1.el6eap.noarch"
},
"product_reference": "eap7-wildfly-javadocs-0:7.3.7-1.GA_redhat_00002.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-wildfly-modules-0:7.3.7-1.GA_redhat_00002.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-wildfly-modules-0:7.3.7-1.GA_redhat_00002.1.el6eap.noarch"
},
"product_reference": "eap7-wildfly-modules-0:7.3.7-1.GA_redhat_00002.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el6eap.noarch"
},
"product_reference": "eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el6eap.src as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el6eap.src"
},
"product_reference": "eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el6eap.src",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-yasson-0:1.0.9-1.redhat_00001.1.el6eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-yasson-0:1.0.9-1.redhat_00001.1.el6eap.noarch"
},
"product_reference": "eap7-yasson-0:1.0.9-1.redhat_00001.1.el6eap.noarch",
"relates_to_product_reference": "6Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-yasson-0:1.0.9-1.redhat_00001.1.el6eap.src as a component of Red Hat JBoss EAP 7.3 for RHEL 6 Server",
"product_id": "6Server-JBEAP-7.3:eap7-yasson-0:1.0.9-1.redhat_00001.1.el6eap.src"
},
"product_reference": "eap7-yasson-0:1.0.9-1.redhat_00001.1.el6eap.src",
"relates_to_product_reference": "6Server-JBEAP-7.3"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-13936",
"cwe": {
"id": "CWE-94",
"name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
},
"discovery_date": "2021-03-10T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1937440"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in velocity. An attacker, able to modify Velocity templates, may execute arbitrary Java code or run arbitrary system commands with the same privileges as the account running the Servlet container. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "velocity: arbitrary code execution when attacker is able to modify templates",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "OpenShift Container Platform (OCP) openshift-logging/elasticsearch6-rhel8 container does contain a vulnerable version of velocity. The references to the library only occur in the x-pack component which is an enterprise-only feature of Elasticsearch - hence it has been marked as wontfix as this time and may be fixed in a future release. Additionally the hive container only references velocity in the testutils of the code but the code still exists in the container, as such it has been given a Moderate impact.\n\n* Velocity as shipped with Red Hat Enterprise Linux 6 is not affected because it does not contain the vulnerable code.\n\n* Velocity as shipped with Red Hat Enterprise Linux 7 contains a vulnerable version, but it is used as a dependency for IdM/ipa, which does not use the vulnerable functionality. It has been marked as Moderate for this reason.\n\n* Although velocity shipped in Red Hat Enterprise Linux 8\u0027s pki-deps:10.6 for IdM/ipa is a vulnerable version, the vulnerable code is not used by pki. It has been marked as Low for this reason.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-JBEAP-7.3:eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-bouncycastle-mail-0:1.68.0-2.redhat_00005.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-bouncycastle-pkix-0:1.68.0-2.redhat_00005.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-bouncycastle-prov-0:1.68.0-2.redhat_00005.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-infinispan-cachestore-jdbc-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-cachestore-remote-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-client-hotrod-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-commons-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-core-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-commons-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-spi-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-v53-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-ironjacamar-common-api-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-common-impl-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-common-spi-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-core-api-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-core-impl-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-deployers-common-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-jdbc-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-validator-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-jboss-marshalling-river-0:2.0.11-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-cli-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-core-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-eap6.4-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-eap6.4-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.1-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.2-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.2-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.3-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly10.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly10.1-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly11.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly12.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly13.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly14.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly15.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly16.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly17.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly18.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly8.2-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly9.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-weld-api-0:3.1.0-6.SP3_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-weld-spi-0:3.1.0-6.SP3_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-netty-all-0:4.1.60-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-resteasy-atom-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-cdi-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-client-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-client-microprofile-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-crypto-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-jackson-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-jackson2-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-jaxb-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-jaxrs-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-jettison-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-jose-jwt-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-jsapi-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-json-binding-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-json-p-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-multipart-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-rxjava2-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-spring-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-validator-provider-11-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-yaml-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-velocity-0:2.3.0-1.redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-velocity-0:2.3.0-1.redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-velocity-engine-core-0:2.3.0-1.redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-weld-core-impl-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-weld-core-jsf-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-weld-ejb-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-weld-jta-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-weld-probe-core-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-weld-web-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-wildfly-elytron-tool-0:1.10.12-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-http-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-wildfly-http-client-common-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-http-ejb-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-http-naming-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-http-transaction-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-javadocs-0:7.3.7-1.GA_redhat_00002.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-modules-0:7.3.7-1.GA_redhat_00002.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-yasson-0:1.0.9-1.redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-yasson-0:1.0.9-1.redhat_00001.1.el6eap.src"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-13936"
},
{
"category": "external",
"summary": "RHBZ#1937440",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1937440"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-13936",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-13936"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-13936",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-13936"
}
],
"release_date": "2021-03-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-05-19T15:28:42+00:00",
"details": "Before applying this update, ensure all previously released errata relevant to your system have been applied.\n\nFor details about how to apply this update, see:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Server-JBEAP-7.3:eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-bouncycastle-mail-0:1.68.0-2.redhat_00005.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-bouncycastle-pkix-0:1.68.0-2.redhat_00005.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-bouncycastle-prov-0:1.68.0-2.redhat_00005.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-infinispan-cachestore-jdbc-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-cachestore-remote-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-client-hotrod-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-commons-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-core-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-commons-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-spi-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-v53-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-ironjacamar-common-api-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-common-impl-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-common-spi-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-core-api-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-core-impl-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-deployers-common-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-jdbc-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-validator-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-jboss-marshalling-river-0:2.0.11-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-cli-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-core-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-eap6.4-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-eap6.4-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.1-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.2-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.2-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.3-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly10.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly10.1-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly11.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly12.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly13.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly14.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly15.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly16.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly17.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly18.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly8.2-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly9.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-weld-api-0:3.1.0-6.SP3_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-weld-spi-0:3.1.0-6.SP3_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-netty-all-0:4.1.60-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-resteasy-atom-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-cdi-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-client-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-client-microprofile-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-crypto-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-jackson-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-jackson2-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-jaxb-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-jaxrs-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-jettison-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-jose-jwt-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-jsapi-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-json-binding-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-json-p-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-multipart-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-rxjava2-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-spring-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-validator-provider-11-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-yaml-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-velocity-0:2.3.0-1.redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-velocity-0:2.3.0-1.redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-velocity-engine-core-0:2.3.0-1.redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-weld-core-impl-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-weld-core-jsf-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-weld-ejb-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-weld-jta-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-weld-probe-core-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-weld-web-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-wildfly-elytron-tool-0:1.10.12-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-http-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-wildfly-http-client-common-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-http-ejb-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-http-naming-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-http-transaction-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-javadocs-0:7.3.7-1.GA_redhat_00002.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-modules-0:7.3.7-1.GA_redhat_00002.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-yasson-0:1.0.9-1.redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-yasson-0:1.0.9-1.redhat_00001.1.el6eap.src"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:2046"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"6Server-JBEAP-7.3:eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-bouncycastle-mail-0:1.68.0-2.redhat_00005.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-bouncycastle-pkix-0:1.68.0-2.redhat_00005.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-bouncycastle-prov-0:1.68.0-2.redhat_00005.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-infinispan-cachestore-jdbc-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-cachestore-remote-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-client-hotrod-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-commons-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-core-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-commons-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-spi-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-v53-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-ironjacamar-common-api-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-common-impl-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-common-spi-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-core-api-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-core-impl-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-deployers-common-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-jdbc-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-validator-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-jboss-marshalling-river-0:2.0.11-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-cli-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-core-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-eap6.4-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-eap6.4-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.1-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.2-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.2-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.3-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly10.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly10.1-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly11.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly12.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly13.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly14.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly15.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly16.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly17.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly18.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly8.2-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly9.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-weld-api-0:3.1.0-6.SP3_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-weld-spi-0:3.1.0-6.SP3_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-netty-all-0:4.1.60-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-resteasy-atom-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-cdi-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-client-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-client-microprofile-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-crypto-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-jackson-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-jackson2-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-jaxb-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-jaxrs-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-jettison-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-jose-jwt-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-jsapi-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-json-binding-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-json-p-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-multipart-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-rxjava2-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-spring-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-validator-provider-11-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-yaml-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-velocity-0:2.3.0-1.redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-velocity-0:2.3.0-1.redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-velocity-engine-core-0:2.3.0-1.redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-weld-core-impl-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-weld-core-jsf-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-weld-ejb-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-weld-jta-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-weld-probe-core-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-weld-web-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-wildfly-elytron-tool-0:1.10.12-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-http-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-wildfly-http-client-common-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-http-ejb-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-http-naming-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-http-transaction-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-javadocs-0:7.3.7-1.GA_redhat_00002.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-modules-0:7.3.7-1.GA_redhat_00002.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-yasson-0:1.0.9-1.redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-yasson-0:1.0.9-1.redhat_00001.1.el6eap.src"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "velocity: arbitrary code execution when attacker is able to modify templates"
},
{
"cve": "CVE-2021-21290",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2021-02-09T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1927028"
}
],
"notes": [
{
"category": "description",
"text": "In Netty there is a vulnerability on Unix-like systems involving an insecure temp file. When netty\u0027s multipart decoders are used, a local information disclosure can occur via the local system temporary directory if temporary storing uploads on the disk is enabled. On unix-like systems, the temporary directory is shared between all user. As such, writing to this directory using APIs that do not explicitly set the file/directory permissions can lead to information disclosure.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "netty: Information disclosure via the local system temporary directory",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-JBEAP-7.3:eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-bouncycastle-mail-0:1.68.0-2.redhat_00005.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-bouncycastle-pkix-0:1.68.0-2.redhat_00005.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-bouncycastle-prov-0:1.68.0-2.redhat_00005.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-infinispan-cachestore-jdbc-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-cachestore-remote-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-client-hotrod-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-commons-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-core-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-commons-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-spi-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-v53-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-ironjacamar-common-api-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-common-impl-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-common-spi-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-core-api-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-core-impl-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-deployers-common-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-jdbc-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-validator-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-jboss-marshalling-river-0:2.0.11-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-cli-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-core-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-eap6.4-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-eap6.4-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.1-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.2-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.2-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.3-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly10.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly10.1-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly11.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly12.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly13.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly14.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly15.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly16.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly17.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly18.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly8.2-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly9.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-weld-api-0:3.1.0-6.SP3_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-weld-spi-0:3.1.0-6.SP3_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-netty-all-0:4.1.60-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-resteasy-atom-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-cdi-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-client-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-client-microprofile-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-crypto-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-jackson-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-jackson2-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-jaxb-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-jaxrs-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-jettison-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-jose-jwt-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-jsapi-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-json-binding-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-json-p-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-multipart-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-rxjava2-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-spring-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-validator-provider-11-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-yaml-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-velocity-0:2.3.0-1.redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-velocity-0:2.3.0-1.redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-velocity-engine-core-0:2.3.0-1.redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-weld-core-impl-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-weld-core-jsf-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-weld-ejb-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-weld-jta-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-weld-probe-core-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-weld-web-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-wildfly-elytron-tool-0:1.10.12-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-http-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-wildfly-http-client-common-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-http-ejb-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-http-naming-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-http-transaction-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-javadocs-0:7.3.7-1.GA_redhat_00002.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-modules-0:7.3.7-1.GA_redhat_00002.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-yasson-0:1.0.9-1.redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-yasson-0:1.0.9-1.redhat_00001.1.el6eap.src"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-21290"
},
{
"category": "external",
"summary": "RHBZ#1927028",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1927028"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-21290",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-21290"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-21290",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-21290"
}
],
"release_date": "2021-02-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-05-19T15:28:42+00:00",
"details": "Before applying this update, ensure all previously released errata relevant to your system have been applied.\n\nFor details about how to apply this update, see:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Server-JBEAP-7.3:eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-bouncycastle-mail-0:1.68.0-2.redhat_00005.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-bouncycastle-pkix-0:1.68.0-2.redhat_00005.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-bouncycastle-prov-0:1.68.0-2.redhat_00005.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-infinispan-cachestore-jdbc-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-cachestore-remote-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-client-hotrod-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-commons-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-core-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-commons-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-spi-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-v53-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-ironjacamar-common-api-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-common-impl-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-common-spi-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-core-api-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-core-impl-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-deployers-common-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-jdbc-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-validator-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-jboss-marshalling-river-0:2.0.11-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-cli-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-core-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-eap6.4-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-eap6.4-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.1-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.2-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.2-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.3-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly10.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly10.1-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly11.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly12.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly13.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly14.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly15.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly16.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly17.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly18.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly8.2-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly9.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-weld-api-0:3.1.0-6.SP3_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-weld-spi-0:3.1.0-6.SP3_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-netty-all-0:4.1.60-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-resteasy-atom-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-cdi-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-client-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-client-microprofile-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-crypto-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-jackson-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-jackson2-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-jaxb-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-jaxrs-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-jettison-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-jose-jwt-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-jsapi-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-json-binding-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-json-p-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-multipart-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-rxjava2-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-spring-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-validator-provider-11-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-yaml-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-velocity-0:2.3.0-1.redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-velocity-0:2.3.0-1.redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-velocity-engine-core-0:2.3.0-1.redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-weld-core-impl-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-weld-core-jsf-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-weld-ejb-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-weld-jta-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-weld-probe-core-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-weld-web-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-wildfly-elytron-tool-0:1.10.12-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-http-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-wildfly-http-client-common-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-http-ejb-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-http-naming-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-http-transaction-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-javadocs-0:7.3.7-1.GA_redhat_00002.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-modules-0:7.3.7-1.GA_redhat_00002.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-yasson-0:1.0.9-1.redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-yasson-0:1.0.9-1.redhat_00001.1.el6eap.src"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:2046"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 6.2,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"6Server-JBEAP-7.3:eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-bouncycastle-mail-0:1.68.0-2.redhat_00005.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-bouncycastle-pkix-0:1.68.0-2.redhat_00005.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-bouncycastle-prov-0:1.68.0-2.redhat_00005.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-infinispan-cachestore-jdbc-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-cachestore-remote-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-client-hotrod-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-commons-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-core-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-commons-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-spi-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-v53-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-ironjacamar-common-api-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-common-impl-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-common-spi-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-core-api-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-core-impl-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-deployers-common-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-jdbc-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-validator-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-jboss-marshalling-river-0:2.0.11-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-cli-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-core-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-eap6.4-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-eap6.4-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.1-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.2-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.2-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.3-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly10.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly10.1-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly11.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly12.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly13.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly14.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly15.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly16.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly17.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly18.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly8.2-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly9.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-weld-api-0:3.1.0-6.SP3_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-weld-spi-0:3.1.0-6.SP3_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-netty-all-0:4.1.60-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-resteasy-atom-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-cdi-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-client-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-client-microprofile-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-crypto-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-jackson-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-jackson2-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-jaxb-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-jaxrs-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-jettison-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-jose-jwt-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-jsapi-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-json-binding-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-json-p-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-multipart-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-rxjava2-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-spring-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-validator-provider-11-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-yaml-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-velocity-0:2.3.0-1.redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-velocity-0:2.3.0-1.redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-velocity-engine-core-0:2.3.0-1.redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-weld-core-impl-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-weld-core-jsf-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-weld-ejb-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-weld-jta-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-weld-probe-core-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-weld-web-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-wildfly-elytron-tool-0:1.10.12-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-http-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-wildfly-http-client-common-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-http-ejb-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-http-naming-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-http-transaction-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-javadocs-0:7.3.7-1.GA_redhat_00002.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-modules-0:7.3.7-1.GA_redhat_00002.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-yasson-0:1.0.9-1.redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-yasson-0:1.0.9-1.redhat_00001.1.el6eap.src"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "netty: Information disclosure via the local system temporary directory"
},
{
"cve": "CVE-2021-21295",
"cwe": {
"id": "CWE-444",
"name": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)"
},
"discovery_date": "2021-03-09T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1937364"
}
],
"notes": [
{
"category": "description",
"text": "In Netty (io.netty:netty-codec-http2) before version 4.1.60.Final there is a vulnerability that enables request smuggling. If a Content-Length header is present in the original HTTP/2 request, the field is not validated by `Http2MultiplexHandler` as it is propagated up. This is fine as long as the request is not proxied through as HTTP/1.1. If the request comes in as an HTTP/2 stream, gets converted into the HTTP/1.1 domain objects (`HttpRequest`, `HttpContent`, etc.) via `Http2StreamFrameToHttpObjectCodec `and then sent up to the child channel\u0027s pipeline and proxied through a remote peer as HTTP/1.1 this may result in request smuggling.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "netty: possible request smuggling in HTTP/2 due missing validation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat OpenStack Platform\u0027s OpenDaylight will not be updated for this flaw because it was deprecated as of OpenStack Platform 14 and is only receiving security fixes for Important and Critical flaws.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-JBEAP-7.3:eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-bouncycastle-mail-0:1.68.0-2.redhat_00005.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-bouncycastle-pkix-0:1.68.0-2.redhat_00005.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-bouncycastle-prov-0:1.68.0-2.redhat_00005.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-infinispan-cachestore-jdbc-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-cachestore-remote-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-client-hotrod-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-commons-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-core-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-commons-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-spi-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-v53-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-ironjacamar-common-api-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-common-impl-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-common-spi-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-core-api-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-core-impl-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-deployers-common-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-jdbc-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-validator-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-jboss-marshalling-river-0:2.0.11-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-cli-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-core-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-eap6.4-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-eap6.4-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.1-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.2-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.2-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.3-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly10.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly10.1-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly11.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly12.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly13.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly14.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly15.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly16.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly17.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly18.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly8.2-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly9.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-weld-api-0:3.1.0-6.SP3_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-weld-spi-0:3.1.0-6.SP3_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-netty-all-0:4.1.60-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-resteasy-atom-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-cdi-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-client-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-client-microprofile-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-crypto-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-jackson-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-jackson2-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-jaxb-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-jaxrs-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-jettison-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-jose-jwt-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-jsapi-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-json-binding-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-json-p-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-multipart-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-rxjava2-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-spring-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-validator-provider-11-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-yaml-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-velocity-0:2.3.0-1.redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-velocity-0:2.3.0-1.redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-velocity-engine-core-0:2.3.0-1.redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-weld-core-impl-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-weld-core-jsf-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-weld-ejb-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-weld-jta-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-weld-probe-core-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-weld-web-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-wildfly-elytron-tool-0:1.10.12-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-http-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-wildfly-http-client-common-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-http-ejb-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-http-naming-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-http-transaction-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-javadocs-0:7.3.7-1.GA_redhat_00002.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-modules-0:7.3.7-1.GA_redhat_00002.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-yasson-0:1.0.9-1.redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-yasson-0:1.0.9-1.redhat_00001.1.el6eap.src"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-21295"
},
{
"category": "external",
"summary": "RHBZ#1937364",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1937364"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-21295",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-21295"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-21295",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-21295"
},
{
"category": "external",
"summary": "https://github.com/netty/netty/security/advisories/GHSA-wm47-8v5p-wjpj",
"url": "https://github.com/netty/netty/security/advisories/GHSA-wm47-8v5p-wjpj"
}
],
"release_date": "2021-03-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-05-19T15:28:42+00:00",
"details": "Before applying this update, ensure all previously released errata relevant to your system have been applied.\n\nFor details about how to apply this update, see:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Server-JBEAP-7.3:eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-bouncycastle-mail-0:1.68.0-2.redhat_00005.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-bouncycastle-pkix-0:1.68.0-2.redhat_00005.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-bouncycastle-prov-0:1.68.0-2.redhat_00005.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-infinispan-cachestore-jdbc-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-cachestore-remote-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-client-hotrod-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-commons-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-core-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-commons-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-spi-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-v53-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-ironjacamar-common-api-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-common-impl-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-common-spi-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-core-api-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-core-impl-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-deployers-common-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-jdbc-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-validator-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-jboss-marshalling-river-0:2.0.11-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-cli-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-core-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-eap6.4-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-eap6.4-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.1-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.2-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.2-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.3-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly10.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly10.1-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly11.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly12.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly13.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly14.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly15.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly16.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly17.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly18.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly8.2-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly9.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-weld-api-0:3.1.0-6.SP3_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-weld-spi-0:3.1.0-6.SP3_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-netty-all-0:4.1.60-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-resteasy-atom-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-cdi-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-client-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-client-microprofile-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-crypto-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-jackson-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-jackson2-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-jaxb-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-jaxrs-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-jettison-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-jose-jwt-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-jsapi-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-json-binding-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-json-p-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-multipart-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-rxjava2-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-spring-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-validator-provider-11-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-yaml-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-velocity-0:2.3.0-1.redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-velocity-0:2.3.0-1.redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-velocity-engine-core-0:2.3.0-1.redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-weld-core-impl-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-weld-core-jsf-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-weld-ejb-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-weld-jta-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-weld-probe-core-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-weld-web-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-wildfly-elytron-tool-0:1.10.12-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-http-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-wildfly-http-client-common-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-http-ejb-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-http-naming-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-http-transaction-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-javadocs-0:7.3.7-1.GA_redhat_00002.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-modules-0:7.3.7-1.GA_redhat_00002.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-yasson-0:1.0.9-1.redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-yasson-0:1.0.9-1.redhat_00001.1.el6eap.src"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:2046"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"6Server-JBEAP-7.3:eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-bouncycastle-mail-0:1.68.0-2.redhat_00005.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-bouncycastle-pkix-0:1.68.0-2.redhat_00005.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-bouncycastle-prov-0:1.68.0-2.redhat_00005.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-infinispan-cachestore-jdbc-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-cachestore-remote-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-client-hotrod-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-commons-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-core-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-commons-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-spi-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-v53-0:9.4.22-3.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-ironjacamar-common-api-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-common-impl-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-common-spi-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-core-api-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-core-impl-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-deployers-common-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-jdbc-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-ironjacamar-validator-0:1.4.30-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-jboss-marshalling-river-0:2.0.11-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-cli-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-core-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-eap6.4-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-eap6.4-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.1-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.2-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.2-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.3-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly10.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly10.1-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly11.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly12.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly13.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly14.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly15.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly16.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly17.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly18.0-server-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly8.2-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly9.0-0:1.7.2-6.Final_redhat_00007.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-weld-api-0:3.1.0-6.SP3_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-weld-spi-0:3.1.0-6.SP3_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-netty-all-0:4.1.60-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-resteasy-atom-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-cdi-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-client-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-client-microprofile-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-crypto-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-jackson-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-jackson2-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-jaxb-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-jaxrs-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-jettison-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-jose-jwt-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-jsapi-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-json-binding-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-json-p-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-multipart-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-rxjava2-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-spring-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-validator-provider-11-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-resteasy-yaml-provider-0:3.11.4-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-velocity-0:2.3.0-1.redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-velocity-0:2.3.0-1.redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-velocity-engine-core-0:2.3.0-1.redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-weld-core-impl-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-weld-core-jsf-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-weld-ejb-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-weld-jta-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-weld-probe-core-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-weld-web-0:3.1.6-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-wildfly-elytron-tool-0:1.10.12-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-http-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-wildfly-http-client-common-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-http-ejb-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-http-naming-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-http-transaction-client-0:1.0.26-1.Final_redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-javadocs-0:7.3.7-1.GA_redhat_00002.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-wildfly-modules-0:7.3.7-1.GA_redhat_00002.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el6eap.src",
"6Server-JBEAP-7.3:eap7-yasson-0:1.0.9-1.redhat_00001.1.el6eap.noarch",
"6Server-JBEAP-7.3:eap7-yasson-0:1.0.9-1.redhat_00001.1.el6eap.src"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "netty: possible request smuggling in HTTP/2 due missing validation"
}
]
}
RHSA-2021:2047
Vulnerability from csaf_redhat - Published: 2021-05-19 15:26 - Updated: 2026-05-14 22:30Summary
Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.3.7 security update on RHEL 7
Severity
Moderate
Notes
Topic: A security update is now available for Red Hat JBoss Enterprise Application Platform 7.3 for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime.
This release of Red Hat JBoss Enterprise Application Platform 7.3.7 serves as a replacement for Red Hat JBoss Enterprise Application Platform 7.3.6, and includes bug fixes and enhancements. See the Red Hat JBoss Enterprise Application Platform 7.3.7 Release Notes for information about the most significant bug fixes and enhancements included in this release.
Security Fix(es):
* velocity: arbitrary code execution when attacker is able to modify templates (CVE-2020-13936)
* netty: Information disclosure via the local system temporary directory (CVE-2021-21290)
* netty: possible request smuggling in HTTP/2 due missing validation (CVE-2021-21295)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in velocity. An attacker, able to modify Velocity templates, may execute arbitrary Java code or run arbitrary system commands with the same privileges as the account running the Servlet container. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
6.6 (Medium)
Affected products
Fixed
120 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el7eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el7eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-bouncycastle-mail-0:1.68.0-2.redhat_00005.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-bouncycastle-pkix-0:1.68.0-2.redhat_00005.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-bouncycastle-prov-0:1.68.0-2.redhat_00005.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el7eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el7eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-infinispan-cachestore-jdbc-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-infinispan-cachestore-remote-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-infinispan-client-hotrod-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-infinispan-commons-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-infinispan-core-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-commons-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-spi-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-v53-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el7eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-ironjacamar-common-api-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-ironjacamar-common-impl-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-ironjacamar-common-spi-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-ironjacamar-core-api-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-ironjacamar-core-impl-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-ironjacamar-deployers-common-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-ironjacamar-jdbc-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-ironjacamar-validator-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el7eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el7eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-marshalling-river-0:2.0.11-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el7eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-cli-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-core-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-eap6.4-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-eap6.4-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.1-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.2-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.2-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.3-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly10.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly10.1-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly11.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly12.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly13.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly14.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly15.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly16.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly17.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly18.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly8.2-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly9.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el7eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-weld-api-0:3.1.0-6.SP3_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-weld-spi-0:3.1.0-6.SP3_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el7eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el7eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el7eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-netty-all-0:4.1.60-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el7eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-resteasy-atom-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-resteasy-cdi-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-resteasy-client-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-resteasy-client-microprofile-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-resteasy-crypto-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-resteasy-jackson-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-resteasy-jackson2-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-resteasy-jaxb-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-resteasy-jaxrs-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-resteasy-jettison-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-resteasy-jose-jwt-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-resteasy-jsapi-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-resteasy-json-binding-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-resteasy-json-p-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-resteasy-multipart-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-resteasy-rxjava2-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-resteasy-spring-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-resteasy-validator-provider-11-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-resteasy-yaml-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el7eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-velocity-0:2.3.0-1.redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-velocity-0:2.3.0-1.redhat_00001.1.el7eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-velocity-engine-core-0:2.3.0-1.redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el7eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-weld-core-impl-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-weld-core-jsf-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-weld-ejb-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-weld-jta-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-weld-probe-core-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-weld-web-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el7eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el7eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-wildfly-elytron-tool-0:1.10.12-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-wildfly-http-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-wildfly-http-client-common-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-wildfly-http-ejb-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-wildfly-http-naming-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-wildfly-http-transaction-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-wildfly-java-jdk11-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-wildfly-java-jdk8-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-wildfly-javadocs-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-wildfly-modules-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el7eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-yasson-0:1.0.9-1.redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-yasson-0:1.0.9-1.redhat_00001.1.el7eap.src | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
In Netty there is a vulnerability on Unix-like systems involving an insecure temp file. When netty's multipart decoders are used, a local information disclosure can occur via the local system temporary directory if temporary storing uploads on the disk is enabled. On unix-like systems, the temporary directory is shared between all user. As such, writing to this directory using APIs that do not explicitly set the file/directory permissions can lead to information disclosure.
6.2 (Medium)
Affected products
Fixed
120 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el7eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el7eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-bouncycastle-mail-0:1.68.0-2.redhat_00005.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-bouncycastle-pkix-0:1.68.0-2.redhat_00005.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-bouncycastle-prov-0:1.68.0-2.redhat_00005.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el7eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el7eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-infinispan-cachestore-jdbc-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-infinispan-cachestore-remote-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-infinispan-client-hotrod-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-infinispan-commons-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-infinispan-core-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-commons-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-spi-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-v53-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el7eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-ironjacamar-common-api-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-ironjacamar-common-impl-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-ironjacamar-common-spi-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-ironjacamar-core-api-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-ironjacamar-core-impl-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-ironjacamar-deployers-common-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-ironjacamar-jdbc-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-ironjacamar-validator-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el7eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el7eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-marshalling-river-0:2.0.11-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el7eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-cli-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-core-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-eap6.4-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-eap6.4-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.1-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.2-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.2-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.3-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly10.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly10.1-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly11.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly12.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly13.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly14.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly15.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly16.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly17.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly18.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly8.2-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly9.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el7eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-weld-api-0:3.1.0-6.SP3_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-weld-spi-0:3.1.0-6.SP3_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el7eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el7eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el7eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-netty-all-0:4.1.60-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el7eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-resteasy-atom-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-resteasy-cdi-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-resteasy-client-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-resteasy-client-microprofile-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-resteasy-crypto-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-resteasy-jackson-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-resteasy-jackson2-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-resteasy-jaxb-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-resteasy-jaxrs-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-resteasy-jettison-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-resteasy-jose-jwt-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-resteasy-jsapi-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-resteasy-json-binding-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-resteasy-json-p-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-resteasy-multipart-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-resteasy-rxjava2-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-resteasy-spring-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-resteasy-validator-provider-11-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-resteasy-yaml-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el7eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-velocity-0:2.3.0-1.redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-velocity-0:2.3.0-1.redhat_00001.1.el7eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-velocity-engine-core-0:2.3.0-1.redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el7eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-weld-core-impl-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-weld-core-jsf-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-weld-ejb-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-weld-jta-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-weld-probe-core-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-weld-web-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el7eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el7eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-wildfly-elytron-tool-0:1.10.12-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-wildfly-http-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-wildfly-http-client-common-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-wildfly-http-ejb-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-wildfly-http-naming-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-wildfly-http-transaction-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-wildfly-java-jdk11-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-wildfly-java-jdk8-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-wildfly-javadocs-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-wildfly-modules-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el7eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-yasson-0:1.0.9-1.redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-yasson-0:1.0.9-1.redhat_00001.1.el7eap.src | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
In Netty (io.netty:netty-codec-http2) before version 4.1.60.Final there is a vulnerability that enables request smuggling. If a Content-Length header is present in the original HTTP/2 request, the field is not validated by `Http2MultiplexHandler` as it is propagated up. This is fine as long as the request is not proxied through as HTTP/1.1. If the request comes in as an HTTP/2 stream, gets converted into the HTTP/1.1 domain objects (`HttpRequest`, `HttpContent`, etc.) via `Http2StreamFrameToHttpObjectCodec `and then sent up to the child channel's pipeline and proxied through a remote peer as HTTP/1.1 this may result in request smuggling.
5.9 (Medium)
Affected products
Fixed
120 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el7eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el7eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-bouncycastle-mail-0:1.68.0-2.redhat_00005.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-bouncycastle-pkix-0:1.68.0-2.redhat_00005.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-bouncycastle-prov-0:1.68.0-2.redhat_00005.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el7eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el7eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-infinispan-cachestore-jdbc-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-infinispan-cachestore-remote-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-infinispan-client-hotrod-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-infinispan-commons-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-infinispan-core-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-commons-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-spi-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-v53-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el7eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-ironjacamar-common-api-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-ironjacamar-common-impl-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-ironjacamar-common-spi-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-ironjacamar-core-api-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-ironjacamar-core-impl-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-ironjacamar-deployers-common-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-ironjacamar-jdbc-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-ironjacamar-validator-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el7eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el7eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-marshalling-river-0:2.0.11-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el7eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-cli-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-core-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-eap6.4-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-eap6.4-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.1-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.2-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.2-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.3-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly10.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly10.1-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly11.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly12.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly13.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly14.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly15.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly16.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly17.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly18.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly8.2-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly9.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el7eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-weld-api-0:3.1.0-6.SP3_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-weld-spi-0:3.1.0-6.SP3_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el7eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el7eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el7eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-netty-all-0:4.1.60-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el7eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-resteasy-atom-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-resteasy-cdi-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-resteasy-client-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-resteasy-client-microprofile-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-resteasy-crypto-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-resteasy-jackson-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-resteasy-jackson2-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-resteasy-jaxb-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-resteasy-jaxrs-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-resteasy-jettison-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-resteasy-jose-jwt-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-resteasy-jsapi-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-resteasy-json-binding-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-resteasy-json-p-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-resteasy-multipart-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-resteasy-rxjava2-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-resteasy-spring-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-resteasy-validator-provider-11-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-resteasy-yaml-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el7eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-velocity-0:2.3.0-1.redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-velocity-0:2.3.0-1.redhat_00001.1.el7eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-velocity-engine-core-0:2.3.0-1.redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el7eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-weld-core-impl-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-weld-core-jsf-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-weld-ejb-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-weld-jta-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-weld-probe-core-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-weld-web-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el7eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el7eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-wildfly-elytron-tool-0:1.10.12-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-wildfly-http-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-wildfly-http-client-common-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-wildfly-http-ejb-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-wildfly-http-naming-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-wildfly-http-transaction-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-wildfly-java-jdk11-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-wildfly-java-jdk8-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-wildfly-javadocs-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-wildfly-modules-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el7eap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-yasson-0:1.0.9-1.redhat_00001.1.el7eap.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-JBEAP-7.3:eap7-yasson-0:1.0.9-1.redhat_00001.1.el7eap.src | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
References
43 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "A security update is now available for Red Hat JBoss Enterprise Application Platform 7.3 for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime.\n\nThis release of Red Hat JBoss Enterprise Application Platform 7.3.7 serves as a replacement for Red Hat JBoss Enterprise Application Platform 7.3.6, and includes bug fixes and enhancements. See the Red Hat JBoss Enterprise Application Platform 7.3.7 Release Notes for information about the most significant bug fixes and enhancements included in this release.\n\nSecurity Fix(es):\n\n* velocity: arbitrary code execution when attacker is able to modify templates (CVE-2020-13936)\n\n* netty: Information disclosure via the local system temporary directory (CVE-2021-21290)\n\n* netty: possible request smuggling in HTTP/2 due missing validation (CVE-2021-21295)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2021:2047",
"url": "https://access.redhat.com/errata/RHSA-2021:2047"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/7.3/",
"url": "https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/7.3/"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/7.3/html-single/installation_guide/",
"url": "https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/7.3/html-single/installation_guide/"
},
{
"category": "external",
"summary": "1927028",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1927028"
},
{
"category": "external",
"summary": "1937364",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1937364"
},
{
"category": "external",
"summary": "1937440",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1937440"
},
{
"category": "external",
"summary": "JBEAP-20478",
"url": "https://issues.redhat.com/browse/JBEAP-20478"
},
{
"category": "external",
"summary": "JBEAP-20869",
"url": "https://issues.redhat.com/browse/JBEAP-20869"
},
{
"category": "external",
"summary": "JBEAP-20927",
"url": "https://issues.redhat.com/browse/JBEAP-20927"
},
{
"category": "external",
"summary": "JBEAP-20935",
"url": "https://issues.redhat.com/browse/JBEAP-20935"
},
{
"category": "external",
"summary": "JBEAP-20940",
"url": "https://issues.redhat.com/browse/JBEAP-20940"
},
{
"category": "external",
"summary": "JBEAP-21093",
"url": "https://issues.redhat.com/browse/JBEAP-21093"
},
{
"category": "external",
"summary": "JBEAP-21094",
"url": "https://issues.redhat.com/browse/JBEAP-21094"
},
{
"category": "external",
"summary": "JBEAP-21095",
"url": "https://issues.redhat.com/browse/JBEAP-21095"
},
{
"category": "external",
"summary": "JBEAP-21096",
"url": "https://issues.redhat.com/browse/JBEAP-21096"
},
{
"category": "external",
"summary": "JBEAP-21121",
"url": "https://issues.redhat.com/browse/JBEAP-21121"
},
{
"category": "external",
"summary": "JBEAP-21185",
"url": "https://issues.redhat.com/browse/JBEAP-21185"
},
{
"category": "external",
"summary": "JBEAP-21186",
"url": "https://issues.redhat.com/browse/JBEAP-21186"
},
{
"category": "external",
"summary": "JBEAP-21193",
"url": "https://issues.redhat.com/browse/JBEAP-21193"
},
{
"category": "external",
"summary": "JBEAP-21196",
"url": "https://issues.redhat.com/browse/JBEAP-21196"
},
{
"category": "external",
"summary": "JBEAP-21203",
"url": "https://issues.redhat.com/browse/JBEAP-21203"
},
{
"category": "external",
"summary": "JBEAP-21262",
"url": "https://issues.redhat.com/browse/JBEAP-21262"
},
{
"category": "external",
"summary": "JBEAP-21279",
"url": "https://issues.redhat.com/browse/JBEAP-21279"
},
{
"category": "external",
"summary": "JBEAP-21312",
"url": "https://issues.redhat.com/browse/JBEAP-21312"
},
{
"category": "external",
"summary": "JBEAP-21322",
"url": "https://issues.redhat.com/browse/JBEAP-21322"
},
{
"category": "external",
"summary": "JBEAP-21351",
"url": "https://issues.redhat.com/browse/JBEAP-21351"
},
{
"category": "external",
"summary": "JBEAP-21390",
"url": "https://issues.redhat.com/browse/JBEAP-21390"
},
{
"category": "external",
"summary": "JBEAP-21479",
"url": "https://issues.redhat.com/browse/JBEAP-21479"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_2047.json"
}
],
"title": "Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.3.7 security update on RHEL 7",
"tracking": {
"current_release_date": "2026-05-14T22:30:46+00:00",
"generator": {
"date": "2026-05-14T22:30:46+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.8.0"
}
},
"id": "RHSA-2021:2047",
"initial_release_date": "2021-05-19T15:26:19+00:00",
"revision_history": [
{
"date": "2021-05-19T15:26:19+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2021-05-19T15:26:19+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-05-14T22:30:46+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product": {
"name": "Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el7"
}
}
}
],
"category": "product_family",
"name": "Red Hat JBoss Enterprise Application Platform"
},
{
"branches": [
{
"category": "product_version",
"name": "eap7-wildfly-http-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.src",
"product": {
"name": "eap7-wildfly-http-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.src",
"product_id": "eap7-wildfly-http-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-wildfly-http-client@1.0.26-1.Final_redhat_00001.1.el7eap?arch=src"
}
}
},
{
"category": "product_version",
"name": "eap7-velocity-0:2.3.0-1.redhat_00001.1.el7eap.src",
"product": {
"name": "eap7-velocity-0:2.3.0-1.redhat_00001.1.el7eap.src",
"product_id": "eap7-velocity-0:2.3.0-1.redhat_00001.1.el7eap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-velocity@2.3.0-1.redhat_00001.1.el7eap?arch=src"
}
}
},
{
"category": "product_version",
"name": "eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el7eap.src",
"product": {
"name": "eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el7eap.src",
"product_id": "eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el7eap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-hal-console@3.2.14-1.Final_redhat_00001.1.el7eap?arch=src"
}
}
},
{
"category": "product_version",
"name": "eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el7eap.src",
"product": {
"name": "eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el7eap.src",
"product_id": "eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el7eap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-xalan-j2@2.7.1-36.redhat_00013.1.el7eap?arch=src"
}
}
},
{
"category": "product_version",
"name": "eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el7eap.src",
"product": {
"name": "eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el7eap.src",
"product_id": "eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el7eap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jgroups-kubernetes@1.0.16-1.Final_redhat_00001.1.el7eap?arch=src"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el7eap.src",
"product": {
"name": "eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el7eap.src",
"product_id": "eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el7eap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-weld-3.1-api@3.1.0-6.SP3_redhat_00001.1.el7eap?arch=src"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el7eap.src",
"product": {
"name": "eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el7eap.src",
"product_id": "eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el7eap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-genericjms@2.0.9-1.Final_redhat_00001.1.el7eap?arch=src"
}
}
},
{
"category": "product_version",
"name": "eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el7eap.src",
"product": {
"name": "eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el7eap.src",
"product_id": "eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el7eap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-resteasy@3.11.4-1.Final_redhat_00001.1.el7eap?arch=src"
}
}
},
{
"category": "product_version",
"name": "eap7-yasson-0:1.0.9-1.redhat_00001.1.el7eap.src",
"product": {
"name": "eap7-yasson-0:1.0.9-1.redhat_00001.1.el7eap.src",
"product_id": "eap7-yasson-0:1.0.9-1.redhat_00001.1.el7eap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-yasson@1.0.9-1.redhat_00001.1.el7eap?arch=src"
}
}
},
{
"category": "product_version",
"name": "eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el7eap.src",
"product": {
"name": "eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el7eap.src",
"product_id": "eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el7eap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-ironjacamar@1.4.30-1.Final_redhat_00001.1.el7eap?arch=src"
}
}
},
{
"category": "product_version",
"name": "eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el7eap.src",
"product": {
"name": "eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el7eap.src",
"product_id": "eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el7eap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-artemis-wildfly-integration@1.0.4-1.redhat_00001.1.el7eap?arch=src"
}
}
},
{
"category": "product_version",
"name": "eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el7eap.src",
"product": {
"name": "eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el7eap.src",
"product_id": "eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el7eap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-weld-core@3.1.6-1.Final_redhat_00001.1.el7eap?arch=src"
}
}
},
{
"category": "product_version",
"name": "eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el7eap.src",
"product": {
"name": "eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el7eap.src",
"product_id": "eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el7eap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-undertow@2.0.35-1.SP1_redhat_00001.1.el7eap?arch=src"
}
}
},
{
"category": "product_version",
"name": "eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el7eap.src",
"product": {
"name": "eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el7eap.src",
"product_id": "eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el7eap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-wildfly-elytron@1.10.12-1.Final_redhat_00001.1.el7eap?arch=src"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el7eap.src",
"product": {
"name": "eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el7eap.src",
"product_id": "eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el7eap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-marshalling@2.0.11-1.Final_redhat_00001.1.el7eap?arch=src"
}
}
},
{
"category": "product_version",
"name": "eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el7eap.src",
"product": {
"name": "eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el7eap.src",
"product_id": "eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el7eap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-netty@4.1.60-1.Final_redhat_00001.1.el7eap?arch=src"
}
}
},
{
"category": "product_version",
"name": "eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el7eap.src",
"product": {
"name": "eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el7eap.src",
"product_id": "eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el7eap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-bouncycastle@1.68.0-2.redhat_00005.1.el7eap?arch=src"
}
}
},
{
"category": "product_version",
"name": "eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el7eap.src",
"product": {
"name": "eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el7eap.src",
"product_id": "eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el7eap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-infinispan@9.4.22-3.Final_redhat_00001.1.el7eap?arch=src"
}
}
},
{
"category": "product_version",
"name": "eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el7eap.src",
"product": {
"name": "eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el7eap.src",
"product_id": "eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el7eap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-mod_cluster@1.4.3-2.Final_redhat_00002.1.el7eap?arch=src"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el7eap.src",
"product": {
"name": "eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el7eap.src",
"product_id": "eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el7eap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-server-migration@1.7.2-6.Final_redhat_00007.1.el7eap?arch=src"
}
}
},
{
"category": "product_version",
"name": "eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el7eap.src",
"product": {
"name": "eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el7eap.src",
"product_id": "eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el7eap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-wildfly@7.3.7-1.GA_redhat_00002.1.el7eap?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "eap7-wildfly-http-client-common-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-wildfly-http-client-common-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch",
"product_id": "eap7-wildfly-http-client-common-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-wildfly-http-client-common@1.0.26-1.Final_redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-wildfly-http-ejb-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-wildfly-http-ejb-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch",
"product_id": "eap7-wildfly-http-ejb-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-wildfly-http-ejb-client@1.0.26-1.Final_redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-wildfly-http-naming-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-wildfly-http-naming-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch",
"product_id": "eap7-wildfly-http-naming-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-wildfly-http-naming-client@1.0.26-1.Final_redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-wildfly-http-transaction-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-wildfly-http-transaction-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch",
"product_id": "eap7-wildfly-http-transaction-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-wildfly-http-transaction-client@1.0.26-1.Final_redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-velocity-0:2.3.0-1.redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-velocity-0:2.3.0-1.redhat_00001.1.el7eap.noarch",
"product_id": "eap7-velocity-0:2.3.0-1.redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-velocity@2.3.0-1.redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-velocity-engine-core-0:2.3.0-1.redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-velocity-engine-core-0:2.3.0-1.redhat_00001.1.el7eap.noarch",
"product_id": "eap7-velocity-engine-core-0:2.3.0-1.redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-velocity-engine-core@2.3.0-1.redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el7eap.noarch",
"product_id": "eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-hal-console@3.2.14-1.Final_redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el7eap.noarch",
"product": {
"name": "eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el7eap.noarch",
"product_id": "eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-xalan-j2@2.7.1-36.redhat_00013.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el7eap.noarch",
"product_id": "eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jgroups-kubernetes@1.0.16-1.Final_redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el7eap.noarch",
"product_id": "eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-weld-3.1-api@3.1.0-6.SP3_redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-weld-3.1-api-weld-api-0:3.1.0-6.SP3_redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-jboss-weld-3.1-api-weld-api-0:3.1.0-6.SP3_redhat_00001.1.el7eap.noarch",
"product_id": "eap7-jboss-weld-3.1-api-weld-api-0:3.1.0-6.SP3_redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-weld-3.1-api-weld-api@3.1.0-6.SP3_redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-weld-3.1-api-weld-spi-0:3.1.0-6.SP3_redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-jboss-weld-3.1-api-weld-spi-0:3.1.0-6.SP3_redhat_00001.1.el7eap.noarch",
"product_id": "eap7-jboss-weld-3.1-api-weld-spi-0:3.1.0-6.SP3_redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-weld-3.1-api-weld-spi@3.1.0-6.SP3_redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el7eap.noarch",
"product_id": "eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-genericjms@2.0.9-1.Final_redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"product_id": "eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-resteasy@3.11.4-1.Final_redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-resteasy-atom-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-resteasy-atom-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"product_id": "eap7-resteasy-atom-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-resteasy-atom-provider@3.11.4-1.Final_redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-resteasy-cdi-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-resteasy-cdi-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"product_id": "eap7-resteasy-cdi-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-resteasy-cdi@3.11.4-1.Final_redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-resteasy-client-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-resteasy-client-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"product_id": "eap7-resteasy-client-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-resteasy-client@3.11.4-1.Final_redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-resteasy-client-microprofile-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-resteasy-client-microprofile-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"product_id": "eap7-resteasy-client-microprofile-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-resteasy-client-microprofile@3.11.4-1.Final_redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-resteasy-crypto-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-resteasy-crypto-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"product_id": "eap7-resteasy-crypto-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-resteasy-crypto@3.11.4-1.Final_redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-resteasy-jackson-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-resteasy-jackson-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"product_id": "eap7-resteasy-jackson-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-resteasy-jackson-provider@3.11.4-1.Final_redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-resteasy-jackson2-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-resteasy-jackson2-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"product_id": "eap7-resteasy-jackson2-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-resteasy-jackson2-provider@3.11.4-1.Final_redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-resteasy-jaxb-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-resteasy-jaxb-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"product_id": "eap7-resteasy-jaxb-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-resteasy-jaxb-provider@3.11.4-1.Final_redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-resteasy-jaxrs-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-resteasy-jaxrs-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"product_id": "eap7-resteasy-jaxrs-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-resteasy-jaxrs@3.11.4-1.Final_redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-resteasy-jettison-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-resteasy-jettison-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"product_id": "eap7-resteasy-jettison-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-resteasy-jettison-provider@3.11.4-1.Final_redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-resteasy-jose-jwt-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-resteasy-jose-jwt-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"product_id": "eap7-resteasy-jose-jwt-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-resteasy-jose-jwt@3.11.4-1.Final_redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-resteasy-jsapi-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-resteasy-jsapi-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"product_id": "eap7-resteasy-jsapi-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-resteasy-jsapi@3.11.4-1.Final_redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-resteasy-json-binding-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-resteasy-json-binding-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"product_id": "eap7-resteasy-json-binding-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-resteasy-json-binding-provider@3.11.4-1.Final_redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-resteasy-json-p-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-resteasy-json-p-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"product_id": "eap7-resteasy-json-p-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-resteasy-json-p-provider@3.11.4-1.Final_redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-resteasy-multipart-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-resteasy-multipart-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"product_id": "eap7-resteasy-multipart-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-resteasy-multipart-provider@3.11.4-1.Final_redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-resteasy-rxjava2-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-resteasy-rxjava2-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"product_id": "eap7-resteasy-rxjava2-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-resteasy-rxjava2@3.11.4-1.Final_redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-resteasy-spring-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-resteasy-spring-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"product_id": "eap7-resteasy-spring-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-resteasy-spring@3.11.4-1.Final_redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-resteasy-validator-provider-11-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-resteasy-validator-provider-11-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"product_id": "eap7-resteasy-validator-provider-11-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-resteasy-validator-provider-11@3.11.4-1.Final_redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-resteasy-yaml-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-resteasy-yaml-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"product_id": "eap7-resteasy-yaml-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-resteasy-yaml-provider@3.11.4-1.Final_redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-yasson-0:1.0.9-1.redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-yasson-0:1.0.9-1.redhat_00001.1.el7eap.noarch",
"product_id": "eap7-yasson-0:1.0.9-1.redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-yasson@1.0.9-1.redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"product_id": "eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-ironjacamar@1.4.30-1.Final_redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-ironjacamar-common-api-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-ironjacamar-common-api-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"product_id": "eap7-ironjacamar-common-api-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-ironjacamar-common-api@1.4.30-1.Final_redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-ironjacamar-common-impl-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-ironjacamar-common-impl-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"product_id": "eap7-ironjacamar-common-impl-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-ironjacamar-common-impl@1.4.30-1.Final_redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-ironjacamar-common-spi-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-ironjacamar-common-spi-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"product_id": "eap7-ironjacamar-common-spi-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-ironjacamar-common-spi@1.4.30-1.Final_redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-ironjacamar-core-api-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-ironjacamar-core-api-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"product_id": "eap7-ironjacamar-core-api-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-ironjacamar-core-api@1.4.30-1.Final_redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-ironjacamar-core-impl-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-ironjacamar-core-impl-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"product_id": "eap7-ironjacamar-core-impl-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-ironjacamar-core-impl@1.4.30-1.Final_redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-ironjacamar-deployers-common-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-ironjacamar-deployers-common-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"product_id": "eap7-ironjacamar-deployers-common-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-ironjacamar-deployers-common@1.4.30-1.Final_redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-ironjacamar-jdbc-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-ironjacamar-jdbc-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"product_id": "eap7-ironjacamar-jdbc-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-ironjacamar-jdbc@1.4.30-1.Final_redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-ironjacamar-validator-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-ironjacamar-validator-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"product_id": "eap7-ironjacamar-validator-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-ironjacamar-validator@1.4.30-1.Final_redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el7eap.noarch",
"product_id": "eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-artemis-wildfly-integration@1.0.4-1.redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"product_id": "eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-weld-core@3.1.6-1.Final_redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-weld-core-impl-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-weld-core-impl-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"product_id": "eap7-weld-core-impl-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-weld-core-impl@3.1.6-1.Final_redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-weld-core-jsf-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-weld-core-jsf-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"product_id": "eap7-weld-core-jsf-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-weld-core-jsf@3.1.6-1.Final_redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-weld-ejb-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-weld-ejb-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"product_id": "eap7-weld-ejb-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-weld-ejb@3.1.6-1.Final_redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-weld-jta-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-weld-jta-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"product_id": "eap7-weld-jta-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-weld-jta@3.1.6-1.Final_redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-weld-probe-core-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-weld-probe-core-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"product_id": "eap7-weld-probe-core-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-weld-probe-core@3.1.6-1.Final_redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-weld-web-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-weld-web-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"product_id": "eap7-weld-web-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-weld-web@3.1.6-1.Final_redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el7eap.noarch",
"product_id": "eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-undertow@2.0.35-1.SP1_redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el7eap.noarch",
"product_id": "eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-wildfly-elytron@1.10.12-1.Final_redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-wildfly-elytron-tool-0:1.10.12-1.Final_redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-wildfly-elytron-tool-0:1.10.12-1.Final_redhat_00001.1.el7eap.noarch",
"product_id": "eap7-wildfly-elytron-tool-0:1.10.12-1.Final_redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-wildfly-elytron-tool@1.10.12-1.Final_redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el7eap.noarch",
"product_id": "eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-marshalling@2.0.11-1.Final_redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-marshalling-river-0:2.0.11-1.Final_redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-jboss-marshalling-river-0:2.0.11-1.Final_redhat_00001.1.el7eap.noarch",
"product_id": "eap7-jboss-marshalling-river-0:2.0.11-1.Final_redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-marshalling-river@2.0.11-1.Final_redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el7eap.noarch",
"product_id": "eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-netty@4.1.60-1.Final_redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-netty-all-0:4.1.60-1.Final_redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-netty-all-0:4.1.60-1.Final_redhat_00001.1.el7eap.noarch",
"product_id": "eap7-netty-all-0:4.1.60-1.Final_redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-netty-all@4.1.60-1.Final_redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el7eap.noarch",
"product": {
"name": "eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el7eap.noarch",
"product_id": "eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-bouncycastle@1.68.0-2.redhat_00005.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-bouncycastle-mail-0:1.68.0-2.redhat_00005.1.el7eap.noarch",
"product": {
"name": "eap7-bouncycastle-mail-0:1.68.0-2.redhat_00005.1.el7eap.noarch",
"product_id": "eap7-bouncycastle-mail-0:1.68.0-2.redhat_00005.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-bouncycastle-mail@1.68.0-2.redhat_00005.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-bouncycastle-pkix-0:1.68.0-2.redhat_00005.1.el7eap.noarch",
"product": {
"name": "eap7-bouncycastle-pkix-0:1.68.0-2.redhat_00005.1.el7eap.noarch",
"product_id": "eap7-bouncycastle-pkix-0:1.68.0-2.redhat_00005.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-bouncycastle-pkix@1.68.0-2.redhat_00005.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-bouncycastle-prov-0:1.68.0-2.redhat_00005.1.el7eap.noarch",
"product": {
"name": "eap7-bouncycastle-prov-0:1.68.0-2.redhat_00005.1.el7eap.noarch",
"product_id": "eap7-bouncycastle-prov-0:1.68.0-2.redhat_00005.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-bouncycastle-prov@1.68.0-2.redhat_00005.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"product_id": "eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-infinispan@9.4.22-3.Final_redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-infinispan-cachestore-jdbc-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-infinispan-cachestore-jdbc-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"product_id": "eap7-infinispan-cachestore-jdbc-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-infinispan-cachestore-jdbc@9.4.22-3.Final_redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-infinispan-cachestore-remote-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-infinispan-cachestore-remote-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"product_id": "eap7-infinispan-cachestore-remote-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-infinispan-cachestore-remote@9.4.22-3.Final_redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-infinispan-client-hotrod-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-infinispan-client-hotrod-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"product_id": "eap7-infinispan-client-hotrod-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-infinispan-client-hotrod@9.4.22-3.Final_redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-infinispan-commons-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-infinispan-commons-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"product_id": "eap7-infinispan-commons-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-infinispan-commons@9.4.22-3.Final_redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-infinispan-core-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-infinispan-core-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"product_id": "eap7-infinispan-core-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-infinispan-core@9.4.22-3.Final_redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-infinispan-hibernate-cache-commons-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-infinispan-hibernate-cache-commons-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"product_id": "eap7-infinispan-hibernate-cache-commons-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-infinispan-hibernate-cache-commons@9.4.22-3.Final_redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-infinispan-hibernate-cache-spi-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-infinispan-hibernate-cache-spi-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"product_id": "eap7-infinispan-hibernate-cache-spi-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-infinispan-hibernate-cache-spi@9.4.22-3.Final_redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-infinispan-hibernate-cache-v53-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"product": {
"name": "eap7-infinispan-hibernate-cache-v53-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"product_id": "eap7-infinispan-hibernate-cache-v53-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-infinispan-hibernate-cache-v53@9.4.22-3.Final_redhat_00001.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el7eap.noarch",
"product": {
"name": "eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el7eap.noarch",
"product_id": "eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-mod_cluster@1.4.3-2.Final_redhat_00002.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product": {
"name": "eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product_id": "eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-server-migration@1.7.2-6.Final_redhat_00007.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-server-migration-cli-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product": {
"name": "eap7-jboss-server-migration-cli-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product_id": "eap7-jboss-server-migration-cli-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-server-migration-cli@1.7.2-6.Final_redhat_00007.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-server-migration-core-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product": {
"name": "eap7-jboss-server-migration-core-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product_id": "eap7-jboss-server-migration-core-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-server-migration-core@1.7.2-6.Final_redhat_00007.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-server-migration-eap6.4-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product": {
"name": "eap7-jboss-server-migration-eap6.4-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product_id": "eap7-jboss-server-migration-eap6.4-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-server-migration-eap6.4@1.7.2-6.Final_redhat_00007.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-server-migration-eap6.4-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product": {
"name": "eap7-jboss-server-migration-eap6.4-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product_id": "eap7-jboss-server-migration-eap6.4-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-server-migration-eap6.4-to-eap7.3@1.7.2-6.Final_redhat_00007.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-server-migration-eap7.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product": {
"name": "eap7-jboss-server-migration-eap7.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product_id": "eap7-jboss-server-migration-eap7.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-server-migration-eap7.0@1.7.2-6.Final_redhat_00007.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-server-migration-eap7.1-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product": {
"name": "eap7-jboss-server-migration-eap7.1-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product_id": "eap7-jboss-server-migration-eap7.1-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-server-migration-eap7.1@1.7.2-6.Final_redhat_00007.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-server-migration-eap7.2-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product": {
"name": "eap7-jboss-server-migration-eap7.2-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product_id": "eap7-jboss-server-migration-eap7.2-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-server-migration-eap7.2@1.7.2-6.Final_redhat_00007.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-server-migration-eap7.2-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product": {
"name": "eap7-jboss-server-migration-eap7.2-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product_id": "eap7-jboss-server-migration-eap7.2-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-server-migration-eap7.2-to-eap7.3@1.7.2-6.Final_redhat_00007.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-server-migration-eap7.3-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product": {
"name": "eap7-jboss-server-migration-eap7.3-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product_id": "eap7-jboss-server-migration-eap7.3-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-server-migration-eap7.3-server@1.7.2-6.Final_redhat_00007.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-server-migration-wildfly10.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product": {
"name": "eap7-jboss-server-migration-wildfly10.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product_id": "eap7-jboss-server-migration-wildfly10.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly10.0@1.7.2-6.Final_redhat_00007.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-server-migration-wildfly10.1-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product": {
"name": "eap7-jboss-server-migration-wildfly10.1-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product_id": "eap7-jboss-server-migration-wildfly10.1-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly10.1@1.7.2-6.Final_redhat_00007.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-server-migration-wildfly11.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product": {
"name": "eap7-jboss-server-migration-wildfly11.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product_id": "eap7-jboss-server-migration-wildfly11.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly11.0@1.7.2-6.Final_redhat_00007.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-server-migration-wildfly12.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product": {
"name": "eap7-jboss-server-migration-wildfly12.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product_id": "eap7-jboss-server-migration-wildfly12.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly12.0@1.7.2-6.Final_redhat_00007.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-server-migration-wildfly13.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product": {
"name": "eap7-jboss-server-migration-wildfly13.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product_id": "eap7-jboss-server-migration-wildfly13.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly13.0-server@1.7.2-6.Final_redhat_00007.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-server-migration-wildfly14.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product": {
"name": "eap7-jboss-server-migration-wildfly14.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product_id": "eap7-jboss-server-migration-wildfly14.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly14.0-server@1.7.2-6.Final_redhat_00007.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-server-migration-wildfly15.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product": {
"name": "eap7-jboss-server-migration-wildfly15.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product_id": "eap7-jboss-server-migration-wildfly15.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly15.0-server@1.7.2-6.Final_redhat_00007.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-server-migration-wildfly16.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product": {
"name": "eap7-jboss-server-migration-wildfly16.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product_id": "eap7-jboss-server-migration-wildfly16.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly16.0-server@1.7.2-6.Final_redhat_00007.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-server-migration-wildfly17.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product": {
"name": "eap7-jboss-server-migration-wildfly17.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product_id": "eap7-jboss-server-migration-wildfly17.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly17.0-server@1.7.2-6.Final_redhat_00007.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-server-migration-wildfly18.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product": {
"name": "eap7-jboss-server-migration-wildfly18.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product_id": "eap7-jboss-server-migration-wildfly18.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly18.0-server@1.7.2-6.Final_redhat_00007.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-server-migration-wildfly8.2-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product": {
"name": "eap7-jboss-server-migration-wildfly8.2-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product_id": "eap7-jboss-server-migration-wildfly8.2-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly8.2@1.7.2-6.Final_redhat_00007.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-jboss-server-migration-wildfly9.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product": {
"name": "eap7-jboss-server-migration-wildfly9.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product_id": "eap7-jboss-server-migration-wildfly9.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly9.0@1.7.2-6.Final_redhat_00007.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"product": {
"name": "eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"product_id": "eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-wildfly@7.3.7-1.GA_redhat_00002.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-wildfly-java-jdk11-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"product": {
"name": "eap7-wildfly-java-jdk11-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"product_id": "eap7-wildfly-java-jdk11-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-wildfly-java-jdk11@7.3.7-1.GA_redhat_00002.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-wildfly-java-jdk8-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"product": {
"name": "eap7-wildfly-java-jdk8-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"product_id": "eap7-wildfly-java-jdk8-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-wildfly-java-jdk8@7.3.7-1.GA_redhat_00002.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-wildfly-javadocs-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"product": {
"name": "eap7-wildfly-javadocs-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"product_id": "eap7-wildfly-javadocs-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-wildfly-javadocs@7.3.7-1.GA_redhat_00002.1.el7eap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "eap7-wildfly-modules-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"product": {
"name": "eap7-wildfly-modules-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"product_id": "eap7-wildfly-modules-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/eap7-wildfly-modules@7.3.7-1.GA_redhat_00002.1.el7eap?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el7eap.src as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el7eap.src"
},
"product_reference": "eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el7eap.src",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el7eap.noarch"
},
"product_reference": "eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el7eap.src as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el7eap.src"
},
"product_reference": "eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el7eap.src",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-bouncycastle-mail-0:1.68.0-2.redhat_00005.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-bouncycastle-mail-0:1.68.0-2.redhat_00005.1.el7eap.noarch"
},
"product_reference": "eap7-bouncycastle-mail-0:1.68.0-2.redhat_00005.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-bouncycastle-pkix-0:1.68.0-2.redhat_00005.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-bouncycastle-pkix-0:1.68.0-2.redhat_00005.1.el7eap.noarch"
},
"product_reference": "eap7-bouncycastle-pkix-0:1.68.0-2.redhat_00005.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-bouncycastle-prov-0:1.68.0-2.redhat_00005.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-bouncycastle-prov-0:1.68.0-2.redhat_00005.1.el7eap.noarch"
},
"product_reference": "eap7-bouncycastle-prov-0:1.68.0-2.redhat_00005.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el7eap.src as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el7eap.src"
},
"product_reference": "eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el7eap.src",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el7eap.src as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el7eap.src"
},
"product_reference": "eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el7eap.src",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-infinispan-cachestore-jdbc-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-infinispan-cachestore-jdbc-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-infinispan-cachestore-jdbc-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-infinispan-cachestore-remote-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-infinispan-cachestore-remote-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-infinispan-cachestore-remote-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-infinispan-client-hotrod-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-infinispan-client-hotrod-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-infinispan-client-hotrod-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-infinispan-commons-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-infinispan-commons-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-infinispan-commons-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-infinispan-core-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-infinispan-core-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-infinispan-core-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-infinispan-hibernate-cache-commons-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-commons-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-infinispan-hibernate-cache-commons-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-infinispan-hibernate-cache-spi-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-spi-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-infinispan-hibernate-cache-spi-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-infinispan-hibernate-cache-v53-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-v53-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-infinispan-hibernate-cache-v53-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el7eap.src as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el7eap.src"
},
"product_reference": "eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el7eap.src",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-ironjacamar-common-api-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-ironjacamar-common-api-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-ironjacamar-common-api-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-ironjacamar-common-impl-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-ironjacamar-common-impl-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-ironjacamar-common-impl-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-ironjacamar-common-spi-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-ironjacamar-common-spi-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-ironjacamar-common-spi-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-ironjacamar-core-api-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-ironjacamar-core-api-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-ironjacamar-core-api-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-ironjacamar-core-impl-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-ironjacamar-core-impl-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-ironjacamar-core-impl-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-ironjacamar-deployers-common-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-ironjacamar-deployers-common-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-ironjacamar-deployers-common-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-ironjacamar-jdbc-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-ironjacamar-jdbc-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-ironjacamar-jdbc-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-ironjacamar-validator-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-ironjacamar-validator-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-ironjacamar-validator-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el7eap.src as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el7eap.src"
},
"product_reference": "eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el7eap.src",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el7eap.src as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el7eap.src"
},
"product_reference": "eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el7eap.src",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-marshalling-river-0:2.0.11-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-jboss-marshalling-river-0:2.0.11-1.Final_redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-jboss-marshalling-river-0:2.0.11-1.Final_redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch"
},
"product_reference": "eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el7eap.src as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el7eap.src"
},
"product_reference": "eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el7eap.src",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-server-migration-cli-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-jboss-server-migration-cli-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch"
},
"product_reference": "eap7-jboss-server-migration-cli-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-server-migration-core-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-jboss-server-migration-core-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch"
},
"product_reference": "eap7-jboss-server-migration-core-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-server-migration-eap6.4-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-jboss-server-migration-eap6.4-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch"
},
"product_reference": "eap7-jboss-server-migration-eap6.4-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-server-migration-eap6.4-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-jboss-server-migration-eap6.4-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch"
},
"product_reference": "eap7-jboss-server-migration-eap6.4-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-server-migration-eap7.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch"
},
"product_reference": "eap7-jboss-server-migration-eap7.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-server-migration-eap7.1-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.1-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch"
},
"product_reference": "eap7-jboss-server-migration-eap7.1-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-server-migration-eap7.2-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.2-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch"
},
"product_reference": "eap7-jboss-server-migration-eap7.2-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-server-migration-eap7.2-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.2-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch"
},
"product_reference": "eap7-jboss-server-migration-eap7.2-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-server-migration-eap7.3-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.3-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch"
},
"product_reference": "eap7-jboss-server-migration-eap7.3-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-server-migration-wildfly10.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly10.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch"
},
"product_reference": "eap7-jboss-server-migration-wildfly10.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-server-migration-wildfly10.1-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly10.1-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch"
},
"product_reference": "eap7-jboss-server-migration-wildfly10.1-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-server-migration-wildfly11.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly11.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch"
},
"product_reference": "eap7-jboss-server-migration-wildfly11.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-server-migration-wildfly12.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly12.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch"
},
"product_reference": "eap7-jboss-server-migration-wildfly12.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-server-migration-wildfly13.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly13.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch"
},
"product_reference": "eap7-jboss-server-migration-wildfly13.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-server-migration-wildfly14.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly14.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch"
},
"product_reference": "eap7-jboss-server-migration-wildfly14.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-server-migration-wildfly15.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly15.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch"
},
"product_reference": "eap7-jboss-server-migration-wildfly15.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-server-migration-wildfly16.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly16.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch"
},
"product_reference": "eap7-jboss-server-migration-wildfly16.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-server-migration-wildfly17.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly17.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch"
},
"product_reference": "eap7-jboss-server-migration-wildfly17.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-server-migration-wildfly18.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly18.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch"
},
"product_reference": "eap7-jboss-server-migration-wildfly18.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-server-migration-wildfly8.2-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly8.2-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch"
},
"product_reference": "eap7-jboss-server-migration-wildfly8.2-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-server-migration-wildfly9.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly9.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch"
},
"product_reference": "eap7-jboss-server-migration-wildfly9.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el7eap.src as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el7eap.src"
},
"product_reference": "eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el7eap.src",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-weld-3.1-api-weld-api-0:3.1.0-6.SP3_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-weld-api-0:3.1.0-6.SP3_redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-jboss-weld-3.1-api-weld-api-0:3.1.0-6.SP3_redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jboss-weld-3.1-api-weld-spi-0:3.1.0-6.SP3_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-weld-spi-0:3.1.0-6.SP3_redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-jboss-weld-3.1-api-weld-spi-0:3.1.0-6.SP3_redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el7eap.src as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el7eap.src"
},
"product_reference": "eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el7eap.src",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el7eap.noarch"
},
"product_reference": "eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el7eap.src as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el7eap.src"
},
"product_reference": "eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el7eap.src",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el7eap.src as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el7eap.src"
},
"product_reference": "eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el7eap.src",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-netty-all-0:4.1.60-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-netty-all-0:4.1.60-1.Final_redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-netty-all-0:4.1.60-1.Final_redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el7eap.src as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el7eap.src"
},
"product_reference": "eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el7eap.src",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-resteasy-atom-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-resteasy-atom-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-resteasy-atom-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-resteasy-cdi-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-resteasy-cdi-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-resteasy-cdi-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-resteasy-client-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-resteasy-client-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-resteasy-client-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-resteasy-client-microprofile-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-resteasy-client-microprofile-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-resteasy-client-microprofile-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-resteasy-crypto-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-resteasy-crypto-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-resteasy-crypto-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-resteasy-jackson-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-resteasy-jackson-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-resteasy-jackson-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-resteasy-jackson2-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-resteasy-jackson2-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-resteasy-jackson2-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-resteasy-jaxb-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-resteasy-jaxb-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-resteasy-jaxb-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-resteasy-jaxrs-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-resteasy-jaxrs-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-resteasy-jaxrs-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-resteasy-jettison-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-resteasy-jettison-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-resteasy-jettison-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-resteasy-jose-jwt-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-resteasy-jose-jwt-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-resteasy-jose-jwt-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-resteasy-jsapi-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-resteasy-jsapi-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-resteasy-jsapi-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-resteasy-json-binding-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-resteasy-json-binding-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-resteasy-json-binding-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-resteasy-json-p-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-resteasy-json-p-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-resteasy-json-p-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-resteasy-multipart-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-resteasy-multipart-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-resteasy-multipart-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-resteasy-rxjava2-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-resteasy-rxjava2-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-resteasy-rxjava2-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-resteasy-spring-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-resteasy-spring-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-resteasy-spring-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-resteasy-validator-provider-11-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-resteasy-validator-provider-11-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-resteasy-validator-provider-11-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-resteasy-yaml-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-resteasy-yaml-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-resteasy-yaml-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el7eap.src as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el7eap.src"
},
"product_reference": "eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el7eap.src",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-velocity-0:2.3.0-1.redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-velocity-0:2.3.0-1.redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-velocity-0:2.3.0-1.redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-velocity-0:2.3.0-1.redhat_00001.1.el7eap.src as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-velocity-0:2.3.0-1.redhat_00001.1.el7eap.src"
},
"product_reference": "eap7-velocity-0:2.3.0-1.redhat_00001.1.el7eap.src",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-velocity-engine-core-0:2.3.0-1.redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-velocity-engine-core-0:2.3.0-1.redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-velocity-engine-core-0:2.3.0-1.redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el7eap.src as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el7eap.src"
},
"product_reference": "eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el7eap.src",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-weld-core-impl-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-weld-core-impl-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-weld-core-impl-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-weld-core-jsf-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-weld-core-jsf-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-weld-core-jsf-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-weld-ejb-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-weld-ejb-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-weld-ejb-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-weld-jta-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-weld-jta-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-weld-jta-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-weld-probe-core-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-weld-probe-core-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-weld-probe-core-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-weld-web-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-weld-web-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-weld-web-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch"
},
"product_reference": "eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el7eap.src as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el7eap.src"
},
"product_reference": "eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el7eap.src",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el7eap.src as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el7eap.src"
},
"product_reference": "eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el7eap.src",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-wildfly-elytron-tool-0:1.10.12-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-wildfly-elytron-tool-0:1.10.12-1.Final_redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-wildfly-elytron-tool-0:1.10.12-1.Final_redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-wildfly-http-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.src as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-wildfly-http-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.src"
},
"product_reference": "eap7-wildfly-http-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.src",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-wildfly-http-client-common-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-wildfly-http-client-common-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-wildfly-http-client-common-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-wildfly-http-ejb-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-wildfly-http-ejb-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-wildfly-http-ejb-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-wildfly-http-naming-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-wildfly-http-naming-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-wildfly-http-naming-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-wildfly-http-transaction-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-wildfly-http-transaction-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-wildfly-http-transaction-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-wildfly-java-jdk11-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-wildfly-java-jdk11-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch"
},
"product_reference": "eap7-wildfly-java-jdk11-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-wildfly-java-jdk8-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-wildfly-java-jdk8-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch"
},
"product_reference": "eap7-wildfly-java-jdk8-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-wildfly-javadocs-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-wildfly-javadocs-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch"
},
"product_reference": "eap7-wildfly-javadocs-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-wildfly-modules-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-wildfly-modules-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch"
},
"product_reference": "eap7-wildfly-modules-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el7eap.noarch"
},
"product_reference": "eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el7eap.src as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el7eap.src"
},
"product_reference": "eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el7eap.src",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-yasson-0:1.0.9-1.redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-yasson-0:1.0.9-1.redhat_00001.1.el7eap.noarch"
},
"product_reference": "eap7-yasson-0:1.0.9-1.redhat_00001.1.el7eap.noarch",
"relates_to_product_reference": "7Server-JBEAP-7.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "eap7-yasson-0:1.0.9-1.redhat_00001.1.el7eap.src as a component of Red Hat JBoss EAP 7.3 for RHEL 7 Server",
"product_id": "7Server-JBEAP-7.3:eap7-yasson-0:1.0.9-1.redhat_00001.1.el7eap.src"
},
"product_reference": "eap7-yasson-0:1.0.9-1.redhat_00001.1.el7eap.src",
"relates_to_product_reference": "7Server-JBEAP-7.3"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-13936",
"cwe": {
"id": "CWE-94",
"name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
},
"discovery_date": "2021-03-10T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1937440"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in velocity. An attacker, able to modify Velocity templates, may execute arbitrary Java code or run arbitrary system commands with the same privileges as the account running the Servlet container. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "velocity: arbitrary code execution when attacker is able to modify templates",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "OpenShift Container Platform (OCP) openshift-logging/elasticsearch6-rhel8 container does contain a vulnerable version of velocity. The references to the library only occur in the x-pack component which is an enterprise-only feature of Elasticsearch - hence it has been marked as wontfix as this time and may be fixed in a future release. Additionally the hive container only references velocity in the testutils of the code but the code still exists in the container, as such it has been given a Moderate impact.\n\n* Velocity as shipped with Red Hat Enterprise Linux 6 is not affected because it does not contain the vulnerable code.\n\n* Velocity as shipped with Red Hat Enterprise Linux 7 contains a vulnerable version, but it is used as a dependency for IdM/ipa, which does not use the vulnerable functionality. It has been marked as Moderate for this reason.\n\n* Although velocity shipped in Red Hat Enterprise Linux 8\u0027s pki-deps:10.6 for IdM/ipa is a vulnerable version, the vulnerable code is not used by pki. It has been marked as Low for this reason.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-JBEAP-7.3:eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-bouncycastle-mail-0:1.68.0-2.redhat_00005.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-bouncycastle-pkix-0:1.68.0-2.redhat_00005.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-bouncycastle-prov-0:1.68.0-2.redhat_00005.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-infinispan-cachestore-jdbc-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-cachestore-remote-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-client-hotrod-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-commons-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-core-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-commons-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-spi-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-v53-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-ironjacamar-common-api-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-common-impl-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-common-spi-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-core-api-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-core-impl-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-deployers-common-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-jdbc-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-validator-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-jboss-marshalling-river-0:2.0.11-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-cli-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-core-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-eap6.4-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-eap6.4-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.1-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.2-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.2-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.3-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly10.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly10.1-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly11.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly12.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly13.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly14.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly15.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly16.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly17.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly18.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly8.2-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly9.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-weld-api-0:3.1.0-6.SP3_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-weld-spi-0:3.1.0-6.SP3_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-netty-all-0:4.1.60-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-resteasy-atom-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-cdi-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-client-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-client-microprofile-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-crypto-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-jackson-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-jackson2-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-jaxb-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-jaxrs-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-jettison-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-jose-jwt-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-jsapi-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-json-binding-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-json-p-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-multipart-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-rxjava2-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-spring-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-validator-provider-11-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-yaml-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-velocity-0:2.3.0-1.redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-velocity-0:2.3.0-1.redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-velocity-engine-core-0:2.3.0-1.redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-weld-core-impl-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-weld-core-jsf-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-weld-ejb-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-weld-jta-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-weld-probe-core-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-weld-web-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-wildfly-elytron-tool-0:1.10.12-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-http-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-wildfly-http-client-common-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-http-ejb-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-http-naming-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-http-transaction-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-java-jdk11-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-java-jdk8-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-javadocs-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-modules-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-yasson-0:1.0.9-1.redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-yasson-0:1.0.9-1.redhat_00001.1.el7eap.src"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-13936"
},
{
"category": "external",
"summary": "RHBZ#1937440",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1937440"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-13936",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-13936"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-13936",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-13936"
}
],
"release_date": "2021-03-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-05-19T15:26:19+00:00",
"details": "Before applying this update, ensure all previously released errata relevant to your system have been applied.\n\nFor details about how to apply this update, see:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-JBEAP-7.3:eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-bouncycastle-mail-0:1.68.0-2.redhat_00005.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-bouncycastle-pkix-0:1.68.0-2.redhat_00005.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-bouncycastle-prov-0:1.68.0-2.redhat_00005.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-infinispan-cachestore-jdbc-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-cachestore-remote-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-client-hotrod-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-commons-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-core-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-commons-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-spi-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-v53-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-ironjacamar-common-api-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-common-impl-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-common-spi-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-core-api-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-core-impl-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-deployers-common-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-jdbc-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-validator-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-jboss-marshalling-river-0:2.0.11-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-cli-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-core-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-eap6.4-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-eap6.4-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.1-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.2-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.2-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.3-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly10.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly10.1-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly11.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly12.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly13.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly14.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly15.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly16.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly17.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly18.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly8.2-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly9.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-weld-api-0:3.1.0-6.SP3_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-weld-spi-0:3.1.0-6.SP3_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-netty-all-0:4.1.60-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-resteasy-atom-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-cdi-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-client-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-client-microprofile-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-crypto-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-jackson-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-jackson2-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-jaxb-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-jaxrs-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-jettison-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-jose-jwt-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-jsapi-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-json-binding-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-json-p-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-multipart-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-rxjava2-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-spring-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-validator-provider-11-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-yaml-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-velocity-0:2.3.0-1.redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-velocity-0:2.3.0-1.redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-velocity-engine-core-0:2.3.0-1.redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-weld-core-impl-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-weld-core-jsf-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-weld-ejb-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-weld-jta-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-weld-probe-core-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-weld-web-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-wildfly-elytron-tool-0:1.10.12-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-http-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-wildfly-http-client-common-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-http-ejb-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-http-naming-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-http-transaction-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-java-jdk11-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-java-jdk8-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-javadocs-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-modules-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-yasson-0:1.0.9-1.redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-yasson-0:1.0.9-1.redhat_00001.1.el7eap.src"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:2047"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7Server-JBEAP-7.3:eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-bouncycastle-mail-0:1.68.0-2.redhat_00005.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-bouncycastle-pkix-0:1.68.0-2.redhat_00005.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-bouncycastle-prov-0:1.68.0-2.redhat_00005.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-infinispan-cachestore-jdbc-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-cachestore-remote-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-client-hotrod-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-commons-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-core-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-commons-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-spi-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-v53-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-ironjacamar-common-api-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-common-impl-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-common-spi-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-core-api-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-core-impl-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-deployers-common-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-jdbc-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-validator-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-jboss-marshalling-river-0:2.0.11-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-cli-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-core-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-eap6.4-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-eap6.4-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.1-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.2-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.2-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.3-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly10.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly10.1-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly11.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly12.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly13.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly14.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly15.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly16.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly17.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly18.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly8.2-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly9.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-weld-api-0:3.1.0-6.SP3_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-weld-spi-0:3.1.0-6.SP3_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-netty-all-0:4.1.60-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-resteasy-atom-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-cdi-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-client-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-client-microprofile-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-crypto-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-jackson-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-jackson2-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-jaxb-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-jaxrs-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-jettison-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-jose-jwt-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-jsapi-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-json-binding-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-json-p-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-multipart-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-rxjava2-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-spring-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-validator-provider-11-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-yaml-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-velocity-0:2.3.0-1.redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-velocity-0:2.3.0-1.redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-velocity-engine-core-0:2.3.0-1.redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-weld-core-impl-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-weld-core-jsf-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-weld-ejb-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-weld-jta-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-weld-probe-core-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-weld-web-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-wildfly-elytron-tool-0:1.10.12-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-http-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-wildfly-http-client-common-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-http-ejb-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-http-naming-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-http-transaction-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-java-jdk11-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-java-jdk8-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-javadocs-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-modules-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-yasson-0:1.0.9-1.redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-yasson-0:1.0.9-1.redhat_00001.1.el7eap.src"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "velocity: arbitrary code execution when attacker is able to modify templates"
},
{
"cve": "CVE-2021-21290",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2021-02-09T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1927028"
}
],
"notes": [
{
"category": "description",
"text": "In Netty there is a vulnerability on Unix-like systems involving an insecure temp file. When netty\u0027s multipart decoders are used, a local information disclosure can occur via the local system temporary directory if temporary storing uploads on the disk is enabled. On unix-like systems, the temporary directory is shared between all user. As such, writing to this directory using APIs that do not explicitly set the file/directory permissions can lead to information disclosure.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "netty: Information disclosure via the local system temporary directory",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-JBEAP-7.3:eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-bouncycastle-mail-0:1.68.0-2.redhat_00005.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-bouncycastle-pkix-0:1.68.0-2.redhat_00005.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-bouncycastle-prov-0:1.68.0-2.redhat_00005.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-infinispan-cachestore-jdbc-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-cachestore-remote-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-client-hotrod-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-commons-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-core-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-commons-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-spi-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-v53-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-ironjacamar-common-api-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-common-impl-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-common-spi-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-core-api-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-core-impl-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-deployers-common-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-jdbc-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-validator-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-jboss-marshalling-river-0:2.0.11-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-cli-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-core-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-eap6.4-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-eap6.4-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.1-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.2-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.2-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.3-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly10.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly10.1-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly11.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly12.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly13.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly14.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly15.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly16.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly17.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly18.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly8.2-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly9.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-weld-api-0:3.1.0-6.SP3_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-weld-spi-0:3.1.0-6.SP3_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-netty-all-0:4.1.60-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-resteasy-atom-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-cdi-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-client-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-client-microprofile-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-crypto-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-jackson-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-jackson2-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-jaxb-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-jaxrs-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-jettison-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-jose-jwt-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-jsapi-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-json-binding-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-json-p-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-multipart-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-rxjava2-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-spring-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-validator-provider-11-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-yaml-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-velocity-0:2.3.0-1.redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-velocity-0:2.3.0-1.redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-velocity-engine-core-0:2.3.0-1.redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-weld-core-impl-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-weld-core-jsf-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-weld-ejb-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-weld-jta-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-weld-probe-core-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-weld-web-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-wildfly-elytron-tool-0:1.10.12-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-http-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-wildfly-http-client-common-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-http-ejb-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-http-naming-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-http-transaction-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-java-jdk11-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-java-jdk8-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-javadocs-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-modules-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-yasson-0:1.0.9-1.redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-yasson-0:1.0.9-1.redhat_00001.1.el7eap.src"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-21290"
},
{
"category": "external",
"summary": "RHBZ#1927028",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1927028"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-21290",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-21290"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-21290",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-21290"
}
],
"release_date": "2021-02-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-05-19T15:26:19+00:00",
"details": "Before applying this update, ensure all previously released errata relevant to your system have been applied.\n\nFor details about how to apply this update, see:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-JBEAP-7.3:eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-bouncycastle-mail-0:1.68.0-2.redhat_00005.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-bouncycastle-pkix-0:1.68.0-2.redhat_00005.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-bouncycastle-prov-0:1.68.0-2.redhat_00005.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-infinispan-cachestore-jdbc-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-cachestore-remote-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-client-hotrod-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-commons-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-core-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-commons-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-spi-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-v53-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-ironjacamar-common-api-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-common-impl-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-common-spi-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-core-api-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-core-impl-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-deployers-common-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-jdbc-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-validator-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-jboss-marshalling-river-0:2.0.11-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-cli-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-core-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-eap6.4-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-eap6.4-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.1-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.2-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.2-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.3-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly10.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly10.1-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly11.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly12.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly13.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly14.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly15.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly16.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly17.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly18.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly8.2-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly9.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-weld-api-0:3.1.0-6.SP3_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-weld-spi-0:3.1.0-6.SP3_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-netty-all-0:4.1.60-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-resteasy-atom-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-cdi-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-client-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-client-microprofile-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-crypto-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-jackson-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-jackson2-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-jaxb-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-jaxrs-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-jettison-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-jose-jwt-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-jsapi-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-json-binding-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-json-p-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-multipart-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-rxjava2-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-spring-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-validator-provider-11-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-yaml-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-velocity-0:2.3.0-1.redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-velocity-0:2.3.0-1.redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-velocity-engine-core-0:2.3.0-1.redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-weld-core-impl-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-weld-core-jsf-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-weld-ejb-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-weld-jta-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-weld-probe-core-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-weld-web-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-wildfly-elytron-tool-0:1.10.12-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-http-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-wildfly-http-client-common-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-http-ejb-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-http-naming-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-http-transaction-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-java-jdk11-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-java-jdk8-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-javadocs-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-modules-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-yasson-0:1.0.9-1.redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-yasson-0:1.0.9-1.redhat_00001.1.el7eap.src"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:2047"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 6.2,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"7Server-JBEAP-7.3:eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-bouncycastle-mail-0:1.68.0-2.redhat_00005.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-bouncycastle-pkix-0:1.68.0-2.redhat_00005.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-bouncycastle-prov-0:1.68.0-2.redhat_00005.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-infinispan-cachestore-jdbc-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-cachestore-remote-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-client-hotrod-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-commons-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-core-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-commons-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-spi-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-v53-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-ironjacamar-common-api-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-common-impl-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-common-spi-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-core-api-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-core-impl-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-deployers-common-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-jdbc-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-validator-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-jboss-marshalling-river-0:2.0.11-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-cli-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-core-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-eap6.4-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-eap6.4-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.1-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.2-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.2-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.3-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly10.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly10.1-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly11.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly12.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly13.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly14.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly15.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly16.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly17.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly18.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly8.2-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly9.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-weld-api-0:3.1.0-6.SP3_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-weld-spi-0:3.1.0-6.SP3_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-netty-all-0:4.1.60-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-resteasy-atom-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-cdi-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-client-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-client-microprofile-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-crypto-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-jackson-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-jackson2-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-jaxb-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-jaxrs-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-jettison-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-jose-jwt-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-jsapi-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-json-binding-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-json-p-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-multipart-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-rxjava2-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-spring-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-validator-provider-11-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-yaml-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-velocity-0:2.3.0-1.redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-velocity-0:2.3.0-1.redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-velocity-engine-core-0:2.3.0-1.redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-weld-core-impl-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-weld-core-jsf-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-weld-ejb-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-weld-jta-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-weld-probe-core-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-weld-web-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-wildfly-elytron-tool-0:1.10.12-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-http-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-wildfly-http-client-common-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-http-ejb-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-http-naming-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-http-transaction-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-java-jdk11-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-java-jdk8-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-javadocs-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-modules-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-yasson-0:1.0.9-1.redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-yasson-0:1.0.9-1.redhat_00001.1.el7eap.src"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "netty: Information disclosure via the local system temporary directory"
},
{
"cve": "CVE-2021-21295",
"cwe": {
"id": "CWE-444",
"name": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)"
},
"discovery_date": "2021-03-09T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1937364"
}
],
"notes": [
{
"category": "description",
"text": "In Netty (io.netty:netty-codec-http2) before version 4.1.60.Final there is a vulnerability that enables request smuggling. If a Content-Length header is present in the original HTTP/2 request, the field is not validated by `Http2MultiplexHandler` as it is propagated up. This is fine as long as the request is not proxied through as HTTP/1.1. If the request comes in as an HTTP/2 stream, gets converted into the HTTP/1.1 domain objects (`HttpRequest`, `HttpContent`, etc.) via `Http2StreamFrameToHttpObjectCodec `and then sent up to the child channel\u0027s pipeline and proxied through a remote peer as HTTP/1.1 this may result in request smuggling.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "netty: possible request smuggling in HTTP/2 due missing validation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat OpenStack Platform\u0027s OpenDaylight will not be updated for this flaw because it was deprecated as of OpenStack Platform 14 and is only receiving security fixes for Important and Critical flaws.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-JBEAP-7.3:eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-bouncycastle-mail-0:1.68.0-2.redhat_00005.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-bouncycastle-pkix-0:1.68.0-2.redhat_00005.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-bouncycastle-prov-0:1.68.0-2.redhat_00005.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-infinispan-cachestore-jdbc-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-cachestore-remote-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-client-hotrod-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-commons-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-core-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-commons-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-spi-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-v53-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-ironjacamar-common-api-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-common-impl-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-common-spi-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-core-api-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-core-impl-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-deployers-common-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-jdbc-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-validator-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-jboss-marshalling-river-0:2.0.11-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-cli-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-core-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-eap6.4-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-eap6.4-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.1-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.2-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.2-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.3-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly10.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly10.1-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly11.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly12.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly13.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly14.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly15.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly16.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly17.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly18.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly8.2-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly9.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-weld-api-0:3.1.0-6.SP3_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-weld-spi-0:3.1.0-6.SP3_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-netty-all-0:4.1.60-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-resteasy-atom-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-cdi-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-client-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-client-microprofile-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-crypto-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-jackson-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-jackson2-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-jaxb-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-jaxrs-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-jettison-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-jose-jwt-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-jsapi-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-json-binding-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-json-p-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-multipart-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-rxjava2-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-spring-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-validator-provider-11-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-yaml-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-velocity-0:2.3.0-1.redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-velocity-0:2.3.0-1.redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-velocity-engine-core-0:2.3.0-1.redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-weld-core-impl-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-weld-core-jsf-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-weld-ejb-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-weld-jta-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-weld-probe-core-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-weld-web-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-wildfly-elytron-tool-0:1.10.12-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-http-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-wildfly-http-client-common-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-http-ejb-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-http-naming-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-http-transaction-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-java-jdk11-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-java-jdk8-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-javadocs-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-modules-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-yasson-0:1.0.9-1.redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-yasson-0:1.0.9-1.redhat_00001.1.el7eap.src"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-21295"
},
{
"category": "external",
"summary": "RHBZ#1937364",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1937364"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-21295",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-21295"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-21295",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-21295"
},
{
"category": "external",
"summary": "https://github.com/netty/netty/security/advisories/GHSA-wm47-8v5p-wjpj",
"url": "https://github.com/netty/netty/security/advisories/GHSA-wm47-8v5p-wjpj"
}
],
"release_date": "2021-03-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-05-19T15:26:19+00:00",
"details": "Before applying this update, ensure all previously released errata relevant to your system have been applied.\n\nFor details about how to apply this update, see:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-JBEAP-7.3:eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-bouncycastle-mail-0:1.68.0-2.redhat_00005.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-bouncycastle-pkix-0:1.68.0-2.redhat_00005.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-bouncycastle-prov-0:1.68.0-2.redhat_00005.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-infinispan-cachestore-jdbc-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-cachestore-remote-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-client-hotrod-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-commons-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-core-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-commons-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-spi-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-v53-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-ironjacamar-common-api-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-common-impl-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-common-spi-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-core-api-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-core-impl-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-deployers-common-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-jdbc-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-validator-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-jboss-marshalling-river-0:2.0.11-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-cli-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-core-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-eap6.4-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-eap6.4-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.1-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.2-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.2-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.3-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly10.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly10.1-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly11.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly12.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly13.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly14.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly15.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly16.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly17.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly18.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly8.2-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly9.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-weld-api-0:3.1.0-6.SP3_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-weld-spi-0:3.1.0-6.SP3_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-netty-all-0:4.1.60-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-resteasy-atom-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-cdi-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-client-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-client-microprofile-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-crypto-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-jackson-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-jackson2-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-jaxb-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-jaxrs-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-jettison-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-jose-jwt-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-jsapi-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-json-binding-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-json-p-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-multipart-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-rxjava2-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-spring-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-validator-provider-11-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-yaml-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-velocity-0:2.3.0-1.redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-velocity-0:2.3.0-1.redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-velocity-engine-core-0:2.3.0-1.redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-weld-core-impl-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-weld-core-jsf-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-weld-ejb-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-weld-jta-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-weld-probe-core-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-weld-web-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-wildfly-elytron-tool-0:1.10.12-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-http-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-wildfly-http-client-common-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-http-ejb-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-http-naming-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-http-transaction-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-java-jdk11-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-java-jdk8-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-javadocs-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-modules-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-yasson-0:1.0.9-1.redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-yasson-0:1.0.9-1.redhat_00001.1.el7eap.src"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:2047"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"7Server-JBEAP-7.3:eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-artemis-wildfly-integration-0:1.0.4-1.redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-bouncycastle-0:1.68.0-2.redhat_00005.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-bouncycastle-mail-0:1.68.0-2.redhat_00005.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-bouncycastle-pkix-0:1.68.0-2.redhat_00005.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-bouncycastle-prov-0:1.68.0-2.redhat_00005.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-hal-console-0:3.2.14-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-0:9.4.22-3.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-infinispan-cachestore-jdbc-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-cachestore-remote-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-client-hotrod-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-commons-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-core-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-commons-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-spi-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-infinispan-hibernate-cache-v53-0:9.4.22-3.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-0:1.4.30-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-ironjacamar-common-api-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-common-impl-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-common-spi-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-core-api-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-core-impl-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-deployers-common-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-jdbc-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-ironjacamar-validator-0:1.4.30-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-genericjms-0:2.0.9-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-marshalling-0:2.0.11-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-jboss-marshalling-river-0:2.0.11-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-0:1.7.2-6.Final_redhat_00007.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-cli-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-core-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-eap6.4-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-eap6.4-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.1-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.2-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.2-to-eap7.3-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-eap7.3-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly10.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly10.1-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly11.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly12.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly13.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly14.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly15.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly16.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly17.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly18.0-server-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly8.2-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-server-migration-wildfly9.0-0:1.7.2-6.Final_redhat_00007.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-0:3.1.0-6.SP3_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-weld-api-0:3.1.0-6.SP3_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jboss-weld-3.1-api-weld-spi-0:3.1.0-6.SP3_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-jgroups-kubernetes-0:1.0.16-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-netty-0:4.1.60-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-netty-all-0:4.1.60-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-0:3.11.4-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-resteasy-atom-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-cdi-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-client-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-client-microprofile-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-crypto-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-jackson-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-jackson2-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-jaxb-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-jaxrs-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-jettison-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-jose-jwt-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-jsapi-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-json-binding-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-json-p-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-multipart-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-rxjava2-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-spring-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-validator-provider-11-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-resteasy-yaml-provider-0:3.11.4-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-undertow-0:2.0.35-1.SP1_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-velocity-0:2.3.0-1.redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-velocity-0:2.3.0-1.redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-velocity-engine-core-0:2.3.0-1.redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-weld-core-0:3.1.6-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-weld-core-impl-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-weld-core-jsf-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-weld-ejb-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-weld-jta-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-weld-probe-core-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-weld-web-0:3.1.6-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-0:7.3.7-1.GA_redhat_00002.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-elytron-0:1.10.12-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-wildfly-elytron-tool-0:1.10.12-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-http-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-wildfly-http-client-common-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-http-ejb-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-http-naming-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-http-transaction-client-0:1.0.26-1.Final_redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-java-jdk11-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-java-jdk8-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-javadocs-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-wildfly-modules-0:7.3.7-1.GA_redhat_00002.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-xalan-j2-0:2.7.1-36.redhat_00013.1.el7eap.src",
"7Server-JBEAP-7.3:eap7-yasson-0:1.0.9-1.redhat_00001.1.el7eap.noarch",
"7Server-JBEAP-7.3:eap7-yasson-0:1.0.9-1.redhat_00001.1.el7eap.src"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "netty: possible request smuggling in HTTP/2 due missing validation"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…