Vulnerability-Lookup

CVE-2025-52999 (GCVE-0-2025-52999)

Vulnerability from cvelistv5 – Published: 2025-06-25 17:02 – Updated: 2025-06-25 18:04

Title

jackson-core Has Potential for StackoverflowError if user parses an input file that contains very deeply nested data

Summary

jackson-core contains core low-level incremental ("streaming") parser and generator abstractions used by Jackson Data Processor. In versions prior to 2.15.0, if a user parses an input file and it has deeply nested data, Jackson could end up throwing a StackoverflowError if the depth is particularly large. jackson-core 2.15.0 contains a configurable limit for how deep Jackson will traverse in an input document, defaulting to an allowable depth of 1000. jackson-core will throw a StreamConstraintsException if the limit is reached. jackson-databind also benefits from this change because it uses jackson-core to parse JSON inputs. As a workaround, users should avoid parsing input files from untrusted sources.

Severity

8.7 (High)


                        
                          CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

SSVC

Exploitation: none Automatable: yes Technical Impact: partial

CISA Coordinator (v2.0.3)

CWE

CWE-121 - Stack-based Buffer Overflow

Assigner

GitHub_M

References

2 references

URL	Tags
https://github.com/FasterXML/jackson-core/securit…	x_refsource_CONFIRM
https://github.com/FasterXML/jackson-core/pull/943	x_refsource_MISC

Impacted products

1 product

Vendor	Product	Version
FasterXML	jackson-core	Affected: < 2.15.0

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2025-52999",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-06-25T18:04:07.206576Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-06-25T18:04:23.296Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "jackson-core",
          "vendor": "FasterXML",
          "versions": [
            {
              "status": "affected",
              "version": "\u003c 2.15.0"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "jackson-core contains core low-level incremental (\"streaming\") parser and generator abstractions used by Jackson Data Processor. In versions prior to 2.15.0, if a user parses an input file and it has deeply nested data, Jackson could end up throwing a StackoverflowError if the depth is particularly large. jackson-core 2.15.0 contains a configurable limit for how deep Jackson will traverse in an input document, defaulting to an allowable depth of 1000. jackson-core will throw a StreamConstraintsException if the limit is reached. jackson-databind also benefits from this change because it uses jackson-core to parse JSON inputs. As a workaround, users should avoid parsing input files from untrusted sources."
        }
      ],
      "metrics": [
        {
          "cvssV4_0": {
            "attackComplexity": "LOW",
            "attackRequirements": "NONE",
            "attackVector": "NETWORK",
            "baseScore": 8.7,
            "baseSeverity": "HIGH",
            "privilegesRequired": "NONE",
            "subAvailabilityImpact": "NONE",
            "subConfidentialityImpact": "NONE",
            "subIntegrityImpact": "NONE",
            "userInteraction": "NONE",
            "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N",
            "version": "4.0",
            "vulnAvailabilityImpact": "HIGH",
            "vulnConfidentialityImpact": "NONE",
            "vulnIntegrityImpact": "NONE"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-121",
              "description": "CWE-121: Stack-based Buffer Overflow",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-06-25T17:02:57.428Z",
        "orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
        "shortName": "GitHub_M"
      },
      "references": [
        {
          "name": "https://github.com/FasterXML/jackson-core/security/advisories/GHSA-h46c-h94j-95f3",
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://github.com/FasterXML/jackson-core/security/advisories/GHSA-h46c-h94j-95f3"
        },
        {
          "name": "https://github.com/FasterXML/jackson-core/pull/943",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/FasterXML/jackson-core/pull/943"
        }
      ],
      "source": {
        "advisory": "GHSA-h46c-h94j-95f3",
        "discovery": "UNKNOWN"
      },
      "title": "jackson-core Has Potential for StackoverflowError if user parses an input file that contains very deeply nested data"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
    "assignerShortName": "GitHub_M",
    "cveId": "CVE-2025-52999",
    "datePublished": "2025-06-25T17:02:57.428Z",
    "dateReserved": "2025-06-24T03:50:36.795Z",
    "dateUpdated": "2025-06-25T18:04:23.296Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2025-52999",
      "date": "2026-06-05",
      "epss": "0.00252",
      "percentile": "0.48813"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2025-52999\",\"sourceIdentifier\":\"security-advisories@github.com\",\"published\":\"2025-06-25T17:15:39.820\",\"lastModified\":\"2025-06-26T18:57:43.670\",\"vulnStatus\":\"Awaiting Analysis\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"jackson-core contains core low-level incremental (\\\"streaming\\\") parser and generator abstractions used by Jackson Data Processor. In versions prior to 2.15.0, if a user parses an input file and it has deeply nested data, Jackson could end up throwing a StackoverflowError if the depth is particularly large. jackson-core 2.15.0 contains a configurable limit for how deep Jackson will traverse in an input document, defaulting to an allowable depth of 1000. jackson-core will throw a StreamConstraintsException if the limit is reached. jackson-databind also benefits from this change because it uses jackson-core to parse JSON inputs. As a workaround, users should avoid parsing input files from untrusted sources.\"},{\"lang\":\"es\",\"value\":\"jackson-core contiene las abstracciones principales del analizador incremental (\\\"streaming\\\") de bajo nivel y del generador utilizadas por Jackson Data Processor. En versiones anteriores a la 2.15.0, si un usuario analiza un archivo de entrada con datos profundamente anidados, Jackson pod\u00eda generar un error de Stackoverflow si la profundidad era excesiva. jackson-core 2.15.0 incluye un l\u00edmite configurable para la profundidad que Jackson recorrer\u00e1 en un documento de entrada, con una profundidad predeterminada de 1000. jackson-core generar\u00e1 una excepci\u00f3n StreamConstraintsException si se alcanza el l\u00edmite. jackson-databind tambi\u00e9n se beneficia de este cambio, ya que utiliza jackson-core para analizar las entradas JSON. Como soluci\u00f3n alternativa, se recomienda a los usuarios evitar analizar archivos de entrada de fuentes no confiables.\"}],\"metrics\":{\"cvssMetricV40\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"4.0\",\"vectorString\":\"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X\",\"baseScore\":8.7,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"attackRequirements\":\"NONE\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"vulnConfidentialityImpact\":\"NONE\",\"vulnIntegrityImpact\":\"NONE\",\"vulnAvailabilityImpact\":\"HIGH\",\"subConfidentialityImpact\":\"NONE\",\"subIntegrityImpact\":\"NONE\",\"subAvailabilityImpact\":\"NONE\",\"exploitMaturity\":\"NOT_DEFINED\",\"confidentialityRequirement\":\"NOT_DEFINED\",\"integrityRequirement\":\"NOT_DEFINED\",\"availabilityRequirement\":\"NOT_DEFINED\",\"modifiedAttackVector\":\"NOT_DEFINED\",\"modifiedAttackComplexity\":\"NOT_DEFINED\",\"modifiedAttackRequirements\":\"NOT_DEFINED\",\"modifiedPrivilegesRequired\":\"NOT_DEFINED\",\"modifiedUserInteraction\":\"NOT_DEFINED\",\"modifiedVulnConfidentialityImpact\":\"NOT_DEFINED\",\"modifiedVulnIntegrityImpact\":\"NOT_DEFINED\",\"modifiedVulnAvailabilityImpact\":\"NOT_DEFINED\",\"modifiedSubConfidentialityImpact\":\"NOT_DEFINED\",\"modifiedSubIntegrityImpact\":\"NOT_DEFINED\",\"modifiedSubAvailabilityImpact\":\"NOT_DEFINED\",\"Safety\":\"NOT_DEFINED\",\"Automatable\":\"NOT_DEFINED\",\"Recovery\":\"NOT_DEFINED\",\"valueDensity\":\"NOT_DEFINED\",\"vulnerabilityResponseEffort\":\"NOT_DEFINED\",\"providerUrgency\":\"NOT_DEFINED\"}}]},\"weaknesses\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-121\"}]}],\"references\":[{\"url\":\"https://github.com/FasterXML/jackson-core/pull/943\",\"source\":\"security-advisories@github.com\"},{\"url\":\"https://github.com/FasterXML/jackson-core/security/advisories/GHSA-h46c-h94j-95f3\",\"source\":\"security-advisories@github.com\"}]}}",
    "vulnrichment": {
      "containers": "{\"cna\": {\"title\": \"jackson-core Has Potential for StackoverflowError if user parses an input file that contains very deeply nested data\", \"problemTypes\": [{\"descriptions\": [{\"cweId\": \"CWE-121\", \"lang\": \"en\", \"description\": \"CWE-121: Stack-based Buffer Overflow\", \"type\": \"CWE\"}]}], \"metrics\": [{\"cvssV4_0\": {\"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"attackRequirements\": \"NONE\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"vulnConfidentialityImpact\": \"NONE\", \"vulnIntegrityImpact\": \"NONE\", \"vulnAvailabilityImpact\": \"HIGH\", \"subConfidentialityImpact\": \"NONE\", \"subIntegrityImpact\": \"NONE\", \"subAvailabilityImpact\": \"NONE\", \"baseScore\": 8.7, \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N\", \"version\": \"4.0\"}}], \"references\": [{\"name\": \"https://github.com/FasterXML/jackson-core/security/advisories/GHSA-h46c-h94j-95f3\", \"tags\": [\"x_refsource_CONFIRM\"], \"url\": \"https://github.com/FasterXML/jackson-core/security/advisories/GHSA-h46c-h94j-95f3\"}, {\"name\": \"https://github.com/FasterXML/jackson-core/pull/943\", \"tags\": [\"x_refsource_MISC\"], \"url\": \"https://github.com/FasterXML/jackson-core/pull/943\"}], \"affected\": [{\"vendor\": \"FasterXML\", \"product\": \"jackson-core\", \"versions\": [{\"version\": \"\u003c 2.15.0\", \"status\": \"affected\"}]}], \"providerMetadata\": {\"orgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"shortName\": \"GitHub_M\", \"dateUpdated\": \"2025-06-25T17:02:57.428Z\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"jackson-core contains core low-level incremental (\\\"streaming\\\") parser and generator abstractions used by Jackson Data Processor. In versions prior to 2.15.0, if a user parses an input file and it has deeply nested data, Jackson could end up throwing a StackoverflowError if the depth is particularly large. jackson-core 2.15.0 contains a configurable limit for how deep Jackson will traverse in an input document, defaulting to an allowable depth of 1000. jackson-core will throw a StreamConstraintsException if the limit is reached. jackson-databind also benefits from this change because it uses jackson-core to parse JSON inputs. As a workaround, users should avoid parsing input files from untrusted sources.\"}], \"source\": {\"advisory\": \"GHSA-h46c-h94j-95f3\", \"discovery\": \"UNKNOWN\"}}, \"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2025-52999\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"yes\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-06-25T18:04:07.206576Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-06-25T18:04:19.172Z\"}}]}",
      "cveMetadata": "{\"cveId\": \"CVE-2025-52999\", \"assignerOrgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"state\": \"PUBLISHED\", \"assignerShortName\": \"GitHub_M\", \"dateReserved\": \"2025-06-24T03:50:36.795Z\", \"datePublished\": \"2025-06-25T17:02:57.428Z\", \"dateUpdated\": \"2025-06-25T18:04:23.296Z\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }
  }
}

RHSA-2025:15717

Vulnerability from csaf_redhat - Published: 2025-09-11 19:39 - Updated: 2026-05-10 14:27

Summary

Red Hat Security Advisory: Red Hat Single Sign-On 7.6.12 security update

Severity

Important

Notes

Topic: A new security update is now available for Red Hat Single Sign-On 7.6 from the Customer Portal.

Details: Red Hat Single Sign-On 7.6 is a standalone server, based on the Keycloak project, that provides authentication and standards-based single sign-on capabilities for web and mobile applications. This update to Red Hat Single Sign-On 7.6.12 includes a security update with important impact. Security fixes: * jackson-core: jackson-core Potential StackoverflowError (CVE-2025-52999)

Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

CVE-2025-52999

A nested data handling flaw was found in Jackson Core. When parsing particularly deeply nested data structures, a StackoverflowError can occur.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-121 - Stack-based Buffer Overflow

Affected products

Fixed 1 product

Product	Identifier	Version	Remediation
Red Hat Single Sign-On 7.6.12 Red Hat / Red Hat Single Sign-On	`cpe:/a:redhat:red_hat_single_sign_on:7.6`	—	Vendor Fix fix Workaround

Threats

Impact Important

References

10 references

URL	Category
https://access.redhat.com/errata/RHSA-2025:15717	self
https://access.redhat.com/security/updates/classi…	external
https://bugzilla.redhat.com/show_bug.cgi?id=2374804	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2025-52999	self
https://bugzilla.redhat.com/show_bug.cgi?id=2374804	external
https://www.cve.org/CVERecord?id=CVE-2025-52999	external
https://nvd.nist.gov/vuln/detail/CVE-2025-52999	external
https://github.com/FasterXML/jackson-core/pull/943	external
https://github.com/FasterXML/jackson-core/securit…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "A new security update is now available for Red Hat Single Sign-On 7.6 from the Customer Portal.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Red Hat Single Sign-On 7.6 is a standalone server, based on the Keycloak project, that provides authentication and standards-based single sign-on capabilities for web and mobile applications.\n\nThis update to Red Hat Single Sign-On 7.6.12 includes a security update with important impact.\n\nSecurity fixes:\n* jackson-core: jackson-core Potential StackoverflowError (CVE-2025-52999)",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2025:15717",
        "url": "https://access.redhat.com/errata/RHSA-2025:15717"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "2374804",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2374804"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_15717.json"
      }
    ],
    "title": "Red Hat Security Advisory: Red Hat Single Sign-On 7.6.12 security update",
    "tracking": {
      "current_release_date": "2026-05-10T14:27:09+00:00",
      "generator": {
        "date": "2026-05-10T14:27:09+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.7.9"
        }
      },
      "id": "RHSA-2025:15717",
      "initial_release_date": "2025-09-11T19:39:47+00:00",
      "revision_history": [
        {
          "date": "2025-09-11T19:39:47+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2025-09-11T19:39:47+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-05-10T14:27:09+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Single Sign-On 7.6.12",
                "product": {
                  "name": "Red Hat Single Sign-On 7.6.12",
                  "product_id": "Red Hat Single Sign-On 7.6.12",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:red_hat_single_sign_on:7.6"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Single Sign-On"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2025-52999",
      "cwe": {
        "id": "CWE-121",
        "name": "Stack-based Buffer Overflow"
      },
      "discovery_date": "2025-06-25T18:00:54.693716+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2374804"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A nested data handling flaw was found in Jackson Core. When parsing particularly deeply nested data structures, a StackoverflowError can occur.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "com.fasterxml.jackson.core/jackson-core: jackson-core Potential StackoverflowError",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat Single Sign-On 7.6.12"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-52999"
        },
        {
          "category": "external",
          "summary": "RHBZ#2374804",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2374804"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-52999",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-52999"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-52999",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-52999"
        },
        {
          "category": "external",
          "summary": "https://github.com/FasterXML/jackson-core/pull/943",
          "url": "https://github.com/FasterXML/jackson-core/pull/943"
        },
        {
          "category": "external",
          "summary": "https://github.com/FasterXML/jackson-core/security/advisories/GHSA-h46c-h94j-95f3",
          "url": "https://github.com/FasterXML/jackson-core/security/advisories/GHSA-h46c-h94j-95f3"
        }
      ],
      "release_date": "2025-06-25T17:02:57.428000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-09-11T19:39:47+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "Red Hat Single Sign-On 7.6.12"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:15717"
        },
        {
          "category": "workaround",
          "details": "To mitigate this vulnerability, the recommendation is to avoid parsing input files from untrusted sources that may have excessively deep nested data structures; anything with a depth over 1000.",
          "product_ids": [
            "Red Hat Single Sign-On 7.6.12"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "Red Hat Single Sign-On 7.6.12"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "com.fasterxml.jackson.core/jackson-core: jackson-core Potential StackoverflowError"
    }
  ]
}

RHSA-2025:15847

Vulnerability from csaf_redhat - Published: 2025-09-15 16:27 - Updated: 2026-06-02 21:41

Summary

Red Hat Security Advisory: Red Hat OpenShift Dev Spaces 3.23.0 Release.

Severity

Important

Notes

Topic: Red Hat OpenShift Dev Spaces 3.23.0 has been released.

Details: Red Hat OpenShift Dev Spaces provides a cloud developer workspace server and a browser-based IDE built for teams and organizations. Dev Spaces runs in OpenShift and is well-suited for container-based development. The 3.23 release is based on Eclipse Che 7.107 and uses the DevWorkspace engine to provide support for workspaces based on devfile v2.1 and v2.2. Users still using the v1 standard should migrate as soon as possible. https://devfile.io/docs/2.2.0/migrating-to-devfile-v2 Dev Spaces supports OpenShift EUS releases v4.14 and higher. Users are expected to update to supported OpenShift releases in order to continue to get Dev Spaces updates. https://access.redhat.com/support/policy/updates/openshift#crw

CVE-2024-10005

A vulnerability was found in HashiCorp Consul. Due to a lack of path normalization, URL paths in L7 traffic intentions can be exploited to bypass permissions defined in the intentions.

8.1 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:15a4a74016cdb94aece0bc651edd221b72a9202e5fd414d30ae969707cb5b4c9_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:5361443dee5415dc554d79e2fa23a6b336f1d8ea89fb20a4caa72f70574b939b_s390x	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:a152f1e75dd10ba692587a4e702d59cd1c5adcde8b97390f58742270edf85d33_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:f17428eced9d6bec1eaaa1510b68250824d3ace2f66af7f31fbf7327ca11540c_arm64	—	Vendor Fix fix Workaround

Known not affected 50 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/idea-rhel9@sha256:df24ebb239a2cc0d4543309f51a7268c7d524d428a536e0b3443c51089c3f87e_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:0dc291e3dc58d285d054a35b480d14c3912777e14fd643915b8ceabd178ad6bf_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:ac5b3e78470c747377dbc9ecb6e0680d724086c331955ed5471b74d01155ece8_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:cd1ee1d15cafe77bbf8e283cee2cde88dcdfb59c9545867a047cf4b42089aa85_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:d0b17cb5f9a530ca959058fe926b3f5c42539487e23587d51948f49d7a38cf5d_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:2bfe5265856abdd8cb490bde852d4e992f1793684f003d1ef53776fe69d790d7_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:32d9568317c55235f75c4d0e1c98de6d4af252cbdd116ed2355025cbaeac862f_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:48b99d167a5c54a98e69bba441bb5b70db2ffe065d3f8f8d23ecfed7b813336e_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:8b2b33e91756bbd1c7ed6905e00176b9d55a4e13aee2f84862bc571a8a82f113_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:43cdf063e9a6aa5f84233c8bd850a711b5d5fae8a7795803609fec07d189ca05_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:7ad9073c0a768f170cf8d4311ea35ec1caccfdefdf6d1dccbc10ed01cdeafd16_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:934c224a59086c689be1839b6846a0984370a78a8adc8510fa692f5215bb6182_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:d2bfcb27baf36e569eca4f7c85f458a180d7938616413a4cf8e10cb329e6a150_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:78dabed4a5fc1eb3246778e6ee6e1a543829cf88d0b03f0ccccf101c41a7bdda_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:7c98501fee1297a24caa77d325f6bfd7f91192589f0aa22d47d9766e8219c749_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:905d45518e20ea10daa3a35ea2f2201a6f762a16f9b4829ce37b7396d493ac59_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:91e064bccc3f7320844763fc136cb4c650db40190e01edebe16135bcc00627ac_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:a48dd94d5616183843ba939146b7e4d985210cdd902038ff80ff6df3df3d74ca_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:2b18f2cf31e0914762cc6e99c9797c24a19db69ca08bc9983bc2aacc85ee7024_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:38c9b56aa9c2a5153e01ffc1edb399247ed1937b9382ac4f0fb2beae4c27f69a_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:59f85768c28401783b9475ce21088e3d8fbf6bcd64bb49e3a243c881ac6b546c_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f5b515ecaea7d542ac18ea5a056c99fe84ca2ac25fa3904bdc50a78ecf47541f_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8cdf016c4d61bce4f244415ae192fe1647ef517ba1690f2009b5b8e1104c72a7_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:a69c6f8b091d11c69b6864edc6973c6f5f4515eb3a1923bf51fdb971315c28b0_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ad5f4d1b7f712416bb62785375ce15ef1a5cb3f1a77226899abc8aba32a11623_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c9808efcb221c10d78bdf663e3b5e3d5d281bf59702be049090fc1fa0511b078_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:13f0ec3ce663f6701501e82bbb508549e149588eedb0982729a59d98c88d0ba0_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:43d9679eb3ac8d5287863137f2d698d814a2fbc2fbd6a6aacba11240cd76d40c_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:d23a4d9f0967f53d15fefda63e972e035d23aebe819dd11a6cec9beceacd8997_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:e32fc2e1c50fb1110a835e29e6e360b4127ed84fca98c6276b0b171ccd6cb223_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:1168d897f16b276ba5a6e6170e31fbe1499a980666aed493b2fe27036471ba55_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:15300e7d45a8e2093ef6f33303174f7361de7d9b648f8c9f2cf06f8ba3c56c76_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:6ccd50b0049e4ba0f9d4ea8779b17c6acc95395490579fbaa3b9e9084ac7d314_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e762a9019e4b5afd27331ad519a5b63a2bba3c7eb522533e0932e97c2879a36e_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f4c5323da09593280fc61c2df7fced0f6dc9d3ca322d27069f51334c3d18dae_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:918c66e3ea09e481c38673314021ef1aa6b46afc9dcb115b9d19b6819c5db4a7_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:cc4f2ce5926da93eaf81b0935d3171d81a310ec97e3c08bbbf6599752446810d_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f2bcd5123e4fad7aa4ad54f2819a1beb75d844302aa162e0335c1a0191fe5346_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:27b7eef1c64e432dbe15e92cf745a951aebdc9b379d9c02dbfef6df296c39cd1_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:3cfcd5f9ab8ec42cefd8fab992ecb493a9d14126bdf53ba542ffa4b51fd1684c_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:641354f1d56627f49af3e32ad963616b69aac644ac33d664e7fe29de32fe43b3_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:fa5400aecca1a46c4b98d00c749ea56d6187ced20952f02e4dd1c12e2467117e_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:42d8388fafeb7c188b03389c92561da4068f91a8cc2343f33d967939342e4f64_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:a86e59cedc67e9fcee3412afa157572a2ab815a3d9e18da03ada502f7313cc80_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b60b4b992b89b82620e5ea618350a97434b272d1f023200dcbeae642612e3569_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ee9d72769b916b350307df495022e04add1fbcd67c1e62757fd316e7f1dd60ae_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:53618eb41967e64660e87e5ad6ce8f5d9803aed9bb48da8898aaefb4d0a4632d_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:65176a94e684c200beef8f25016982ab212bdcd10d31b54a831310e20c026f77_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:a4ca99dc99b864ef805f3e8d997f0567168c809433f16ec23540c0b8ead96216_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:cc31b6212f77e03383e615ee30fd97419806c3841f18d2f6c950d82cdd21e872_ppc64le	—	Workaround

Threats

Impact Low

CVE-2024-10006

A flaw was found in HashiCorp Consul and Consul Enterprise. The server response does not explicitly set a Content-Type HTTP header, allowing user-provided inputs to be misinterpreted and can lead to reflected cross-site scripting (XSS).

8.3 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L

CWE-644 - Improper Neutralization of HTTP Headers for Scripting Syntax

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:15a4a74016cdb94aece0bc651edd221b72a9202e5fd414d30ae969707cb5b4c9_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:5361443dee5415dc554d79e2fa23a6b336f1d8ea89fb20a4caa72f70574b939b_s390x	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:a152f1e75dd10ba692587a4e702d59cd1c5adcde8b97390f58742270edf85d33_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:f17428eced9d6bec1eaaa1510b68250824d3ace2f66af7f31fbf7327ca11540c_arm64	—	Vendor Fix fix Workaround

Known not affected 50 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/idea-rhel9@sha256:df24ebb239a2cc0d4543309f51a7268c7d524d428a536e0b3443c51089c3f87e_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:0dc291e3dc58d285d054a35b480d14c3912777e14fd643915b8ceabd178ad6bf_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:ac5b3e78470c747377dbc9ecb6e0680d724086c331955ed5471b74d01155ece8_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:cd1ee1d15cafe77bbf8e283cee2cde88dcdfb59c9545867a047cf4b42089aa85_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:d0b17cb5f9a530ca959058fe926b3f5c42539487e23587d51948f49d7a38cf5d_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:2bfe5265856abdd8cb490bde852d4e992f1793684f003d1ef53776fe69d790d7_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:32d9568317c55235f75c4d0e1c98de6d4af252cbdd116ed2355025cbaeac862f_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:48b99d167a5c54a98e69bba441bb5b70db2ffe065d3f8f8d23ecfed7b813336e_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:8b2b33e91756bbd1c7ed6905e00176b9d55a4e13aee2f84862bc571a8a82f113_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:43cdf063e9a6aa5f84233c8bd850a711b5d5fae8a7795803609fec07d189ca05_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:7ad9073c0a768f170cf8d4311ea35ec1caccfdefdf6d1dccbc10ed01cdeafd16_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:934c224a59086c689be1839b6846a0984370a78a8adc8510fa692f5215bb6182_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:d2bfcb27baf36e569eca4f7c85f458a180d7938616413a4cf8e10cb329e6a150_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:78dabed4a5fc1eb3246778e6ee6e1a543829cf88d0b03f0ccccf101c41a7bdda_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:7c98501fee1297a24caa77d325f6bfd7f91192589f0aa22d47d9766e8219c749_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:905d45518e20ea10daa3a35ea2f2201a6f762a16f9b4829ce37b7396d493ac59_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:91e064bccc3f7320844763fc136cb4c650db40190e01edebe16135bcc00627ac_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:a48dd94d5616183843ba939146b7e4d985210cdd902038ff80ff6df3df3d74ca_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:2b18f2cf31e0914762cc6e99c9797c24a19db69ca08bc9983bc2aacc85ee7024_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:38c9b56aa9c2a5153e01ffc1edb399247ed1937b9382ac4f0fb2beae4c27f69a_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:59f85768c28401783b9475ce21088e3d8fbf6bcd64bb49e3a243c881ac6b546c_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f5b515ecaea7d542ac18ea5a056c99fe84ca2ac25fa3904bdc50a78ecf47541f_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8cdf016c4d61bce4f244415ae192fe1647ef517ba1690f2009b5b8e1104c72a7_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:a69c6f8b091d11c69b6864edc6973c6f5f4515eb3a1923bf51fdb971315c28b0_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ad5f4d1b7f712416bb62785375ce15ef1a5cb3f1a77226899abc8aba32a11623_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c9808efcb221c10d78bdf663e3b5e3d5d281bf59702be049090fc1fa0511b078_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:13f0ec3ce663f6701501e82bbb508549e149588eedb0982729a59d98c88d0ba0_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:43d9679eb3ac8d5287863137f2d698d814a2fbc2fbd6a6aacba11240cd76d40c_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:d23a4d9f0967f53d15fefda63e972e035d23aebe819dd11a6cec9beceacd8997_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:e32fc2e1c50fb1110a835e29e6e360b4127ed84fca98c6276b0b171ccd6cb223_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:1168d897f16b276ba5a6e6170e31fbe1499a980666aed493b2fe27036471ba55_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:15300e7d45a8e2093ef6f33303174f7361de7d9b648f8c9f2cf06f8ba3c56c76_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:6ccd50b0049e4ba0f9d4ea8779b17c6acc95395490579fbaa3b9e9084ac7d314_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e762a9019e4b5afd27331ad519a5b63a2bba3c7eb522533e0932e97c2879a36e_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f4c5323da09593280fc61c2df7fced0f6dc9d3ca322d27069f51334c3d18dae_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:918c66e3ea09e481c38673314021ef1aa6b46afc9dcb115b9d19b6819c5db4a7_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:cc4f2ce5926da93eaf81b0935d3171d81a310ec97e3c08bbbf6599752446810d_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f2bcd5123e4fad7aa4ad54f2819a1beb75d844302aa162e0335c1a0191fe5346_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:27b7eef1c64e432dbe15e92cf745a951aebdc9b379d9c02dbfef6df296c39cd1_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:3cfcd5f9ab8ec42cefd8fab992ecb493a9d14126bdf53ba542ffa4b51fd1684c_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:641354f1d56627f49af3e32ad963616b69aac644ac33d664e7fe29de32fe43b3_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:fa5400aecca1a46c4b98d00c749ea56d6187ced20952f02e4dd1c12e2467117e_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:42d8388fafeb7c188b03389c92561da4068f91a8cc2343f33d967939342e4f64_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:a86e59cedc67e9fcee3412afa157572a2ab815a3d9e18da03ada502f7313cc80_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b60b4b992b89b82620e5ea618350a97434b272d1f023200dcbeae642612e3569_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ee9d72769b916b350307df495022e04add1fbcd67c1e62757fd316e7f1dd60ae_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:53618eb41967e64660e87e5ad6ce8f5d9803aed9bb48da8898aaefb4d0a4632d_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:65176a94e684c200beef8f25016982ab212bdcd10d31b54a831310e20c026f77_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:a4ca99dc99b864ef805f3e8d997f0567168c809433f16ec23540c0b8ead96216_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:cc31b6212f77e03383e615ee30fd97419806c3841f18d2f6c950d82cdd21e872_ppc64le	—	Workaround

Threats

Impact Important

CVE-2024-22189

A flaw was found in quic-go. This issue may allow an attacker to trigger a denial of service by sending a large number of NEW_CONNECTION_ID frames that retire old connection IDs. The receiver is supposed to respond to each retirement frame with a RETIRE_CONNECTION_ID frame, but the attacker can prevent the receiver from sending out the vast majority of these RETIRE_CONNECTION_ID frames by selectively acknowledging received packets and collapsing the peers congestion window and by manipulating the peer's RTT estimate.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-770 - Allocation of Resources Without Limits or Throttling

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:15a4a74016cdb94aece0bc651edd221b72a9202e5fd414d30ae969707cb5b4c9_amd64	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:5361443dee5415dc554d79e2fa23a6b336f1d8ea89fb20a4caa72f70574b939b_s390x	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:a152f1e75dd10ba692587a4e702d59cd1c5adcde8b97390f58742270edf85d33_ppc64le	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:f17428eced9d6bec1eaaa1510b68250824d3ace2f66af7f31fbf7327ca11540c_arm64	—	Vendor Fix fix

Known not affected 50 products

Product	Identifier	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/idea-rhel9@sha256:df24ebb239a2cc0d4543309f51a7268c7d524d428a536e0b3443c51089c3f87e_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:0dc291e3dc58d285d054a35b480d14c3912777e14fd643915b8ceabd178ad6bf_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:ac5b3e78470c747377dbc9ecb6e0680d724086c331955ed5471b74d01155ece8_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:cd1ee1d15cafe77bbf8e283cee2cde88dcdfb59c9545867a047cf4b42089aa85_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:d0b17cb5f9a530ca959058fe926b3f5c42539487e23587d51948f49d7a38cf5d_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:2bfe5265856abdd8cb490bde852d4e992f1793684f003d1ef53776fe69d790d7_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:32d9568317c55235f75c4d0e1c98de6d4af252cbdd116ed2355025cbaeac862f_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:48b99d167a5c54a98e69bba441bb5b70db2ffe065d3f8f8d23ecfed7b813336e_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:8b2b33e91756bbd1c7ed6905e00176b9d55a4e13aee2f84862bc571a8a82f113_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:43cdf063e9a6aa5f84233c8bd850a711b5d5fae8a7795803609fec07d189ca05_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:7ad9073c0a768f170cf8d4311ea35ec1caccfdefdf6d1dccbc10ed01cdeafd16_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:934c224a59086c689be1839b6846a0984370a78a8adc8510fa692f5215bb6182_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:d2bfcb27baf36e569eca4f7c85f458a180d7938616413a4cf8e10cb329e6a150_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:78dabed4a5fc1eb3246778e6ee6e1a543829cf88d0b03f0ccccf101c41a7bdda_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:7c98501fee1297a24caa77d325f6bfd7f91192589f0aa22d47d9766e8219c749_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:905d45518e20ea10daa3a35ea2f2201a6f762a16f9b4829ce37b7396d493ac59_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:91e064bccc3f7320844763fc136cb4c650db40190e01edebe16135bcc00627ac_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:a48dd94d5616183843ba939146b7e4d985210cdd902038ff80ff6df3df3d74ca_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:2b18f2cf31e0914762cc6e99c9797c24a19db69ca08bc9983bc2aacc85ee7024_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:38c9b56aa9c2a5153e01ffc1edb399247ed1937b9382ac4f0fb2beae4c27f69a_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:59f85768c28401783b9475ce21088e3d8fbf6bcd64bb49e3a243c881ac6b546c_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f5b515ecaea7d542ac18ea5a056c99fe84ca2ac25fa3904bdc50a78ecf47541f_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8cdf016c4d61bce4f244415ae192fe1647ef517ba1690f2009b5b8e1104c72a7_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:a69c6f8b091d11c69b6864edc6973c6f5f4515eb3a1923bf51fdb971315c28b0_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ad5f4d1b7f712416bb62785375ce15ef1a5cb3f1a77226899abc8aba32a11623_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c9808efcb221c10d78bdf663e3b5e3d5d281bf59702be049090fc1fa0511b078_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:13f0ec3ce663f6701501e82bbb508549e149588eedb0982729a59d98c88d0ba0_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:43d9679eb3ac8d5287863137f2d698d814a2fbc2fbd6a6aacba11240cd76d40c_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:d23a4d9f0967f53d15fefda63e972e035d23aebe819dd11a6cec9beceacd8997_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:e32fc2e1c50fb1110a835e29e6e360b4127ed84fca98c6276b0b171ccd6cb223_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:1168d897f16b276ba5a6e6170e31fbe1499a980666aed493b2fe27036471ba55_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:15300e7d45a8e2093ef6f33303174f7361de7d9b648f8c9f2cf06f8ba3c56c76_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:6ccd50b0049e4ba0f9d4ea8779b17c6acc95395490579fbaa3b9e9084ac7d314_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e762a9019e4b5afd27331ad519a5b63a2bba3c7eb522533e0932e97c2879a36e_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f4c5323da09593280fc61c2df7fced0f6dc9d3ca322d27069f51334c3d18dae_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:918c66e3ea09e481c38673314021ef1aa6b46afc9dcb115b9d19b6819c5db4a7_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:cc4f2ce5926da93eaf81b0935d3171d81a310ec97e3c08bbbf6599752446810d_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f2bcd5123e4fad7aa4ad54f2819a1beb75d844302aa162e0335c1a0191fe5346_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:27b7eef1c64e432dbe15e92cf745a951aebdc9b379d9c02dbfef6df296c39cd1_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:3cfcd5f9ab8ec42cefd8fab992ecb493a9d14126bdf53ba542ffa4b51fd1684c_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:641354f1d56627f49af3e32ad963616b69aac644ac33d664e7fe29de32fe43b3_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:fa5400aecca1a46c4b98d00c749ea56d6187ced20952f02e4dd1c12e2467117e_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:42d8388fafeb7c188b03389c92561da4068f91a8cc2343f33d967939342e4f64_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:a86e59cedc67e9fcee3412afa157572a2ab815a3d9e18da03ada502f7313cc80_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b60b4b992b89b82620e5ea618350a97434b272d1f023200dcbeae642612e3569_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ee9d72769b916b350307df495022e04add1fbcd67c1e62757fd316e7f1dd60ae_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:53618eb41967e64660e87e5ad6ce8f5d9803aed9bb48da8898aaefb4d0a4632d_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:65176a94e684c200beef8f25016982ab212bdcd10d31b54a831310e20c026f77_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:a4ca99dc99b864ef805f3e8d997f0567168c809433f16ec23540c0b8ead96216_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:cc31b6212f77e03383e615ee30fd97419806c3841f18d2f6c950d82cdd21e872_ppc64le		—

Threats

Impact Moderate

CVE-2024-24789

A flaw was found in Golang. The ZIP implementation of the Go language archive/zip library behaves differently than the rest of the ZIP file format implementations. When handling ZIP files with a corrupted central directory record, the library skips over the invalid record and processes the next valid one. This flaw allows a malicious user to access hidden information or files inside maliciously crafted ZIP files.

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

CWE-20 - Improper Input Validation

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:15a4a74016cdb94aece0bc651edd221b72a9202e5fd414d30ae969707cb5b4c9_amd64	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:5361443dee5415dc554d79e2fa23a6b336f1d8ea89fb20a4caa72f70574b939b_s390x	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:a152f1e75dd10ba692587a4e702d59cd1c5adcde8b97390f58742270edf85d33_ppc64le	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:f17428eced9d6bec1eaaa1510b68250824d3ace2f66af7f31fbf7327ca11540c_arm64	—	Vendor Fix fix

Known not affected 50 products

Product	Identifier	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/idea-rhel9@sha256:df24ebb239a2cc0d4543309f51a7268c7d524d428a536e0b3443c51089c3f87e_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:0dc291e3dc58d285d054a35b480d14c3912777e14fd643915b8ceabd178ad6bf_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:ac5b3e78470c747377dbc9ecb6e0680d724086c331955ed5471b74d01155ece8_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:cd1ee1d15cafe77bbf8e283cee2cde88dcdfb59c9545867a047cf4b42089aa85_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:d0b17cb5f9a530ca959058fe926b3f5c42539487e23587d51948f49d7a38cf5d_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:2bfe5265856abdd8cb490bde852d4e992f1793684f003d1ef53776fe69d790d7_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:32d9568317c55235f75c4d0e1c98de6d4af252cbdd116ed2355025cbaeac862f_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:48b99d167a5c54a98e69bba441bb5b70db2ffe065d3f8f8d23ecfed7b813336e_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:8b2b33e91756bbd1c7ed6905e00176b9d55a4e13aee2f84862bc571a8a82f113_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:43cdf063e9a6aa5f84233c8bd850a711b5d5fae8a7795803609fec07d189ca05_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:7ad9073c0a768f170cf8d4311ea35ec1caccfdefdf6d1dccbc10ed01cdeafd16_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:934c224a59086c689be1839b6846a0984370a78a8adc8510fa692f5215bb6182_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:d2bfcb27baf36e569eca4f7c85f458a180d7938616413a4cf8e10cb329e6a150_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:78dabed4a5fc1eb3246778e6ee6e1a543829cf88d0b03f0ccccf101c41a7bdda_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:7c98501fee1297a24caa77d325f6bfd7f91192589f0aa22d47d9766e8219c749_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:905d45518e20ea10daa3a35ea2f2201a6f762a16f9b4829ce37b7396d493ac59_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:91e064bccc3f7320844763fc136cb4c650db40190e01edebe16135bcc00627ac_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:a48dd94d5616183843ba939146b7e4d985210cdd902038ff80ff6df3df3d74ca_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:2b18f2cf31e0914762cc6e99c9797c24a19db69ca08bc9983bc2aacc85ee7024_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:38c9b56aa9c2a5153e01ffc1edb399247ed1937b9382ac4f0fb2beae4c27f69a_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:59f85768c28401783b9475ce21088e3d8fbf6bcd64bb49e3a243c881ac6b546c_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f5b515ecaea7d542ac18ea5a056c99fe84ca2ac25fa3904bdc50a78ecf47541f_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8cdf016c4d61bce4f244415ae192fe1647ef517ba1690f2009b5b8e1104c72a7_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:a69c6f8b091d11c69b6864edc6973c6f5f4515eb3a1923bf51fdb971315c28b0_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ad5f4d1b7f712416bb62785375ce15ef1a5cb3f1a77226899abc8aba32a11623_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c9808efcb221c10d78bdf663e3b5e3d5d281bf59702be049090fc1fa0511b078_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:13f0ec3ce663f6701501e82bbb508549e149588eedb0982729a59d98c88d0ba0_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:43d9679eb3ac8d5287863137f2d698d814a2fbc2fbd6a6aacba11240cd76d40c_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:d23a4d9f0967f53d15fefda63e972e035d23aebe819dd11a6cec9beceacd8997_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:e32fc2e1c50fb1110a835e29e6e360b4127ed84fca98c6276b0b171ccd6cb223_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:1168d897f16b276ba5a6e6170e31fbe1499a980666aed493b2fe27036471ba55_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:15300e7d45a8e2093ef6f33303174f7361de7d9b648f8c9f2cf06f8ba3c56c76_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:6ccd50b0049e4ba0f9d4ea8779b17c6acc95395490579fbaa3b9e9084ac7d314_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e762a9019e4b5afd27331ad519a5b63a2bba3c7eb522533e0932e97c2879a36e_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f4c5323da09593280fc61c2df7fced0f6dc9d3ca322d27069f51334c3d18dae_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:918c66e3ea09e481c38673314021ef1aa6b46afc9dcb115b9d19b6819c5db4a7_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:cc4f2ce5926da93eaf81b0935d3171d81a310ec97e3c08bbbf6599752446810d_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f2bcd5123e4fad7aa4ad54f2819a1beb75d844302aa162e0335c1a0191fe5346_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:27b7eef1c64e432dbe15e92cf745a951aebdc9b379d9c02dbfef6df296c39cd1_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:3cfcd5f9ab8ec42cefd8fab992ecb493a9d14126bdf53ba542ffa4b51fd1684c_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:641354f1d56627f49af3e32ad963616b69aac644ac33d664e7fe29de32fe43b3_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:fa5400aecca1a46c4b98d00c749ea56d6187ced20952f02e4dd1c12e2467117e_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:42d8388fafeb7c188b03389c92561da4068f91a8cc2343f33d967939342e4f64_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:a86e59cedc67e9fcee3412afa157572a2ab815a3d9e18da03ada502f7313cc80_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b60b4b992b89b82620e5ea618350a97434b272d1f023200dcbeae642612e3569_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ee9d72769b916b350307df495022e04add1fbcd67c1e62757fd316e7f1dd60ae_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:53618eb41967e64660e87e5ad6ce8f5d9803aed9bb48da8898aaefb4d0a4632d_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:65176a94e684c200beef8f25016982ab212bdcd10d31b54a831310e20c026f77_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:a4ca99dc99b864ef805f3e8d997f0567168c809433f16ec23540c0b8ead96216_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:cc31b6212f77e03383e615ee30fd97419806c3841f18d2f6c950d82cdd21e872_ppc64le		—

Threats

Impact Moderate

CVE-2024-28869

An improper handling of exceptional conditions vulnerability was found in Traefik. In affected versions, sending a GET request to any Traefik endpoint with the "Content-length" request header results in an indefinite hang with the default configuration, resulting in a denial of service.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-755 - Improper Handling of Exceptional Conditions

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:15a4a74016cdb94aece0bc651edd221b72a9202e5fd414d30ae969707cb5b4c9_amd64	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:5361443dee5415dc554d79e2fa23a6b336f1d8ea89fb20a4caa72f70574b939b_s390x	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:a152f1e75dd10ba692587a4e702d59cd1c5adcde8b97390f58742270edf85d33_ppc64le	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:f17428eced9d6bec1eaaa1510b68250824d3ace2f66af7f31fbf7327ca11540c_arm64	—	Vendor Fix fix

Known not affected 50 products

Product	Identifier	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/idea-rhel9@sha256:df24ebb239a2cc0d4543309f51a7268c7d524d428a536e0b3443c51089c3f87e_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:0dc291e3dc58d285d054a35b480d14c3912777e14fd643915b8ceabd178ad6bf_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:ac5b3e78470c747377dbc9ecb6e0680d724086c331955ed5471b74d01155ece8_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:cd1ee1d15cafe77bbf8e283cee2cde88dcdfb59c9545867a047cf4b42089aa85_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:d0b17cb5f9a530ca959058fe926b3f5c42539487e23587d51948f49d7a38cf5d_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:2bfe5265856abdd8cb490bde852d4e992f1793684f003d1ef53776fe69d790d7_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:32d9568317c55235f75c4d0e1c98de6d4af252cbdd116ed2355025cbaeac862f_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:48b99d167a5c54a98e69bba441bb5b70db2ffe065d3f8f8d23ecfed7b813336e_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:8b2b33e91756bbd1c7ed6905e00176b9d55a4e13aee2f84862bc571a8a82f113_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:43cdf063e9a6aa5f84233c8bd850a711b5d5fae8a7795803609fec07d189ca05_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:7ad9073c0a768f170cf8d4311ea35ec1caccfdefdf6d1dccbc10ed01cdeafd16_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:934c224a59086c689be1839b6846a0984370a78a8adc8510fa692f5215bb6182_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:d2bfcb27baf36e569eca4f7c85f458a180d7938616413a4cf8e10cb329e6a150_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:78dabed4a5fc1eb3246778e6ee6e1a543829cf88d0b03f0ccccf101c41a7bdda_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:7c98501fee1297a24caa77d325f6bfd7f91192589f0aa22d47d9766e8219c749_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:905d45518e20ea10daa3a35ea2f2201a6f762a16f9b4829ce37b7396d493ac59_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:91e064bccc3f7320844763fc136cb4c650db40190e01edebe16135bcc00627ac_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:a48dd94d5616183843ba939146b7e4d985210cdd902038ff80ff6df3df3d74ca_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:2b18f2cf31e0914762cc6e99c9797c24a19db69ca08bc9983bc2aacc85ee7024_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:38c9b56aa9c2a5153e01ffc1edb399247ed1937b9382ac4f0fb2beae4c27f69a_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:59f85768c28401783b9475ce21088e3d8fbf6bcd64bb49e3a243c881ac6b546c_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f5b515ecaea7d542ac18ea5a056c99fe84ca2ac25fa3904bdc50a78ecf47541f_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8cdf016c4d61bce4f244415ae192fe1647ef517ba1690f2009b5b8e1104c72a7_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:a69c6f8b091d11c69b6864edc6973c6f5f4515eb3a1923bf51fdb971315c28b0_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ad5f4d1b7f712416bb62785375ce15ef1a5cb3f1a77226899abc8aba32a11623_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c9808efcb221c10d78bdf663e3b5e3d5d281bf59702be049090fc1fa0511b078_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:13f0ec3ce663f6701501e82bbb508549e149588eedb0982729a59d98c88d0ba0_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:43d9679eb3ac8d5287863137f2d698d814a2fbc2fbd6a6aacba11240cd76d40c_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:d23a4d9f0967f53d15fefda63e972e035d23aebe819dd11a6cec9beceacd8997_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:e32fc2e1c50fb1110a835e29e6e360b4127ed84fca98c6276b0b171ccd6cb223_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:1168d897f16b276ba5a6e6170e31fbe1499a980666aed493b2fe27036471ba55_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:15300e7d45a8e2093ef6f33303174f7361de7d9b648f8c9f2cf06f8ba3c56c76_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:6ccd50b0049e4ba0f9d4ea8779b17c6acc95395490579fbaa3b9e9084ac7d314_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e762a9019e4b5afd27331ad519a5b63a2bba3c7eb522533e0932e97c2879a36e_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f4c5323da09593280fc61c2df7fced0f6dc9d3ca322d27069f51334c3d18dae_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:918c66e3ea09e481c38673314021ef1aa6b46afc9dcb115b9d19b6819c5db4a7_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:cc4f2ce5926da93eaf81b0935d3171d81a310ec97e3c08bbbf6599752446810d_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f2bcd5123e4fad7aa4ad54f2819a1beb75d844302aa162e0335c1a0191fe5346_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:27b7eef1c64e432dbe15e92cf745a951aebdc9b379d9c02dbfef6df296c39cd1_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:3cfcd5f9ab8ec42cefd8fab992ecb493a9d14126bdf53ba542ffa4b51fd1684c_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:641354f1d56627f49af3e32ad963616b69aac644ac33d664e7fe29de32fe43b3_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:fa5400aecca1a46c4b98d00c749ea56d6187ced20952f02e4dd1c12e2467117e_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:42d8388fafeb7c188b03389c92561da4068f91a8cc2343f33d967939342e4f64_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:a86e59cedc67e9fcee3412afa157572a2ab815a3d9e18da03ada502f7313cc80_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b60b4b992b89b82620e5ea618350a97434b272d1f023200dcbeae642612e3569_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ee9d72769b916b350307df495022e04add1fbcd67c1e62757fd316e7f1dd60ae_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:53618eb41967e64660e87e5ad6ce8f5d9803aed9bb48da8898aaefb4d0a4632d_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:65176a94e684c200beef8f25016982ab212bdcd10d31b54a831310e20c026f77_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:a4ca99dc99b864ef805f3e8d997f0567168c809433f16ec23540c0b8ead96216_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:cc31b6212f77e03383e615ee30fd97419806c3841f18d2f6c950d82cdd21e872_ppc64le		—

Threats

Impact Moderate

CVE-2024-39321

An authorization bypass vulnerability was found in Traefik. This flaw allows bypassing IP allow-lists via HTTP/3 early data requests in QUIC 0-RTT handshakes sent with spoofed IP addresses.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

CWE-639 - Authorization Bypass Through User-Controlled Key

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:15a4a74016cdb94aece0bc651edd221b72a9202e5fd414d30ae969707cb5b4c9_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:5361443dee5415dc554d79e2fa23a6b336f1d8ea89fb20a4caa72f70574b939b_s390x	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:a152f1e75dd10ba692587a4e702d59cd1c5adcde8b97390f58742270edf85d33_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:f17428eced9d6bec1eaaa1510b68250824d3ace2f66af7f31fbf7327ca11540c_arm64	—	Vendor Fix fix Workaround

Known not affected 50 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/idea-rhel9@sha256:df24ebb239a2cc0d4543309f51a7268c7d524d428a536e0b3443c51089c3f87e_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:0dc291e3dc58d285d054a35b480d14c3912777e14fd643915b8ceabd178ad6bf_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:ac5b3e78470c747377dbc9ecb6e0680d724086c331955ed5471b74d01155ece8_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:cd1ee1d15cafe77bbf8e283cee2cde88dcdfb59c9545867a047cf4b42089aa85_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:d0b17cb5f9a530ca959058fe926b3f5c42539487e23587d51948f49d7a38cf5d_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:2bfe5265856abdd8cb490bde852d4e992f1793684f003d1ef53776fe69d790d7_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:32d9568317c55235f75c4d0e1c98de6d4af252cbdd116ed2355025cbaeac862f_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:48b99d167a5c54a98e69bba441bb5b70db2ffe065d3f8f8d23ecfed7b813336e_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:8b2b33e91756bbd1c7ed6905e00176b9d55a4e13aee2f84862bc571a8a82f113_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:43cdf063e9a6aa5f84233c8bd850a711b5d5fae8a7795803609fec07d189ca05_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:7ad9073c0a768f170cf8d4311ea35ec1caccfdefdf6d1dccbc10ed01cdeafd16_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:934c224a59086c689be1839b6846a0984370a78a8adc8510fa692f5215bb6182_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:d2bfcb27baf36e569eca4f7c85f458a180d7938616413a4cf8e10cb329e6a150_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:78dabed4a5fc1eb3246778e6ee6e1a543829cf88d0b03f0ccccf101c41a7bdda_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:7c98501fee1297a24caa77d325f6bfd7f91192589f0aa22d47d9766e8219c749_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:905d45518e20ea10daa3a35ea2f2201a6f762a16f9b4829ce37b7396d493ac59_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:91e064bccc3f7320844763fc136cb4c650db40190e01edebe16135bcc00627ac_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:a48dd94d5616183843ba939146b7e4d985210cdd902038ff80ff6df3df3d74ca_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:2b18f2cf31e0914762cc6e99c9797c24a19db69ca08bc9983bc2aacc85ee7024_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:38c9b56aa9c2a5153e01ffc1edb399247ed1937b9382ac4f0fb2beae4c27f69a_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:59f85768c28401783b9475ce21088e3d8fbf6bcd64bb49e3a243c881ac6b546c_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f5b515ecaea7d542ac18ea5a056c99fe84ca2ac25fa3904bdc50a78ecf47541f_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8cdf016c4d61bce4f244415ae192fe1647ef517ba1690f2009b5b8e1104c72a7_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:a69c6f8b091d11c69b6864edc6973c6f5f4515eb3a1923bf51fdb971315c28b0_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ad5f4d1b7f712416bb62785375ce15ef1a5cb3f1a77226899abc8aba32a11623_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c9808efcb221c10d78bdf663e3b5e3d5d281bf59702be049090fc1fa0511b078_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:13f0ec3ce663f6701501e82bbb508549e149588eedb0982729a59d98c88d0ba0_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:43d9679eb3ac8d5287863137f2d698d814a2fbc2fbd6a6aacba11240cd76d40c_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:d23a4d9f0967f53d15fefda63e972e035d23aebe819dd11a6cec9beceacd8997_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:e32fc2e1c50fb1110a835e29e6e360b4127ed84fca98c6276b0b171ccd6cb223_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:1168d897f16b276ba5a6e6170e31fbe1499a980666aed493b2fe27036471ba55_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:15300e7d45a8e2093ef6f33303174f7361de7d9b648f8c9f2cf06f8ba3c56c76_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:6ccd50b0049e4ba0f9d4ea8779b17c6acc95395490579fbaa3b9e9084ac7d314_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e762a9019e4b5afd27331ad519a5b63a2bba3c7eb522533e0932e97c2879a36e_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f4c5323da09593280fc61c2df7fced0f6dc9d3ca322d27069f51334c3d18dae_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:918c66e3ea09e481c38673314021ef1aa6b46afc9dcb115b9d19b6819c5db4a7_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:cc4f2ce5926da93eaf81b0935d3171d81a310ec97e3c08bbbf6599752446810d_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f2bcd5123e4fad7aa4ad54f2819a1beb75d844302aa162e0335c1a0191fe5346_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:27b7eef1c64e432dbe15e92cf745a951aebdc9b379d9c02dbfef6df296c39cd1_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:3cfcd5f9ab8ec42cefd8fab992ecb493a9d14126bdf53ba542ffa4b51fd1684c_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:641354f1d56627f49af3e32ad963616b69aac644ac33d664e7fe29de32fe43b3_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:fa5400aecca1a46c4b98d00c749ea56d6187ced20952f02e4dd1c12e2467117e_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:42d8388fafeb7c188b03389c92561da4068f91a8cc2343f33d967939342e4f64_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:a86e59cedc67e9fcee3412afa157572a2ab815a3d9e18da03ada502f7313cc80_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b60b4b992b89b82620e5ea618350a97434b272d1f023200dcbeae642612e3569_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ee9d72769b916b350307df495022e04add1fbcd67c1e62757fd316e7f1dd60ae_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:53618eb41967e64660e87e5ad6ce8f5d9803aed9bb48da8898aaefb4d0a4632d_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:65176a94e684c200beef8f25016982ab212bdcd10d31b54a831310e20c026f77_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:a4ca99dc99b864ef805f3e8d997f0567168c809433f16ec23540c0b8ead96216_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:cc31b6212f77e03383e615ee30fd97419806c3841f18d2f6c950d82cdd21e872_ppc64le	—	Workaround

Threats

Impact Moderate

CVE-2024-45338

A flaw was found in golang.org/x/net/html. This flaw allows an attacker to craft input to the parse functions that would be processed non-linearly with respect to its length, resulting in extremely slow parsing. This issue can cause a denial of service.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-770 - Allocation of Resources Without Limits or Throttling

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:53618eb41967e64660e87e5ad6ce8f5d9803aed9bb48da8898aaefb4d0a4632d_arm64	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:65176a94e684c200beef8f25016982ab212bdcd10d31b54a831310e20c026f77_amd64	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:a4ca99dc99b864ef805f3e8d997f0567168c809433f16ec23540c0b8ead96216_s390x	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:cc31b6212f77e03383e615ee30fd97419806c3841f18d2f6c950d82cdd21e872_ppc64le	—	Vendor Fix fix

Known not affected 50 products

Product	Identifier	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/idea-rhel9@sha256:df24ebb239a2cc0d4543309f51a7268c7d524d428a536e0b3443c51089c3f87e_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:0dc291e3dc58d285d054a35b480d14c3912777e14fd643915b8ceabd178ad6bf_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:ac5b3e78470c747377dbc9ecb6e0680d724086c331955ed5471b74d01155ece8_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:cd1ee1d15cafe77bbf8e283cee2cde88dcdfb59c9545867a047cf4b42089aa85_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:d0b17cb5f9a530ca959058fe926b3f5c42539487e23587d51948f49d7a38cf5d_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:2bfe5265856abdd8cb490bde852d4e992f1793684f003d1ef53776fe69d790d7_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:32d9568317c55235f75c4d0e1c98de6d4af252cbdd116ed2355025cbaeac862f_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:48b99d167a5c54a98e69bba441bb5b70db2ffe065d3f8f8d23ecfed7b813336e_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:8b2b33e91756bbd1c7ed6905e00176b9d55a4e13aee2f84862bc571a8a82f113_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:43cdf063e9a6aa5f84233c8bd850a711b5d5fae8a7795803609fec07d189ca05_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:7ad9073c0a768f170cf8d4311ea35ec1caccfdefdf6d1dccbc10ed01cdeafd16_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:934c224a59086c689be1839b6846a0984370a78a8adc8510fa692f5215bb6182_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:d2bfcb27baf36e569eca4f7c85f458a180d7938616413a4cf8e10cb329e6a150_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:78dabed4a5fc1eb3246778e6ee6e1a543829cf88d0b03f0ccccf101c41a7bdda_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:7c98501fee1297a24caa77d325f6bfd7f91192589f0aa22d47d9766e8219c749_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:905d45518e20ea10daa3a35ea2f2201a6f762a16f9b4829ce37b7396d493ac59_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:91e064bccc3f7320844763fc136cb4c650db40190e01edebe16135bcc00627ac_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:a48dd94d5616183843ba939146b7e4d985210cdd902038ff80ff6df3df3d74ca_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:2b18f2cf31e0914762cc6e99c9797c24a19db69ca08bc9983bc2aacc85ee7024_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:38c9b56aa9c2a5153e01ffc1edb399247ed1937b9382ac4f0fb2beae4c27f69a_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:59f85768c28401783b9475ce21088e3d8fbf6bcd64bb49e3a243c881ac6b546c_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f5b515ecaea7d542ac18ea5a056c99fe84ca2ac25fa3904bdc50a78ecf47541f_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8cdf016c4d61bce4f244415ae192fe1647ef517ba1690f2009b5b8e1104c72a7_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:a69c6f8b091d11c69b6864edc6973c6f5f4515eb3a1923bf51fdb971315c28b0_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ad5f4d1b7f712416bb62785375ce15ef1a5cb3f1a77226899abc8aba32a11623_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c9808efcb221c10d78bdf663e3b5e3d5d281bf59702be049090fc1fa0511b078_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:13f0ec3ce663f6701501e82bbb508549e149588eedb0982729a59d98c88d0ba0_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:43d9679eb3ac8d5287863137f2d698d814a2fbc2fbd6a6aacba11240cd76d40c_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:d23a4d9f0967f53d15fefda63e972e035d23aebe819dd11a6cec9beceacd8997_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:e32fc2e1c50fb1110a835e29e6e360b4127ed84fca98c6276b0b171ccd6cb223_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:1168d897f16b276ba5a6e6170e31fbe1499a980666aed493b2fe27036471ba55_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:15300e7d45a8e2093ef6f33303174f7361de7d9b648f8c9f2cf06f8ba3c56c76_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:6ccd50b0049e4ba0f9d4ea8779b17c6acc95395490579fbaa3b9e9084ac7d314_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e762a9019e4b5afd27331ad519a5b63a2bba3c7eb522533e0932e97c2879a36e_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f4c5323da09593280fc61c2df7fced0f6dc9d3ca322d27069f51334c3d18dae_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:918c66e3ea09e481c38673314021ef1aa6b46afc9dcb115b9d19b6819c5db4a7_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:cc4f2ce5926da93eaf81b0935d3171d81a310ec97e3c08bbbf6599752446810d_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f2bcd5123e4fad7aa4ad54f2819a1beb75d844302aa162e0335c1a0191fe5346_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:27b7eef1c64e432dbe15e92cf745a951aebdc9b379d9c02dbfef6df296c39cd1_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:3cfcd5f9ab8ec42cefd8fab992ecb493a9d14126bdf53ba542ffa4b51fd1684c_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:641354f1d56627f49af3e32ad963616b69aac644ac33d664e7fe29de32fe43b3_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:fa5400aecca1a46c4b98d00c749ea56d6187ced20952f02e4dd1c12e2467117e_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:15a4a74016cdb94aece0bc651edd221b72a9202e5fd414d30ae969707cb5b4c9_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:5361443dee5415dc554d79e2fa23a6b336f1d8ea89fb20a4caa72f70574b939b_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:a152f1e75dd10ba692587a4e702d59cd1c5adcde8b97390f58742270edf85d33_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:f17428eced9d6bec1eaaa1510b68250824d3ace2f66af7f31fbf7327ca11540c_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:42d8388fafeb7c188b03389c92561da4068f91a8cc2343f33d967939342e4f64_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:a86e59cedc67e9fcee3412afa157572a2ab815a3d9e18da03ada502f7313cc80_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b60b4b992b89b82620e5ea618350a97434b272d1f023200dcbeae642612e3569_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ee9d72769b916b350307df495022e04add1fbcd67c1e62757fd316e7f1dd60ae_ppc64le		—

Threats

Impact Important

CVE-2025-9287

An improper input validation vulnerability was found in the cipher-base npm package. Missing input type checks in the polyfill of the Node.js `createHash` function result in invalid value calculations, hanging and rewinding the hash state, including turning a tagged hash into an untagged hash, for malicious JSON-stringifyable inputs.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:L

CWE-20 - Improper Input Validation

Affected products

Fixed 12 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:2bfe5265856abdd8cb490bde852d4e992f1793684f003d1ef53776fe69d790d7_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:32d9568317c55235f75c4d0e1c98de6d4af252cbdd116ed2355025cbaeac862f_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:48b99d167a5c54a98e69bba441bb5b70db2ffe065d3f8f8d23ecfed7b813336e_s390x	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:8b2b33e91756bbd1c7ed6905e00176b9d55a4e13aee2f84862bc571a8a82f113_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:78dabed4a5fc1eb3246778e6ee6e1a543829cf88d0b03f0ccccf101c41a7bdda_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:7c98501fee1297a24caa77d325f6bfd7f91192589f0aa22d47d9766e8219c749_s390x	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:905d45518e20ea10daa3a35ea2f2201a6f762a16f9b4829ce37b7396d493ac59_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:91e064bccc3f7320844763fc136cb4c650db40190e01edebe16135bcc00627ac_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:13f0ec3ce663f6701501e82bbb508549e149588eedb0982729a59d98c88d0ba0_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:43d9679eb3ac8d5287863137f2d698d814a2fbc2fbd6a6aacba11240cd76d40c_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:d23a4d9f0967f53d15fefda63e972e035d23aebe819dd11a6cec9beceacd8997_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:e32fc2e1c50fb1110a835e29e6e360b4127ed84fca98c6276b0b171ccd6cb223_s390x	—	Vendor Fix fix Workaround

Known not affected 42 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/idea-rhel9@sha256:df24ebb239a2cc0d4543309f51a7268c7d524d428a536e0b3443c51089c3f87e_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:0dc291e3dc58d285d054a35b480d14c3912777e14fd643915b8ceabd178ad6bf_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:ac5b3e78470c747377dbc9ecb6e0680d724086c331955ed5471b74d01155ece8_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:cd1ee1d15cafe77bbf8e283cee2cde88dcdfb59c9545867a047cf4b42089aa85_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:d0b17cb5f9a530ca959058fe926b3f5c42539487e23587d51948f49d7a38cf5d_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:43cdf063e9a6aa5f84233c8bd850a711b5d5fae8a7795803609fec07d189ca05_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:7ad9073c0a768f170cf8d4311ea35ec1caccfdefdf6d1dccbc10ed01cdeafd16_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:934c224a59086c689be1839b6846a0984370a78a8adc8510fa692f5215bb6182_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:d2bfcb27baf36e569eca4f7c85f458a180d7938616413a4cf8e10cb329e6a150_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:a48dd94d5616183843ba939146b7e4d985210cdd902038ff80ff6df3df3d74ca_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:2b18f2cf31e0914762cc6e99c9797c24a19db69ca08bc9983bc2aacc85ee7024_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:38c9b56aa9c2a5153e01ffc1edb399247ed1937b9382ac4f0fb2beae4c27f69a_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:59f85768c28401783b9475ce21088e3d8fbf6bcd64bb49e3a243c881ac6b546c_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f5b515ecaea7d542ac18ea5a056c99fe84ca2ac25fa3904bdc50a78ecf47541f_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8cdf016c4d61bce4f244415ae192fe1647ef517ba1690f2009b5b8e1104c72a7_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:a69c6f8b091d11c69b6864edc6973c6f5f4515eb3a1923bf51fdb971315c28b0_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ad5f4d1b7f712416bb62785375ce15ef1a5cb3f1a77226899abc8aba32a11623_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c9808efcb221c10d78bdf663e3b5e3d5d281bf59702be049090fc1fa0511b078_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:1168d897f16b276ba5a6e6170e31fbe1499a980666aed493b2fe27036471ba55_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:15300e7d45a8e2093ef6f33303174f7361de7d9b648f8c9f2cf06f8ba3c56c76_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:6ccd50b0049e4ba0f9d4ea8779b17c6acc95395490579fbaa3b9e9084ac7d314_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e762a9019e4b5afd27331ad519a5b63a2bba3c7eb522533e0932e97c2879a36e_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f4c5323da09593280fc61c2df7fced0f6dc9d3ca322d27069f51334c3d18dae_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:918c66e3ea09e481c38673314021ef1aa6b46afc9dcb115b9d19b6819c5db4a7_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:cc4f2ce5926da93eaf81b0935d3171d81a310ec97e3c08bbbf6599752446810d_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f2bcd5123e4fad7aa4ad54f2819a1beb75d844302aa162e0335c1a0191fe5346_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:27b7eef1c64e432dbe15e92cf745a951aebdc9b379d9c02dbfef6df296c39cd1_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:3cfcd5f9ab8ec42cefd8fab992ecb493a9d14126bdf53ba542ffa4b51fd1684c_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:641354f1d56627f49af3e32ad963616b69aac644ac33d664e7fe29de32fe43b3_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:fa5400aecca1a46c4b98d00c749ea56d6187ced20952f02e4dd1c12e2467117e_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:15a4a74016cdb94aece0bc651edd221b72a9202e5fd414d30ae969707cb5b4c9_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:5361443dee5415dc554d79e2fa23a6b336f1d8ea89fb20a4caa72f70574b939b_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:a152f1e75dd10ba692587a4e702d59cd1c5adcde8b97390f58742270edf85d33_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:f17428eced9d6bec1eaaa1510b68250824d3ace2f66af7f31fbf7327ca11540c_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:42d8388fafeb7c188b03389c92561da4068f91a8cc2343f33d967939342e4f64_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:a86e59cedc67e9fcee3412afa157572a2ab815a3d9e18da03ada502f7313cc80_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b60b4b992b89b82620e5ea618350a97434b272d1f023200dcbeae642612e3569_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ee9d72769b916b350307df495022e04add1fbcd67c1e62757fd316e7f1dd60ae_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:53618eb41967e64660e87e5ad6ce8f5d9803aed9bb48da8898aaefb4d0a4632d_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:65176a94e684c200beef8f25016982ab212bdcd10d31b54a831310e20c026f77_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:a4ca99dc99b864ef805f3e8d997f0567168c809433f16ec23540c0b8ead96216_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:cc31b6212f77e03383e615ee30fd97419806c3841f18d2f6c950d82cdd21e872_ppc64le	—	Workaround

Threats

Impact Important

CVE-2025-9288

A vulnerability was found in sha.js, where the hashing implementation does not perform sufficient input type validation. The .update() function accepts arbitrary objects, including those with crafted length properties, which can alter the internal state machine of the hashing process. This flaw may result in unexpected behavior such as rewinding the hash state, producing inconsistent digest outputs, or entering invalid processing loops. The issue was introduced due to the reliance on JavaScript object coercion rules rather than enforcing strict buffer or string inputs.

7.7 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:H/A:H

CWE-20 - Improper Input Validation

Affected products

Fixed 12 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:2bfe5265856abdd8cb490bde852d4e992f1793684f003d1ef53776fe69d790d7_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:32d9568317c55235f75c4d0e1c98de6d4af252cbdd116ed2355025cbaeac862f_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:48b99d167a5c54a98e69bba441bb5b70db2ffe065d3f8f8d23ecfed7b813336e_s390x	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:8b2b33e91756bbd1c7ed6905e00176b9d55a4e13aee2f84862bc571a8a82f113_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:78dabed4a5fc1eb3246778e6ee6e1a543829cf88d0b03f0ccccf101c41a7bdda_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:7c98501fee1297a24caa77d325f6bfd7f91192589f0aa22d47d9766e8219c749_s390x	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:905d45518e20ea10daa3a35ea2f2201a6f762a16f9b4829ce37b7396d493ac59_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:91e064bccc3f7320844763fc136cb4c650db40190e01edebe16135bcc00627ac_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:13f0ec3ce663f6701501e82bbb508549e149588eedb0982729a59d98c88d0ba0_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:43d9679eb3ac8d5287863137f2d698d814a2fbc2fbd6a6aacba11240cd76d40c_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:d23a4d9f0967f53d15fefda63e972e035d23aebe819dd11a6cec9beceacd8997_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:e32fc2e1c50fb1110a835e29e6e360b4127ed84fca98c6276b0b171ccd6cb223_s390x	—	Vendor Fix fix Workaround

Known not affected 42 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/idea-rhel9@sha256:df24ebb239a2cc0d4543309f51a7268c7d524d428a536e0b3443c51089c3f87e_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:0dc291e3dc58d285d054a35b480d14c3912777e14fd643915b8ceabd178ad6bf_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:ac5b3e78470c747377dbc9ecb6e0680d724086c331955ed5471b74d01155ece8_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:cd1ee1d15cafe77bbf8e283cee2cde88dcdfb59c9545867a047cf4b42089aa85_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:d0b17cb5f9a530ca959058fe926b3f5c42539487e23587d51948f49d7a38cf5d_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:43cdf063e9a6aa5f84233c8bd850a711b5d5fae8a7795803609fec07d189ca05_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:7ad9073c0a768f170cf8d4311ea35ec1caccfdefdf6d1dccbc10ed01cdeafd16_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:934c224a59086c689be1839b6846a0984370a78a8adc8510fa692f5215bb6182_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:d2bfcb27baf36e569eca4f7c85f458a180d7938616413a4cf8e10cb329e6a150_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:a48dd94d5616183843ba939146b7e4d985210cdd902038ff80ff6df3df3d74ca_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:2b18f2cf31e0914762cc6e99c9797c24a19db69ca08bc9983bc2aacc85ee7024_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:38c9b56aa9c2a5153e01ffc1edb399247ed1937b9382ac4f0fb2beae4c27f69a_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:59f85768c28401783b9475ce21088e3d8fbf6bcd64bb49e3a243c881ac6b546c_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f5b515ecaea7d542ac18ea5a056c99fe84ca2ac25fa3904bdc50a78ecf47541f_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8cdf016c4d61bce4f244415ae192fe1647ef517ba1690f2009b5b8e1104c72a7_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:a69c6f8b091d11c69b6864edc6973c6f5f4515eb3a1923bf51fdb971315c28b0_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ad5f4d1b7f712416bb62785375ce15ef1a5cb3f1a77226899abc8aba32a11623_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c9808efcb221c10d78bdf663e3b5e3d5d281bf59702be049090fc1fa0511b078_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:1168d897f16b276ba5a6e6170e31fbe1499a980666aed493b2fe27036471ba55_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:15300e7d45a8e2093ef6f33303174f7361de7d9b648f8c9f2cf06f8ba3c56c76_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:6ccd50b0049e4ba0f9d4ea8779b17c6acc95395490579fbaa3b9e9084ac7d314_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e762a9019e4b5afd27331ad519a5b63a2bba3c7eb522533e0932e97c2879a36e_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f4c5323da09593280fc61c2df7fced0f6dc9d3ca322d27069f51334c3d18dae_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:918c66e3ea09e481c38673314021ef1aa6b46afc9dcb115b9d19b6819c5db4a7_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:cc4f2ce5926da93eaf81b0935d3171d81a310ec97e3c08bbbf6599752446810d_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f2bcd5123e4fad7aa4ad54f2819a1beb75d844302aa162e0335c1a0191fe5346_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:27b7eef1c64e432dbe15e92cf745a951aebdc9b379d9c02dbfef6df296c39cd1_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:3cfcd5f9ab8ec42cefd8fab992ecb493a9d14126bdf53ba542ffa4b51fd1684c_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:641354f1d56627f49af3e32ad963616b69aac644ac33d664e7fe29de32fe43b3_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:fa5400aecca1a46c4b98d00c749ea56d6187ced20952f02e4dd1c12e2467117e_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:15a4a74016cdb94aece0bc651edd221b72a9202e5fd414d30ae969707cb5b4c9_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:5361443dee5415dc554d79e2fa23a6b336f1d8ea89fb20a4caa72f70574b939b_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:a152f1e75dd10ba692587a4e702d59cd1c5adcde8b97390f58742270edf85d33_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:f17428eced9d6bec1eaaa1510b68250824d3ace2f66af7f31fbf7327ca11540c_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:42d8388fafeb7c188b03389c92561da4068f91a8cc2343f33d967939342e4f64_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:a86e59cedc67e9fcee3412afa157572a2ab815a3d9e18da03ada502f7313cc80_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b60b4b992b89b82620e5ea618350a97434b272d1f023200dcbeae642612e3569_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ee9d72769b916b350307df495022e04add1fbcd67c1e62757fd316e7f1dd60ae_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:53618eb41967e64660e87e5ad6ce8f5d9803aed9bb48da8898aaefb4d0a4632d_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:65176a94e684c200beef8f25016982ab212bdcd10d31b54a831310e20c026f77_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:a4ca99dc99b864ef805f3e8d997f0567168c809433f16ec23540c0b8ead96216_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:cc31b6212f77e03383e615ee30fd97419806c3841f18d2f6c950d82cdd21e872_ppc64le	—	Workaround

Threats

Impact Important

CVE-2025-48385

A bundled uri handling flaw was found in Git. When cloning a repository, Git knows to optionally fetch a bundle advertised by the remote server, which allows the server side to offload parts of the clone to a CDN. The Git client does not perform sufficient validation of the advertised bundles, which allows the remote side to perform protocol injection.

8.3 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:L

CWE-88 - Improper Neutralization of Argument Delimiters in a Command ('Argument Injection')

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:2bfe5265856abdd8cb490bde852d4e992f1793684f003d1ef53776fe69d790d7_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:32d9568317c55235f75c4d0e1c98de6d4af252cbdd116ed2355025cbaeac862f_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:48b99d167a5c54a98e69bba441bb5b70db2ffe065d3f8f8d23ecfed7b813336e_s390x	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:8b2b33e91756bbd1c7ed6905e00176b9d55a4e13aee2f84862bc571a8a82f113_ppc64le	—	Vendor Fix fix Workaround

Known not affected 50 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/idea-rhel9@sha256:df24ebb239a2cc0d4543309f51a7268c7d524d428a536e0b3443c51089c3f87e_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:0dc291e3dc58d285d054a35b480d14c3912777e14fd643915b8ceabd178ad6bf_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:ac5b3e78470c747377dbc9ecb6e0680d724086c331955ed5471b74d01155ece8_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:cd1ee1d15cafe77bbf8e283cee2cde88dcdfb59c9545867a047cf4b42089aa85_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:d0b17cb5f9a530ca959058fe926b3f5c42539487e23587d51948f49d7a38cf5d_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:43cdf063e9a6aa5f84233c8bd850a711b5d5fae8a7795803609fec07d189ca05_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:7ad9073c0a768f170cf8d4311ea35ec1caccfdefdf6d1dccbc10ed01cdeafd16_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:934c224a59086c689be1839b6846a0984370a78a8adc8510fa692f5215bb6182_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:d2bfcb27baf36e569eca4f7c85f458a180d7938616413a4cf8e10cb329e6a150_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:78dabed4a5fc1eb3246778e6ee6e1a543829cf88d0b03f0ccccf101c41a7bdda_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:7c98501fee1297a24caa77d325f6bfd7f91192589f0aa22d47d9766e8219c749_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:905d45518e20ea10daa3a35ea2f2201a6f762a16f9b4829ce37b7396d493ac59_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:91e064bccc3f7320844763fc136cb4c650db40190e01edebe16135bcc00627ac_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:a48dd94d5616183843ba939146b7e4d985210cdd902038ff80ff6df3df3d74ca_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:2b18f2cf31e0914762cc6e99c9797c24a19db69ca08bc9983bc2aacc85ee7024_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:38c9b56aa9c2a5153e01ffc1edb399247ed1937b9382ac4f0fb2beae4c27f69a_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:59f85768c28401783b9475ce21088e3d8fbf6bcd64bb49e3a243c881ac6b546c_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f5b515ecaea7d542ac18ea5a056c99fe84ca2ac25fa3904bdc50a78ecf47541f_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8cdf016c4d61bce4f244415ae192fe1647ef517ba1690f2009b5b8e1104c72a7_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:a69c6f8b091d11c69b6864edc6973c6f5f4515eb3a1923bf51fdb971315c28b0_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ad5f4d1b7f712416bb62785375ce15ef1a5cb3f1a77226899abc8aba32a11623_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c9808efcb221c10d78bdf663e3b5e3d5d281bf59702be049090fc1fa0511b078_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:13f0ec3ce663f6701501e82bbb508549e149588eedb0982729a59d98c88d0ba0_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:43d9679eb3ac8d5287863137f2d698d814a2fbc2fbd6a6aacba11240cd76d40c_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:d23a4d9f0967f53d15fefda63e972e035d23aebe819dd11a6cec9beceacd8997_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:e32fc2e1c50fb1110a835e29e6e360b4127ed84fca98c6276b0b171ccd6cb223_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:1168d897f16b276ba5a6e6170e31fbe1499a980666aed493b2fe27036471ba55_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:15300e7d45a8e2093ef6f33303174f7361de7d9b648f8c9f2cf06f8ba3c56c76_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:6ccd50b0049e4ba0f9d4ea8779b17c6acc95395490579fbaa3b9e9084ac7d314_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e762a9019e4b5afd27331ad519a5b63a2bba3c7eb522533e0932e97c2879a36e_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f4c5323da09593280fc61c2df7fced0f6dc9d3ca322d27069f51334c3d18dae_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:918c66e3ea09e481c38673314021ef1aa6b46afc9dcb115b9d19b6819c5db4a7_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:cc4f2ce5926da93eaf81b0935d3171d81a310ec97e3c08bbbf6599752446810d_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f2bcd5123e4fad7aa4ad54f2819a1beb75d844302aa162e0335c1a0191fe5346_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:27b7eef1c64e432dbe15e92cf745a951aebdc9b379d9c02dbfef6df296c39cd1_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:3cfcd5f9ab8ec42cefd8fab992ecb493a9d14126bdf53ba542ffa4b51fd1684c_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:641354f1d56627f49af3e32ad963616b69aac644ac33d664e7fe29de32fe43b3_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:fa5400aecca1a46c4b98d00c749ea56d6187ced20952f02e4dd1c12e2467117e_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:15a4a74016cdb94aece0bc651edd221b72a9202e5fd414d30ae969707cb5b4c9_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:5361443dee5415dc554d79e2fa23a6b336f1d8ea89fb20a4caa72f70574b939b_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:a152f1e75dd10ba692587a4e702d59cd1c5adcde8b97390f58742270edf85d33_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:f17428eced9d6bec1eaaa1510b68250824d3ace2f66af7f31fbf7327ca11540c_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:42d8388fafeb7c188b03389c92561da4068f91a8cc2343f33d967939342e4f64_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:a86e59cedc67e9fcee3412afa157572a2ab815a3d9e18da03ada502f7313cc80_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b60b4b992b89b82620e5ea618350a97434b272d1f023200dcbeae642612e3569_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ee9d72769b916b350307df495022e04add1fbcd67c1e62757fd316e7f1dd60ae_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:53618eb41967e64660e87e5ad6ce8f5d9803aed9bb48da8898aaefb4d0a4632d_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:65176a94e684c200beef8f25016982ab212bdcd10d31b54a831310e20c026f77_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:a4ca99dc99b864ef805f3e8d997f0567168c809433f16ec23540c0b8ead96216_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:cc31b6212f77e03383e615ee30fd97419806c3841f18d2f6c950d82cdd21e872_ppc64le	—	Workaround

Threats

Impact Important

CVE-2025-48387

A flaw was found in tar-fs. This vulnerability allows files to be written outside the intended extraction directory via specially crafted tar archives. The issue arises from insufficient path validation during tarball extraction, potentially enabling path traversal attacks that can overwrite arbitrary files on the system.

7.3 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:2bfe5265856abdd8cb490bde852d4e992f1793684f003d1ef53776fe69d790d7_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:32d9568317c55235f75c4d0e1c98de6d4af252cbdd116ed2355025cbaeac862f_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:48b99d167a5c54a98e69bba441bb5b70db2ffe065d3f8f8d23ecfed7b813336e_s390x	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:8b2b33e91756bbd1c7ed6905e00176b9d55a4e13aee2f84862bc571a8a82f113_ppc64le	—	Vendor Fix fix Workaround

Known not affected 50 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/idea-rhel9@sha256:df24ebb239a2cc0d4543309f51a7268c7d524d428a536e0b3443c51089c3f87e_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:0dc291e3dc58d285d054a35b480d14c3912777e14fd643915b8ceabd178ad6bf_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:ac5b3e78470c747377dbc9ecb6e0680d724086c331955ed5471b74d01155ece8_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:cd1ee1d15cafe77bbf8e283cee2cde88dcdfb59c9545867a047cf4b42089aa85_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:d0b17cb5f9a530ca959058fe926b3f5c42539487e23587d51948f49d7a38cf5d_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:43cdf063e9a6aa5f84233c8bd850a711b5d5fae8a7795803609fec07d189ca05_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:7ad9073c0a768f170cf8d4311ea35ec1caccfdefdf6d1dccbc10ed01cdeafd16_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:934c224a59086c689be1839b6846a0984370a78a8adc8510fa692f5215bb6182_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:d2bfcb27baf36e569eca4f7c85f458a180d7938616413a4cf8e10cb329e6a150_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:78dabed4a5fc1eb3246778e6ee6e1a543829cf88d0b03f0ccccf101c41a7bdda_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:7c98501fee1297a24caa77d325f6bfd7f91192589f0aa22d47d9766e8219c749_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:905d45518e20ea10daa3a35ea2f2201a6f762a16f9b4829ce37b7396d493ac59_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:91e064bccc3f7320844763fc136cb4c650db40190e01edebe16135bcc00627ac_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:a48dd94d5616183843ba939146b7e4d985210cdd902038ff80ff6df3df3d74ca_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:2b18f2cf31e0914762cc6e99c9797c24a19db69ca08bc9983bc2aacc85ee7024_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:38c9b56aa9c2a5153e01ffc1edb399247ed1937b9382ac4f0fb2beae4c27f69a_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:59f85768c28401783b9475ce21088e3d8fbf6bcd64bb49e3a243c881ac6b546c_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f5b515ecaea7d542ac18ea5a056c99fe84ca2ac25fa3904bdc50a78ecf47541f_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8cdf016c4d61bce4f244415ae192fe1647ef517ba1690f2009b5b8e1104c72a7_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:a69c6f8b091d11c69b6864edc6973c6f5f4515eb3a1923bf51fdb971315c28b0_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ad5f4d1b7f712416bb62785375ce15ef1a5cb3f1a77226899abc8aba32a11623_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c9808efcb221c10d78bdf663e3b5e3d5d281bf59702be049090fc1fa0511b078_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:13f0ec3ce663f6701501e82bbb508549e149588eedb0982729a59d98c88d0ba0_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:43d9679eb3ac8d5287863137f2d698d814a2fbc2fbd6a6aacba11240cd76d40c_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:d23a4d9f0967f53d15fefda63e972e035d23aebe819dd11a6cec9beceacd8997_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:e32fc2e1c50fb1110a835e29e6e360b4127ed84fca98c6276b0b171ccd6cb223_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:1168d897f16b276ba5a6e6170e31fbe1499a980666aed493b2fe27036471ba55_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:15300e7d45a8e2093ef6f33303174f7361de7d9b648f8c9f2cf06f8ba3c56c76_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:6ccd50b0049e4ba0f9d4ea8779b17c6acc95395490579fbaa3b9e9084ac7d314_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e762a9019e4b5afd27331ad519a5b63a2bba3c7eb522533e0932e97c2879a36e_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f4c5323da09593280fc61c2df7fced0f6dc9d3ca322d27069f51334c3d18dae_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:918c66e3ea09e481c38673314021ef1aa6b46afc9dcb115b9d19b6819c5db4a7_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:cc4f2ce5926da93eaf81b0935d3171d81a310ec97e3c08bbbf6599752446810d_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f2bcd5123e4fad7aa4ad54f2819a1beb75d844302aa162e0335c1a0191fe5346_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:27b7eef1c64e432dbe15e92cf745a951aebdc9b379d9c02dbfef6df296c39cd1_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:3cfcd5f9ab8ec42cefd8fab992ecb493a9d14126bdf53ba542ffa4b51fd1684c_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:641354f1d56627f49af3e32ad963616b69aac644ac33d664e7fe29de32fe43b3_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:fa5400aecca1a46c4b98d00c749ea56d6187ced20952f02e4dd1c12e2467117e_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:15a4a74016cdb94aece0bc651edd221b72a9202e5fd414d30ae969707cb5b4c9_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:5361443dee5415dc554d79e2fa23a6b336f1d8ea89fb20a4caa72f70574b939b_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:a152f1e75dd10ba692587a4e702d59cd1c5adcde8b97390f58742270edf85d33_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:f17428eced9d6bec1eaaa1510b68250824d3ace2f66af7f31fbf7327ca11540c_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:42d8388fafeb7c188b03389c92561da4068f91a8cc2343f33d967939342e4f64_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:a86e59cedc67e9fcee3412afa157572a2ab815a3d9e18da03ada502f7313cc80_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b60b4b992b89b82620e5ea618350a97434b272d1f023200dcbeae642612e3569_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ee9d72769b916b350307df495022e04add1fbcd67c1e62757fd316e7f1dd60ae_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:53618eb41967e64660e87e5ad6ce8f5d9803aed9bb48da8898aaefb4d0a4632d_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:65176a94e684c200beef8f25016982ab212bdcd10d31b54a831310e20c026f77_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:a4ca99dc99b864ef805f3e8d997f0567168c809433f16ec23540c0b8ead96216_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:cc31b6212f77e03383e615ee30fd97419806c3841f18d2f6c950d82cdd21e872_ppc64le	—	Workaround

Threats

Impact Important

CVE-2025-52999

A nested data handling flaw was found in Jackson Core. When parsing particularly deeply nested data structures, a StackoverflowError can occur.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-121 - Stack-based Buffer Overflow

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:27b7eef1c64e432dbe15e92cf745a951aebdc9b379d9c02dbfef6df296c39cd1_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:3cfcd5f9ab8ec42cefd8fab992ecb493a9d14126bdf53ba542ffa4b51fd1684c_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:641354f1d56627f49af3e32ad963616b69aac644ac33d664e7fe29de32fe43b3_s390x	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:fa5400aecca1a46c4b98d00c749ea56d6187ced20952f02e4dd1c12e2467117e_ppc64le	—	Vendor Fix fix Workaround

Known not affected 50 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/idea-rhel9@sha256:df24ebb239a2cc0d4543309f51a7268c7d524d428a536e0b3443c51089c3f87e_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:0dc291e3dc58d285d054a35b480d14c3912777e14fd643915b8ceabd178ad6bf_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:ac5b3e78470c747377dbc9ecb6e0680d724086c331955ed5471b74d01155ece8_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:cd1ee1d15cafe77bbf8e283cee2cde88dcdfb59c9545867a047cf4b42089aa85_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:d0b17cb5f9a530ca959058fe926b3f5c42539487e23587d51948f49d7a38cf5d_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:2bfe5265856abdd8cb490bde852d4e992f1793684f003d1ef53776fe69d790d7_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:32d9568317c55235f75c4d0e1c98de6d4af252cbdd116ed2355025cbaeac862f_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:48b99d167a5c54a98e69bba441bb5b70db2ffe065d3f8f8d23ecfed7b813336e_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:8b2b33e91756bbd1c7ed6905e00176b9d55a4e13aee2f84862bc571a8a82f113_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:43cdf063e9a6aa5f84233c8bd850a711b5d5fae8a7795803609fec07d189ca05_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:7ad9073c0a768f170cf8d4311ea35ec1caccfdefdf6d1dccbc10ed01cdeafd16_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:934c224a59086c689be1839b6846a0984370a78a8adc8510fa692f5215bb6182_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:d2bfcb27baf36e569eca4f7c85f458a180d7938616413a4cf8e10cb329e6a150_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:78dabed4a5fc1eb3246778e6ee6e1a543829cf88d0b03f0ccccf101c41a7bdda_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:7c98501fee1297a24caa77d325f6bfd7f91192589f0aa22d47d9766e8219c749_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:905d45518e20ea10daa3a35ea2f2201a6f762a16f9b4829ce37b7396d493ac59_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:91e064bccc3f7320844763fc136cb4c650db40190e01edebe16135bcc00627ac_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:a48dd94d5616183843ba939146b7e4d985210cdd902038ff80ff6df3df3d74ca_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:2b18f2cf31e0914762cc6e99c9797c24a19db69ca08bc9983bc2aacc85ee7024_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:38c9b56aa9c2a5153e01ffc1edb399247ed1937b9382ac4f0fb2beae4c27f69a_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:59f85768c28401783b9475ce21088e3d8fbf6bcd64bb49e3a243c881ac6b546c_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f5b515ecaea7d542ac18ea5a056c99fe84ca2ac25fa3904bdc50a78ecf47541f_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8cdf016c4d61bce4f244415ae192fe1647ef517ba1690f2009b5b8e1104c72a7_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:a69c6f8b091d11c69b6864edc6973c6f5f4515eb3a1923bf51fdb971315c28b0_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ad5f4d1b7f712416bb62785375ce15ef1a5cb3f1a77226899abc8aba32a11623_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c9808efcb221c10d78bdf663e3b5e3d5d281bf59702be049090fc1fa0511b078_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:13f0ec3ce663f6701501e82bbb508549e149588eedb0982729a59d98c88d0ba0_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:43d9679eb3ac8d5287863137f2d698d814a2fbc2fbd6a6aacba11240cd76d40c_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:d23a4d9f0967f53d15fefda63e972e035d23aebe819dd11a6cec9beceacd8997_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:e32fc2e1c50fb1110a835e29e6e360b4127ed84fca98c6276b0b171ccd6cb223_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:1168d897f16b276ba5a6e6170e31fbe1499a980666aed493b2fe27036471ba55_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:15300e7d45a8e2093ef6f33303174f7361de7d9b648f8c9f2cf06f8ba3c56c76_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:6ccd50b0049e4ba0f9d4ea8779b17c6acc95395490579fbaa3b9e9084ac7d314_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e762a9019e4b5afd27331ad519a5b63a2bba3c7eb522533e0932e97c2879a36e_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f4c5323da09593280fc61c2df7fced0f6dc9d3ca322d27069f51334c3d18dae_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:918c66e3ea09e481c38673314021ef1aa6b46afc9dcb115b9d19b6819c5db4a7_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:cc4f2ce5926da93eaf81b0935d3171d81a310ec97e3c08bbbf6599752446810d_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f2bcd5123e4fad7aa4ad54f2819a1beb75d844302aa162e0335c1a0191fe5346_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:15a4a74016cdb94aece0bc651edd221b72a9202e5fd414d30ae969707cb5b4c9_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:5361443dee5415dc554d79e2fa23a6b336f1d8ea89fb20a4caa72f70574b939b_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:a152f1e75dd10ba692587a4e702d59cd1c5adcde8b97390f58742270edf85d33_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:f17428eced9d6bec1eaaa1510b68250824d3ace2f66af7f31fbf7327ca11540c_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:42d8388fafeb7c188b03389c92561da4068f91a8cc2343f33d967939342e4f64_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:a86e59cedc67e9fcee3412afa157572a2ab815a3d9e18da03ada502f7313cc80_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b60b4b992b89b82620e5ea618350a97434b272d1f023200dcbeae642612e3569_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ee9d72769b916b350307df495022e04add1fbcd67c1e62757fd316e7f1dd60ae_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:53618eb41967e64660e87e5ad6ce8f5d9803aed9bb48da8898aaefb4d0a4632d_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:65176a94e684c200beef8f25016982ab212bdcd10d31b54a831310e20c026f77_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:a4ca99dc99b864ef805f3e8d997f0567168c809433f16ec23540c0b8ead96216_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:cc31b6212f77e03383e615ee30fd97419806c3841f18d2f6c950d82cdd21e872_ppc64le	—	Workaround

Threats

Impact Important

References

88 references

URL	Category
https://access.redhat.com/errata/RHSA-2025:15847	self
https://access.redhat.com/documentation/en-us/red…	external
https://access.redhat.com/security/cve/CVE-2024-10005	external
https://access.redhat.com/security/cve/CVE-2024-10006	external
https://access.redhat.com/security/cve/CVE-2024-22189	external
https://access.redhat.com/security/cve/CVE-2024-24789	external
https://access.redhat.com/security/cve/CVE-2024-28869	external
https://access.redhat.com/security/cve/CVE-2024-39321	external
https://access.redhat.com/security/cve/CVE-2024-45338	external
https://access.redhat.com/security/cve/CVE-2025-48385	external
https://access.redhat.com/security/cve/CVE-2025-48387	external
https://access.redhat.com/security/cve/CVE-2025-52999	external
https://access.redhat.com/security/cve/CVE-2025-9287	external
https://access.redhat.com/security/cve/CVE-2025-9288	external
https://access.redhat.com/security/updates/classi…	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2024-10005	self
https://bugzilla.redhat.com/show_bug.cgi?id=2322857	external
https://www.cve.org/CVERecord?id=CVE-2024-10005	external
https://nvd.nist.gov/vuln/detail/CVE-2024-10005	external
https://discuss.hashicorp.com/t/hcsec-2024-22-con…	external
https://access.redhat.com/security/cve/CVE-2024-10006	self
https://bugzilla.redhat.com/show_bug.cgi?id=2322858	external
https://www.cve.org/CVERecord?id=CVE-2024-10006	external
https://nvd.nist.gov/vuln/detail/CVE-2024-10006	external
https://discuss.hashicorp.com/t/hcsec-2024-23-con…	external
https://access.redhat.com/security/cve/CVE-2024-22189	self
https://bugzilla.redhat.com/show_bug.cgi?id=2273513	external
https://www.cve.org/CVERecord?id=CVE-2024-22189	external
https://nvd.nist.gov/vuln/detail/CVE-2024-22189	external
https://github.com/quic-go/quic-go/commit/4a99b81…	external
https://github.com/quic-go/quic-go/security/advis…	external
https://seemann.io/posts/2024-03-19-exploiting-qu…	external
https://access.redhat.com/security/cve/CVE-2024-24789	self
https://bugzilla.redhat.com/show_bug.cgi?id=2292668	external
https://www.cve.org/CVERecord?id=CVE-2024-24789	external
https://nvd.nist.gov/vuln/detail/CVE-2024-24789	external
https://access.redhat.com/security/cve/CVE-2024-28869	self
https://bugzilla.redhat.com/show_bug.cgi?id=2274987	external
https://www.cve.org/CVERecord?id=CVE-2024-28869	external
https://nvd.nist.gov/vuln/detail/CVE-2024-28869	external
https://github.com/traefik/traefik/commit/240b83b…	external
https://github.com/traefik/traefik/security/advis…	external
https://access.redhat.com/security/cve/CVE-2024-39321	self
https://bugzilla.redhat.com/show_bug.cgi?id=2296009	external
https://www.cve.org/CVERecord?id=CVE-2024-39321	external
https://nvd.nist.gov/vuln/detail/CVE-2024-39321	external
https://github.com/traefik/traefik/releases/tag/v2.11.6	external
https://github.com/traefik/traefik/releases/tag/v3.0.4	external
https://github.com/traefik/traefik/releases/tag/v…	external
https://github.com/traefik/traefik/security/advis…	external
https://access.redhat.com/security/cve/CVE-2024-45338	self
https://bugzilla.redhat.com/show_bug.cgi?id=2333122	external
https://www.cve.org/CVERecord?id=CVE-2024-45338	external
https://nvd.nist.gov/vuln/detail/CVE-2024-45338	external
https://go.dev/cl/637536	external
https://go.dev/issue/70906	external
https://groups.google.com/g/golang-announce/c/wSC…	external
https://pkg.go.dev/vuln/GO-2024-3333	external
https://access.redhat.com/security/cve/CVE-2025-9287	self
https://bugzilla.redhat.com/show_bug.cgi?id=2389932	external
https://www.cve.org/CVERecord?id=CVE-2025-9287	external
https://nvd.nist.gov/vuln/detail/CVE-2025-9287	external
https://github.com/browserify/cipher-base/pull/23	external
https://github.com/browserify/cipher-base/securit…	external
https://access.redhat.com/security/cve/CVE-2025-9288	self
https://bugzilla.redhat.com/show_bug.cgi?id=2389980	external
https://www.cve.org/CVERecord?id=CVE-2025-9288	external
https://nvd.nist.gov/vuln/detail/CVE-2025-9288	external
https://github.com/browserify/sha.js/pull/78	external
https://github.com/browserify/sha.js/security/adv…	external
https://access.redhat.com/security/cve/CVE-2025-48385	self
https://bugzilla.redhat.com/show_bug.cgi?id=2378808	external
https://www.cve.org/CVERecord?id=CVE-2025-48385	external
https://nvd.nist.gov/vuln/detail/CVE-2025-48385	external
https://github.com/git/git/security/advisories/GH…	external
https://access.redhat.com/security/cve/CVE-2025-48387	self
https://bugzilla.redhat.com/show_bug.cgi?id=2369875	external
https://www.cve.org/CVERecord?id=CVE-2025-48387	external
https://nvd.nist.gov/vuln/detail/CVE-2025-48387	external
https://github.com/mafintosh/tar-fs/commit/647447…	external
https://github.com/mafintosh/tar-fs/security/advi…	external
https://access.redhat.com/security/cve/CVE-2025-52999	self
https://bugzilla.redhat.com/show_bug.cgi?id=2374804	external
https://www.cve.org/CVERecord?id=CVE-2025-52999	external
https://nvd.nist.gov/vuln/detail/CVE-2025-52999	external
https://github.com/FasterXML/jackson-core/pull/943	external
https://github.com/FasterXML/jackson-core/securit…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Red Hat OpenShift Dev Spaces 3.23.0 has been released.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Red Hat OpenShift Dev Spaces provides a cloud developer workspace server and a browser-based IDE built for teams and organizations. Dev Spaces runs in OpenShift and is well-suited for container-based development. The 3.23 release is based on Eclipse Che 7.107 and uses the DevWorkspace engine to provide support for workspaces based on devfile v2.1 and v2.2. Users still using the v1 standard should migrate as soon as possible. https://devfile.io/docs/2.2.0/migrating-to-devfile-v2 Dev Spaces supports OpenShift EUS releases v4.14 and higher. Users are expected to update to supported OpenShift releases in order to continue to get Dev Spaces updates. https://access.redhat.com/support/policy/updates/openshift#crw",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2025:15847",
        "url": "https://access.redhat.com/errata/RHSA-2025:15847"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/documentation/en-us/red_hat_openshift_dev_spaces/3.23/html/administration_guide/installing-devspaces",
        "url": "https://access.redhat.com/documentation/en-us/red_hat_openshift_dev_spaces/3.23/html/administration_guide/installing-devspaces"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2024-10005",
        "url": "https://access.redhat.com/security/cve/CVE-2024-10005"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2024-10006",
        "url": "https://access.redhat.com/security/cve/CVE-2024-10006"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2024-22189",
        "url": "https://access.redhat.com/security/cve/CVE-2024-22189"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2024-24789",
        "url": "https://access.redhat.com/security/cve/CVE-2024-24789"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2024-28869",
        "url": "https://access.redhat.com/security/cve/CVE-2024-28869"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2024-39321",
        "url": "https://access.redhat.com/security/cve/CVE-2024-39321"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2024-45338",
        "url": "https://access.redhat.com/security/cve/CVE-2024-45338"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2025-48385",
        "url": "https://access.redhat.com/security/cve/CVE-2025-48385"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2025-48387",
        "url": "https://access.redhat.com/security/cve/CVE-2025-48387"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2025-52999",
        "url": "https://access.redhat.com/security/cve/CVE-2025-52999"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2025-9287",
        "url": "https://access.redhat.com/security/cve/CVE-2025-9287"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2025-9288",
        "url": "https://access.redhat.com/security/cve/CVE-2025-9288"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/",
        "url": "https://access.redhat.com/security/updates/classification/"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_15847.json"
      }
    ],
    "title": "Red Hat Security Advisory: Red Hat OpenShift Dev Spaces 3.23.0 Release.",
    "tracking": {
      "current_release_date": "2026-06-02T21:41:42+00:00",
      "generator": {
        "date": "2026-06-02T21:41:42+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.8.1"
        }
      },
      "id": "RHSA-2025:15847",
      "initial_release_date": "2025-09-15T16:27:40+00:00",
      "revision_history": [
        {
          "date": "2025-09-15T16:27:40+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2025-09-15T16:27:51+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-06-02T21:41:42+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
                "product": {
                  "name": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
                  "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift_devspaces:3.23::el9"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat OpenShift Dev Spaces (RHOSDS)"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/code-rhel9@sha256:2bfe5265856abdd8cb490bde852d4e992f1793684f003d1ef53776fe69d790d7_amd64",
                "product": {
                  "name": "registry.redhat.io/devspaces/code-rhel9@sha256:2bfe5265856abdd8cb490bde852d4e992f1793684f003d1ef53776fe69d790d7_amd64",
                  "product_id": "registry.redhat.io/devspaces/code-rhel9@sha256:2bfe5265856abdd8cb490bde852d4e992f1793684f003d1ef53776fe69d790d7_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/code-rhel9@sha256%3A2bfe5265856abdd8cb490bde852d4e992f1793684f003d1ef53776fe69d790d7?arch=amd64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.23-1757618807"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/configbump-rhel9@sha256:d2bfcb27baf36e569eca4f7c85f458a180d7938616413a4cf8e10cb329e6a150_amd64",
                "product": {
                  "name": "registry.redhat.io/devspaces/configbump-rhel9@sha256:d2bfcb27baf36e569eca4f7c85f458a180d7938616413a4cf8e10cb329e6a150_amd64",
                  "product_id": "registry.redhat.io/devspaces/configbump-rhel9@sha256:d2bfcb27baf36e569eca4f7c85f458a180d7938616413a4cf8e10cb329e6a150_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/configbump-rhel9@sha256%3Ad2bfcb27baf36e569eca4f7c85f458a180d7938616413a4cf8e10cb329e6a150?arch=amd64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.23-1756506343"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:905d45518e20ea10daa3a35ea2f2201a6f762a16f9b4829ce37b7396d493ac59_amd64",
                "product": {
                  "name": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:905d45518e20ea10daa3a35ea2f2201a6f762a16f9b4829ce37b7396d493ac59_amd64",
                  "product_id": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:905d45518e20ea10daa3a35ea2f2201a6f762a16f9b4829ce37b7396d493ac59_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/dashboard-rhel9@sha256%3A905d45518e20ea10daa3a35ea2f2201a6f762a16f9b4829ce37b7396d493ac59?arch=amd64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.23-1757019057"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces-tech-preview/idea-rhel9@sha256:df24ebb239a2cc0d4543309f51a7268c7d524d428a536e0b3443c51089c3f87e_amd64",
                "product": {
                  "name": "registry.redhat.io/devspaces-tech-preview/idea-rhel9@sha256:df24ebb239a2cc0d4543309f51a7268c7d524d428a536e0b3443c51089c3f87e_amd64",
                  "product_id": "registry.redhat.io/devspaces-tech-preview/idea-rhel9@sha256:df24ebb239a2cc0d4543309f51a7268c7d524d428a536e0b3443c51089c3f87e_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/idea-rhel9@sha256%3Adf24ebb239a2cc0d4543309f51a7268c7d524d428a536e0b3443c51089c3f87e?arch=amd64\u0026repository_url=registry.redhat.io/devspaces-tech-preview\u0026tag=3.23-1756504289"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:a69c6f8b091d11c69b6864edc6973c6f5f4515eb3a1923bf51fdb971315c28b0_amd64",
                "product": {
                  "name": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:a69c6f8b091d11c69b6864edc6973c6f5f4515eb3a1923bf51fdb971315c28b0_amd64",
                  "product_id": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:a69c6f8b091d11c69b6864edc6973c6f5f4515eb3a1923bf51fdb971315c28b0_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/imagepuller-rhel9@sha256%3Aa69c6f8b091d11c69b6864edc6973c6f5f4515eb3a1923bf51fdb971315c28b0?arch=amd64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.23-1756507311"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:ac5b3e78470c747377dbc9ecb6e0680d724086c331955ed5471b74d01155ece8_amd64",
                "product": {
                  "name": "registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:ac5b3e78470c747377dbc9ecb6e0680d724086c331955ed5471b74d01155ece8_amd64",
                  "product_id": "registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:ac5b3e78470c747377dbc9ecb6e0680d724086c331955ed5471b74d01155ece8_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/jetbrains-ide-rhel9@sha256%3Aac5b3e78470c747377dbc9ecb6e0680d724086c331955ed5471b74d01155ece8?arch=amd64\u0026repository_url=registry.redhat.io/devspaces-tech-preview\u0026tag=3.23-1757019334"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/machineexec-rhel9@sha256:d23a4d9f0967f53d15fefda63e972e035d23aebe819dd11a6cec9beceacd8997_amd64",
                "product": {
                  "name": "registry.redhat.io/devspaces/machineexec-rhel9@sha256:d23a4d9f0967f53d15fefda63e972e035d23aebe819dd11a6cec9beceacd8997_amd64",
                  "product_id": "registry.redhat.io/devspaces/machineexec-rhel9@sha256:d23a4d9f0967f53d15fefda63e972e035d23aebe819dd11a6cec9beceacd8997_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/machineexec-rhel9@sha256%3Ad23a4d9f0967f53d15fefda63e972e035d23aebe819dd11a6cec9beceacd8997?arch=amd64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.23-1756509551"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:6ccd50b0049e4ba0f9d4ea8779b17c6acc95395490579fbaa3b9e9084ac7d314_amd64",
                "product": {
                  "name": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:6ccd50b0049e4ba0f9d4ea8779b17c6acc95395490579fbaa3b9e9084ac7d314_amd64",
                  "product_id": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:6ccd50b0049e4ba0f9d4ea8779b17c6acc95395490579fbaa3b9e9084ac7d314_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/openvsx-rhel9@sha256%3A6ccd50b0049e4ba0f9d4ea8779b17c6acc95395490579fbaa3b9e9084ac7d314?arch=amd64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.23-1757017659"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:2b18f2cf31e0914762cc6e99c9797c24a19db69ca08bc9983bc2aacc85ee7024_amd64",
                "product": {
                  "name": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:2b18f2cf31e0914762cc6e99c9797c24a19db69ca08bc9983bc2aacc85ee7024_amd64",
                  "product_id": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:2b18f2cf31e0914762cc6e99c9797c24a19db69ca08bc9983bc2aacc85ee7024_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/devspaces-rhel9-operator@sha256%3A2b18f2cf31e0914762cc6e99c9797c24a19db69ca08bc9983bc2aacc85ee7024?arch=amd64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.23-1756828766"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:a48dd94d5616183843ba939146b7e4d985210cdd902038ff80ff6df3df3d74ca_amd64",
                "product": {
                  "name": "registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:a48dd94d5616183843ba939146b7e4d985210cdd902038ff80ff6df3df3d74ca_amd64",
                  "product_id": "registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:a48dd94d5616183843ba939146b7e4d985210cdd902038ff80ff6df3df3d74ca_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/devspaces-operator-bundle@sha256%3Aa48dd94d5616183843ba939146b7e4d985210cdd902038ff80ff6df3df3d74ca?arch=amd64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.23-1757629825"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:918c66e3ea09e481c38673314021ef1aa6b46afc9dcb115b9d19b6819c5db4a7_amd64",
                "product": {
                  "name": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:918c66e3ea09e481c38673314021ef1aa6b46afc9dcb115b9d19b6819c5db4a7_amd64",
                  "product_id": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:918c66e3ea09e481c38673314021ef1aa6b46afc9dcb115b9d19b6819c5db4a7_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/pluginregistry-rhel9@sha256%3A918c66e3ea09e481c38673314021ef1aa6b46afc9dcb115b9d19b6819c5db4a7?arch=amd64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.23-1757367052"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/server-rhel9@sha256:27b7eef1c64e432dbe15e92cf745a951aebdc9b379d9c02dbfef6df296c39cd1_amd64",
                "product": {
                  "name": "registry.redhat.io/devspaces/server-rhel9@sha256:27b7eef1c64e432dbe15e92cf745a951aebdc9b379d9c02dbfef6df296c39cd1_amd64",
                  "product_id": "registry.redhat.io/devspaces/server-rhel9@sha256:27b7eef1c64e432dbe15e92cf745a951aebdc9b379d9c02dbfef6df296c39cd1_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/server-rhel9@sha256%3A27b7eef1c64e432dbe15e92cf745a951aebdc9b379d9c02dbfef6df296c39cd1?arch=amd64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.23-1756753588"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/traefik-rhel9@sha256:15a4a74016cdb94aece0bc651edd221b72a9202e5fd414d30ae969707cb5b4c9_amd64",
                "product": {
                  "name": "registry.redhat.io/devspaces/traefik-rhel9@sha256:15a4a74016cdb94aece0bc651edd221b72a9202e5fd414d30ae969707cb5b4c9_amd64",
                  "product_id": "registry.redhat.io/devspaces/traefik-rhel9@sha256:15a4a74016cdb94aece0bc651edd221b72a9202e5fd414d30ae969707cb5b4c9_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/traefik-rhel9@sha256%3A15a4a74016cdb94aece0bc651edd221b72a9202e5fd414d30ae969707cb5b4c9?arch=amd64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.23-1756504388"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/udi-rhel9@sha256:65176a94e684c200beef8f25016982ab212bdcd10d31b54a831310e20c026f77_amd64",
                "product": {
                  "name": "registry.redhat.io/devspaces/udi-rhel9@sha256:65176a94e684c200beef8f25016982ab212bdcd10d31b54a831310e20c026f77_amd64",
                  "product_id": "registry.redhat.io/devspaces/udi-rhel9@sha256:65176a94e684c200beef8f25016982ab212bdcd10d31b54a831310e20c026f77_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/udi-rhel9@sha256%3A65176a94e684c200beef8f25016982ab212bdcd10d31b54a831310e20c026f77?arch=amd64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.23-1757028609"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:42d8388fafeb7c188b03389c92561da4068f91a8cc2343f33d967939342e4f64_amd64",
                "product": {
                  "name": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:42d8388fafeb7c188b03389c92561da4068f91a8cc2343f33d967939342e4f64_amd64",
                  "product_id": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:42d8388fafeb7c188b03389c92561da4068f91a8cc2343f33d967939342e4f64_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/udi-base-rhel9@sha256%3A42d8388fafeb7c188b03389c92561da4068f91a8cc2343f33d967939342e4f64?arch=amd64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.23-1757037884"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "amd64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/code-rhel9@sha256:48b99d167a5c54a98e69bba441bb5b70db2ffe065d3f8f8d23ecfed7b813336e_s390x",
                "product": {
                  "name": "registry.redhat.io/devspaces/code-rhel9@sha256:48b99d167a5c54a98e69bba441bb5b70db2ffe065d3f8f8d23ecfed7b813336e_s390x",
                  "product_id": "registry.redhat.io/devspaces/code-rhel9@sha256:48b99d167a5c54a98e69bba441bb5b70db2ffe065d3f8f8d23ecfed7b813336e_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/code-rhel9@sha256%3A48b99d167a5c54a98e69bba441bb5b70db2ffe065d3f8f8d23ecfed7b813336e?arch=s390x\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.23-1757618807"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/configbump-rhel9@sha256:934c224a59086c689be1839b6846a0984370a78a8adc8510fa692f5215bb6182_s390x",
                "product": {
                  "name": "registry.redhat.io/devspaces/configbump-rhel9@sha256:934c224a59086c689be1839b6846a0984370a78a8adc8510fa692f5215bb6182_s390x",
                  "product_id": "registry.redhat.io/devspaces/configbump-rhel9@sha256:934c224a59086c689be1839b6846a0984370a78a8adc8510fa692f5215bb6182_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/configbump-rhel9@sha256%3A934c224a59086c689be1839b6846a0984370a78a8adc8510fa692f5215bb6182?arch=s390x\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.23-1756506343"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:7c98501fee1297a24caa77d325f6bfd7f91192589f0aa22d47d9766e8219c749_s390x",
                "product": {
                  "name": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:7c98501fee1297a24caa77d325f6bfd7f91192589f0aa22d47d9766e8219c749_s390x",
                  "product_id": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:7c98501fee1297a24caa77d325f6bfd7f91192589f0aa22d47d9766e8219c749_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/dashboard-rhel9@sha256%3A7c98501fee1297a24caa77d325f6bfd7f91192589f0aa22d47d9766e8219c749?arch=s390x\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.23-1757019057"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8cdf016c4d61bce4f244415ae192fe1647ef517ba1690f2009b5b8e1104c72a7_s390x",
                "product": {
                  "name": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8cdf016c4d61bce4f244415ae192fe1647ef517ba1690f2009b5b8e1104c72a7_s390x",
                  "product_id": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8cdf016c4d61bce4f244415ae192fe1647ef517ba1690f2009b5b8e1104c72a7_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/imagepuller-rhel9@sha256%3A8cdf016c4d61bce4f244415ae192fe1647ef517ba1690f2009b5b8e1104c72a7?arch=s390x\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.23-1756507311"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:cd1ee1d15cafe77bbf8e283cee2cde88dcdfb59c9545867a047cf4b42089aa85_s390x",
                "product": {
                  "name": "registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:cd1ee1d15cafe77bbf8e283cee2cde88dcdfb59c9545867a047cf4b42089aa85_s390x",
                  "product_id": "registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:cd1ee1d15cafe77bbf8e283cee2cde88dcdfb59c9545867a047cf4b42089aa85_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/jetbrains-ide-rhel9@sha256%3Acd1ee1d15cafe77bbf8e283cee2cde88dcdfb59c9545867a047cf4b42089aa85?arch=s390x\u0026repository_url=registry.redhat.io/devspaces-tech-preview\u0026tag=3.23-1757019334"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/machineexec-rhel9@sha256:e32fc2e1c50fb1110a835e29e6e360b4127ed84fca98c6276b0b171ccd6cb223_s390x",
                "product": {
                  "name": "registry.redhat.io/devspaces/machineexec-rhel9@sha256:e32fc2e1c50fb1110a835e29e6e360b4127ed84fca98c6276b0b171ccd6cb223_s390x",
                  "product_id": "registry.redhat.io/devspaces/machineexec-rhel9@sha256:e32fc2e1c50fb1110a835e29e6e360b4127ed84fca98c6276b0b171ccd6cb223_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/machineexec-rhel9@sha256%3Ae32fc2e1c50fb1110a835e29e6e360b4127ed84fca98c6276b0b171ccd6cb223?arch=s390x\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.23-1756509551"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:1168d897f16b276ba5a6e6170e31fbe1499a980666aed493b2fe27036471ba55_s390x",
                "product": {
                  "name": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:1168d897f16b276ba5a6e6170e31fbe1499a980666aed493b2fe27036471ba55_s390x",
                  "product_id": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:1168d897f16b276ba5a6e6170e31fbe1499a980666aed493b2fe27036471ba55_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/openvsx-rhel9@sha256%3A1168d897f16b276ba5a6e6170e31fbe1499a980666aed493b2fe27036471ba55?arch=s390x\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.23-1757017659"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:59f85768c28401783b9475ce21088e3d8fbf6bcd64bb49e3a243c881ac6b546c_s390x",
                "product": {
                  "name": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:59f85768c28401783b9475ce21088e3d8fbf6bcd64bb49e3a243c881ac6b546c_s390x",
                  "product_id": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:59f85768c28401783b9475ce21088e3d8fbf6bcd64bb49e3a243c881ac6b546c_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/devspaces-rhel9-operator@sha256%3A59f85768c28401783b9475ce21088e3d8fbf6bcd64bb49e3a243c881ac6b546c?arch=s390x\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.23-1756828766"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f2bcd5123e4fad7aa4ad54f2819a1beb75d844302aa162e0335c1a0191fe5346_s390x",
                "product": {
                  "name": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f2bcd5123e4fad7aa4ad54f2819a1beb75d844302aa162e0335c1a0191fe5346_s390x",
                  "product_id": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f2bcd5123e4fad7aa4ad54f2819a1beb75d844302aa162e0335c1a0191fe5346_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/pluginregistry-rhel9@sha256%3Af2bcd5123e4fad7aa4ad54f2819a1beb75d844302aa162e0335c1a0191fe5346?arch=s390x\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.23-1757367052"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/server-rhel9@sha256:641354f1d56627f49af3e32ad963616b69aac644ac33d664e7fe29de32fe43b3_s390x",
                "product": {
                  "name": "registry.redhat.io/devspaces/server-rhel9@sha256:641354f1d56627f49af3e32ad963616b69aac644ac33d664e7fe29de32fe43b3_s390x",
                  "product_id": "registry.redhat.io/devspaces/server-rhel9@sha256:641354f1d56627f49af3e32ad963616b69aac644ac33d664e7fe29de32fe43b3_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/server-rhel9@sha256%3A641354f1d56627f49af3e32ad963616b69aac644ac33d664e7fe29de32fe43b3?arch=s390x\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.23-1756753588"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/traefik-rhel9@sha256:5361443dee5415dc554d79e2fa23a6b336f1d8ea89fb20a4caa72f70574b939b_s390x",
                "product": {
                  "name": "registry.redhat.io/devspaces/traefik-rhel9@sha256:5361443dee5415dc554d79e2fa23a6b336f1d8ea89fb20a4caa72f70574b939b_s390x",
                  "product_id": "registry.redhat.io/devspaces/traefik-rhel9@sha256:5361443dee5415dc554d79e2fa23a6b336f1d8ea89fb20a4caa72f70574b939b_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/traefik-rhel9@sha256%3A5361443dee5415dc554d79e2fa23a6b336f1d8ea89fb20a4caa72f70574b939b?arch=s390x\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.23-1756504388"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/udi-rhel9@sha256:a4ca99dc99b864ef805f3e8d997f0567168c809433f16ec23540c0b8ead96216_s390x",
                "product": {
                  "name": "registry.redhat.io/devspaces/udi-rhel9@sha256:a4ca99dc99b864ef805f3e8d997f0567168c809433f16ec23540c0b8ead96216_s390x",
                  "product_id": "registry.redhat.io/devspaces/udi-rhel9@sha256:a4ca99dc99b864ef805f3e8d997f0567168c809433f16ec23540c0b8ead96216_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/udi-rhel9@sha256%3Aa4ca99dc99b864ef805f3e8d997f0567168c809433f16ec23540c0b8ead96216?arch=s390x\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.23-1757028609"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:b60b4b992b89b82620e5ea618350a97434b272d1f023200dcbeae642612e3569_s390x",
                "product": {
                  "name": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:b60b4b992b89b82620e5ea618350a97434b272d1f023200dcbeae642612e3569_s390x",
                  "product_id": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:b60b4b992b89b82620e5ea618350a97434b272d1f023200dcbeae642612e3569_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/udi-base-rhel9@sha256%3Ab60b4b992b89b82620e5ea618350a97434b272d1f023200dcbeae642612e3569?arch=s390x\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.23-1757037884"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/code-rhel9@sha256:8b2b33e91756bbd1c7ed6905e00176b9d55a4e13aee2f84862bc571a8a82f113_ppc64le",
                "product": {
                  "name": "registry.redhat.io/devspaces/code-rhel9@sha256:8b2b33e91756bbd1c7ed6905e00176b9d55a4e13aee2f84862bc571a8a82f113_ppc64le",
                  "product_id": "registry.redhat.io/devspaces/code-rhel9@sha256:8b2b33e91756bbd1c7ed6905e00176b9d55a4e13aee2f84862bc571a8a82f113_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/code-rhel9@sha256%3A8b2b33e91756bbd1c7ed6905e00176b9d55a4e13aee2f84862bc571a8a82f113?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.23-1757618807"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/configbump-rhel9@sha256:7ad9073c0a768f170cf8d4311ea35ec1caccfdefdf6d1dccbc10ed01cdeafd16_ppc64le",
                "product": {
                  "name": "registry.redhat.io/devspaces/configbump-rhel9@sha256:7ad9073c0a768f170cf8d4311ea35ec1caccfdefdf6d1dccbc10ed01cdeafd16_ppc64le",
                  "product_id": "registry.redhat.io/devspaces/configbump-rhel9@sha256:7ad9073c0a768f170cf8d4311ea35ec1caccfdefdf6d1dccbc10ed01cdeafd16_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/configbump-rhel9@sha256%3A7ad9073c0a768f170cf8d4311ea35ec1caccfdefdf6d1dccbc10ed01cdeafd16?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.23-1756506343"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:91e064bccc3f7320844763fc136cb4c650db40190e01edebe16135bcc00627ac_ppc64le",
                "product": {
                  "name": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:91e064bccc3f7320844763fc136cb4c650db40190e01edebe16135bcc00627ac_ppc64le",
                  "product_id": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:91e064bccc3f7320844763fc136cb4c650db40190e01edebe16135bcc00627ac_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/dashboard-rhel9@sha256%3A91e064bccc3f7320844763fc136cb4c650db40190e01edebe16135bcc00627ac?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.23-1757019057"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ad5f4d1b7f712416bb62785375ce15ef1a5cb3f1a77226899abc8aba32a11623_ppc64le",
                "product": {
                  "name": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ad5f4d1b7f712416bb62785375ce15ef1a5cb3f1a77226899abc8aba32a11623_ppc64le",
                  "product_id": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ad5f4d1b7f712416bb62785375ce15ef1a5cb3f1a77226899abc8aba32a11623_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/imagepuller-rhel9@sha256%3Aad5f4d1b7f712416bb62785375ce15ef1a5cb3f1a77226899abc8aba32a11623?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.23-1756507311"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:0dc291e3dc58d285d054a35b480d14c3912777e14fd643915b8ceabd178ad6bf_ppc64le",
                "product": {
                  "name": "registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:0dc291e3dc58d285d054a35b480d14c3912777e14fd643915b8ceabd178ad6bf_ppc64le",
                  "product_id": "registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:0dc291e3dc58d285d054a35b480d14c3912777e14fd643915b8ceabd178ad6bf_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/jetbrains-ide-rhel9@sha256%3A0dc291e3dc58d285d054a35b480d14c3912777e14fd643915b8ceabd178ad6bf?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces-tech-preview\u0026tag=3.23-1757019334"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/machineexec-rhel9@sha256:13f0ec3ce663f6701501e82bbb508549e149588eedb0982729a59d98c88d0ba0_ppc64le",
                "product": {
                  "name": "registry.redhat.io/devspaces/machineexec-rhel9@sha256:13f0ec3ce663f6701501e82bbb508549e149588eedb0982729a59d98c88d0ba0_ppc64le",
                  "product_id": "registry.redhat.io/devspaces/machineexec-rhel9@sha256:13f0ec3ce663f6701501e82bbb508549e149588eedb0982729a59d98c88d0ba0_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/machineexec-rhel9@sha256%3A13f0ec3ce663f6701501e82bbb508549e149588eedb0982729a59d98c88d0ba0?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.23-1756509551"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:e762a9019e4b5afd27331ad519a5b63a2bba3c7eb522533e0932e97c2879a36e_ppc64le",
                "product": {
                  "name": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:e762a9019e4b5afd27331ad519a5b63a2bba3c7eb522533e0932e97c2879a36e_ppc64le",
                  "product_id": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:e762a9019e4b5afd27331ad519a5b63a2bba3c7eb522533e0932e97c2879a36e_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/openvsx-rhel9@sha256%3Ae762a9019e4b5afd27331ad519a5b63a2bba3c7eb522533e0932e97c2879a36e?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.23-1757017659"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:38c9b56aa9c2a5153e01ffc1edb399247ed1937b9382ac4f0fb2beae4c27f69a_ppc64le",
                "product": {
                  "name": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:38c9b56aa9c2a5153e01ffc1edb399247ed1937b9382ac4f0fb2beae4c27f69a_ppc64le",
                  "product_id": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:38c9b56aa9c2a5153e01ffc1edb399247ed1937b9382ac4f0fb2beae4c27f69a_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/devspaces-rhel9-operator@sha256%3A38c9b56aa9c2a5153e01ffc1edb399247ed1937b9382ac4f0fb2beae4c27f69a?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.23-1756828766"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f4c5323da09593280fc61c2df7fced0f6dc9d3ca322d27069f51334c3d18dae_ppc64le",
                "product": {
                  "name": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f4c5323da09593280fc61c2df7fced0f6dc9d3ca322d27069f51334c3d18dae_ppc64le",
                  "product_id": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f4c5323da09593280fc61c2df7fced0f6dc9d3ca322d27069f51334c3d18dae_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/pluginregistry-rhel9@sha256%3A5f4c5323da09593280fc61c2df7fced0f6dc9d3ca322d27069f51334c3d18dae?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.23-1757367052"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/server-rhel9@sha256:fa5400aecca1a46c4b98d00c749ea56d6187ced20952f02e4dd1c12e2467117e_ppc64le",
                "product": {
                  "name": "registry.redhat.io/devspaces/server-rhel9@sha256:fa5400aecca1a46c4b98d00c749ea56d6187ced20952f02e4dd1c12e2467117e_ppc64le",
                  "product_id": "registry.redhat.io/devspaces/server-rhel9@sha256:fa5400aecca1a46c4b98d00c749ea56d6187ced20952f02e4dd1c12e2467117e_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/server-rhel9@sha256%3Afa5400aecca1a46c4b98d00c749ea56d6187ced20952f02e4dd1c12e2467117e?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.23-1756753588"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/traefik-rhel9@sha256:a152f1e75dd10ba692587a4e702d59cd1c5adcde8b97390f58742270edf85d33_ppc64le",
                "product": {
                  "name": "registry.redhat.io/devspaces/traefik-rhel9@sha256:a152f1e75dd10ba692587a4e702d59cd1c5adcde8b97390f58742270edf85d33_ppc64le",
                  "product_id": "registry.redhat.io/devspaces/traefik-rhel9@sha256:a152f1e75dd10ba692587a4e702d59cd1c5adcde8b97390f58742270edf85d33_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/traefik-rhel9@sha256%3Aa152f1e75dd10ba692587a4e702d59cd1c5adcde8b97390f58742270edf85d33?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.23-1756504388"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/udi-rhel9@sha256:cc31b6212f77e03383e615ee30fd97419806c3841f18d2f6c950d82cdd21e872_ppc64le",
                "product": {
                  "name": "registry.redhat.io/devspaces/udi-rhel9@sha256:cc31b6212f77e03383e615ee30fd97419806c3841f18d2f6c950d82cdd21e872_ppc64le",
                  "product_id": "registry.redhat.io/devspaces/udi-rhel9@sha256:cc31b6212f77e03383e615ee30fd97419806c3841f18d2f6c950d82cdd21e872_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/udi-rhel9@sha256%3Acc31b6212f77e03383e615ee30fd97419806c3841f18d2f6c950d82cdd21e872?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.23-1757028609"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:ee9d72769b916b350307df495022e04add1fbcd67c1e62757fd316e7f1dd60ae_ppc64le",
                "product": {
                  "name": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:ee9d72769b916b350307df495022e04add1fbcd67c1e62757fd316e7f1dd60ae_ppc64le",
                  "product_id": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:ee9d72769b916b350307df495022e04add1fbcd67c1e62757fd316e7f1dd60ae_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/udi-base-rhel9@sha256%3Aee9d72769b916b350307df495022e04add1fbcd67c1e62757fd316e7f1dd60ae?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.23-1757037884"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/code-rhel9@sha256:32d9568317c55235f75c4d0e1c98de6d4af252cbdd116ed2355025cbaeac862f_arm64",
                "product": {
                  "name": "registry.redhat.io/devspaces/code-rhel9@sha256:32d9568317c55235f75c4d0e1c98de6d4af252cbdd116ed2355025cbaeac862f_arm64",
                  "product_id": "registry.redhat.io/devspaces/code-rhel9@sha256:32d9568317c55235f75c4d0e1c98de6d4af252cbdd116ed2355025cbaeac862f_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/code-rhel9@sha256%3A32d9568317c55235f75c4d0e1c98de6d4af252cbdd116ed2355025cbaeac862f?arch=arm64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.23-1757618807"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/configbump-rhel9@sha256:43cdf063e9a6aa5f84233c8bd850a711b5d5fae8a7795803609fec07d189ca05_arm64",
                "product": {
                  "name": "registry.redhat.io/devspaces/configbump-rhel9@sha256:43cdf063e9a6aa5f84233c8bd850a711b5d5fae8a7795803609fec07d189ca05_arm64",
                  "product_id": "registry.redhat.io/devspaces/configbump-rhel9@sha256:43cdf063e9a6aa5f84233c8bd850a711b5d5fae8a7795803609fec07d189ca05_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/configbump-rhel9@sha256%3A43cdf063e9a6aa5f84233c8bd850a711b5d5fae8a7795803609fec07d189ca05?arch=arm64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.23-1756506343"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:78dabed4a5fc1eb3246778e6ee6e1a543829cf88d0b03f0ccccf101c41a7bdda_arm64",
                "product": {
                  "name": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:78dabed4a5fc1eb3246778e6ee6e1a543829cf88d0b03f0ccccf101c41a7bdda_arm64",
                  "product_id": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:78dabed4a5fc1eb3246778e6ee6e1a543829cf88d0b03f0ccccf101c41a7bdda_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/dashboard-rhel9@sha256%3A78dabed4a5fc1eb3246778e6ee6e1a543829cf88d0b03f0ccccf101c41a7bdda?arch=arm64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.23-1757019057"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c9808efcb221c10d78bdf663e3b5e3d5d281bf59702be049090fc1fa0511b078_arm64",
                "product": {
                  "name": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c9808efcb221c10d78bdf663e3b5e3d5d281bf59702be049090fc1fa0511b078_arm64",
                  "product_id": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c9808efcb221c10d78bdf663e3b5e3d5d281bf59702be049090fc1fa0511b078_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/imagepuller-rhel9@sha256%3Ac9808efcb221c10d78bdf663e3b5e3d5d281bf59702be049090fc1fa0511b078?arch=arm64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.23-1756507311"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:d0b17cb5f9a530ca959058fe926b3f5c42539487e23587d51948f49d7a38cf5d_arm64",
                "product": {
                  "name": "registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:d0b17cb5f9a530ca959058fe926b3f5c42539487e23587d51948f49d7a38cf5d_arm64",
                  "product_id": "registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:d0b17cb5f9a530ca959058fe926b3f5c42539487e23587d51948f49d7a38cf5d_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/jetbrains-ide-rhel9@sha256%3Ad0b17cb5f9a530ca959058fe926b3f5c42539487e23587d51948f49d7a38cf5d?arch=arm64\u0026repository_url=registry.redhat.io/devspaces-tech-preview\u0026tag=3.23-1757019334"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/machineexec-rhel9@sha256:43d9679eb3ac8d5287863137f2d698d814a2fbc2fbd6a6aacba11240cd76d40c_arm64",
                "product": {
                  "name": "registry.redhat.io/devspaces/machineexec-rhel9@sha256:43d9679eb3ac8d5287863137f2d698d814a2fbc2fbd6a6aacba11240cd76d40c_arm64",
                  "product_id": "registry.redhat.io/devspaces/machineexec-rhel9@sha256:43d9679eb3ac8d5287863137f2d698d814a2fbc2fbd6a6aacba11240cd76d40c_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/machineexec-rhel9@sha256%3A43d9679eb3ac8d5287863137f2d698d814a2fbc2fbd6a6aacba11240cd76d40c?arch=arm64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.23-1756509551"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:15300e7d45a8e2093ef6f33303174f7361de7d9b648f8c9f2cf06f8ba3c56c76_arm64",
                "product": {
                  "name": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:15300e7d45a8e2093ef6f33303174f7361de7d9b648f8c9f2cf06f8ba3c56c76_arm64",
                  "product_id": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:15300e7d45a8e2093ef6f33303174f7361de7d9b648f8c9f2cf06f8ba3c56c76_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/openvsx-rhel9@sha256%3A15300e7d45a8e2093ef6f33303174f7361de7d9b648f8c9f2cf06f8ba3c56c76?arch=arm64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.23-1757017659"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f5b515ecaea7d542ac18ea5a056c99fe84ca2ac25fa3904bdc50a78ecf47541f_arm64",
                "product": {
                  "name": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f5b515ecaea7d542ac18ea5a056c99fe84ca2ac25fa3904bdc50a78ecf47541f_arm64",
                  "product_id": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f5b515ecaea7d542ac18ea5a056c99fe84ca2ac25fa3904bdc50a78ecf47541f_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/devspaces-rhel9-operator@sha256%3Af5b515ecaea7d542ac18ea5a056c99fe84ca2ac25fa3904bdc50a78ecf47541f?arch=arm64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.23-1756828766"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:cc4f2ce5926da93eaf81b0935d3171d81a310ec97e3c08bbbf6599752446810d_arm64",
                "product": {
                  "name": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:cc4f2ce5926da93eaf81b0935d3171d81a310ec97e3c08bbbf6599752446810d_arm64",
                  "product_id": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:cc4f2ce5926da93eaf81b0935d3171d81a310ec97e3c08bbbf6599752446810d_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/pluginregistry-rhel9@sha256%3Acc4f2ce5926da93eaf81b0935d3171d81a310ec97e3c08bbbf6599752446810d?arch=arm64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.23-1757367052"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/server-rhel9@sha256:3cfcd5f9ab8ec42cefd8fab992ecb493a9d14126bdf53ba542ffa4b51fd1684c_arm64",
                "product": {
                  "name": "registry.redhat.io/devspaces/server-rhel9@sha256:3cfcd5f9ab8ec42cefd8fab992ecb493a9d14126bdf53ba542ffa4b51fd1684c_arm64",
                  "product_id": "registry.redhat.io/devspaces/server-rhel9@sha256:3cfcd5f9ab8ec42cefd8fab992ecb493a9d14126bdf53ba542ffa4b51fd1684c_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/server-rhel9@sha256%3A3cfcd5f9ab8ec42cefd8fab992ecb493a9d14126bdf53ba542ffa4b51fd1684c?arch=arm64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.23-1756753588"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/traefik-rhel9@sha256:f17428eced9d6bec1eaaa1510b68250824d3ace2f66af7f31fbf7327ca11540c_arm64",
                "product": {
                  "name": "registry.redhat.io/devspaces/traefik-rhel9@sha256:f17428eced9d6bec1eaaa1510b68250824d3ace2f66af7f31fbf7327ca11540c_arm64",
                  "product_id": "registry.redhat.io/devspaces/traefik-rhel9@sha256:f17428eced9d6bec1eaaa1510b68250824d3ace2f66af7f31fbf7327ca11540c_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/traefik-rhel9@sha256%3Af17428eced9d6bec1eaaa1510b68250824d3ace2f66af7f31fbf7327ca11540c?arch=arm64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.23-1756504388"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/udi-rhel9@sha256:53618eb41967e64660e87e5ad6ce8f5d9803aed9bb48da8898aaefb4d0a4632d_arm64",
                "product": {
                  "name": "registry.redhat.io/devspaces/udi-rhel9@sha256:53618eb41967e64660e87e5ad6ce8f5d9803aed9bb48da8898aaefb4d0a4632d_arm64",
                  "product_id": "registry.redhat.io/devspaces/udi-rhel9@sha256:53618eb41967e64660e87e5ad6ce8f5d9803aed9bb48da8898aaefb4d0a4632d_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/udi-rhel9@sha256%3A53618eb41967e64660e87e5ad6ce8f5d9803aed9bb48da8898aaefb4d0a4632d?arch=arm64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.23-1757028609"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:a86e59cedc67e9fcee3412afa157572a2ab815a3d9e18da03ada502f7313cc80_arm64",
                "product": {
                  "name": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:a86e59cedc67e9fcee3412afa157572a2ab815a3d9e18da03ada502f7313cc80_arm64",
                  "product_id": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:a86e59cedc67e9fcee3412afa157572a2ab815a3d9e18da03ada502f7313cc80_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/udi-base-rhel9@sha256%3Aa86e59cedc67e9fcee3412afa157572a2ab815a3d9e18da03ada502f7313cc80?arch=arm64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.23-1757037884"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "arm64"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces-tech-preview/idea-rhel9@sha256:df24ebb239a2cc0d4543309f51a7268c7d524d428a536e0b3443c51089c3f87e_amd64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/idea-rhel9@sha256:df24ebb239a2cc0d4543309f51a7268c7d524d428a536e0b3443c51089c3f87e_amd64"
        },
        "product_reference": "registry.redhat.io/devspaces-tech-preview/idea-rhel9@sha256:df24ebb239a2cc0d4543309f51a7268c7d524d428a536e0b3443c51089c3f87e_amd64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:0dc291e3dc58d285d054a35b480d14c3912777e14fd643915b8ceabd178ad6bf_ppc64le as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:0dc291e3dc58d285d054a35b480d14c3912777e14fd643915b8ceabd178ad6bf_ppc64le"
        },
        "product_reference": "registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:0dc291e3dc58d285d054a35b480d14c3912777e14fd643915b8ceabd178ad6bf_ppc64le",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:ac5b3e78470c747377dbc9ecb6e0680d724086c331955ed5471b74d01155ece8_amd64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:ac5b3e78470c747377dbc9ecb6e0680d724086c331955ed5471b74d01155ece8_amd64"
        },
        "product_reference": "registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:ac5b3e78470c747377dbc9ecb6e0680d724086c331955ed5471b74d01155ece8_amd64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:cd1ee1d15cafe77bbf8e283cee2cde88dcdfb59c9545867a047cf4b42089aa85_s390x as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:cd1ee1d15cafe77bbf8e283cee2cde88dcdfb59c9545867a047cf4b42089aa85_s390x"
        },
        "product_reference": "registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:cd1ee1d15cafe77bbf8e283cee2cde88dcdfb59c9545867a047cf4b42089aa85_s390x",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:d0b17cb5f9a530ca959058fe926b3f5c42539487e23587d51948f49d7a38cf5d_arm64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:d0b17cb5f9a530ca959058fe926b3f5c42539487e23587d51948f49d7a38cf5d_arm64"
        },
        "product_reference": "registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:d0b17cb5f9a530ca959058fe926b3f5c42539487e23587d51948f49d7a38cf5d_arm64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/code-rhel9@sha256:2bfe5265856abdd8cb490bde852d4e992f1793684f003d1ef53776fe69d790d7_amd64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:2bfe5265856abdd8cb490bde852d4e992f1793684f003d1ef53776fe69d790d7_amd64"
        },
        "product_reference": "registry.redhat.io/devspaces/code-rhel9@sha256:2bfe5265856abdd8cb490bde852d4e992f1793684f003d1ef53776fe69d790d7_amd64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/code-rhel9@sha256:32d9568317c55235f75c4d0e1c98de6d4af252cbdd116ed2355025cbaeac862f_arm64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:32d9568317c55235f75c4d0e1c98de6d4af252cbdd116ed2355025cbaeac862f_arm64"
        },
        "product_reference": "registry.redhat.io/devspaces/code-rhel9@sha256:32d9568317c55235f75c4d0e1c98de6d4af252cbdd116ed2355025cbaeac862f_arm64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/code-rhel9@sha256:48b99d167a5c54a98e69bba441bb5b70db2ffe065d3f8f8d23ecfed7b813336e_s390x as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:48b99d167a5c54a98e69bba441bb5b70db2ffe065d3f8f8d23ecfed7b813336e_s390x"
        },
        "product_reference": "registry.redhat.io/devspaces/code-rhel9@sha256:48b99d167a5c54a98e69bba441bb5b70db2ffe065d3f8f8d23ecfed7b813336e_s390x",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/code-rhel9@sha256:8b2b33e91756bbd1c7ed6905e00176b9d55a4e13aee2f84862bc571a8a82f113_ppc64le as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:8b2b33e91756bbd1c7ed6905e00176b9d55a4e13aee2f84862bc571a8a82f113_ppc64le"
        },
        "product_reference": "registry.redhat.io/devspaces/code-rhel9@sha256:8b2b33e91756bbd1c7ed6905e00176b9d55a4e13aee2f84862bc571a8a82f113_ppc64le",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/configbump-rhel9@sha256:43cdf063e9a6aa5f84233c8bd850a711b5d5fae8a7795803609fec07d189ca05_arm64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:43cdf063e9a6aa5f84233c8bd850a711b5d5fae8a7795803609fec07d189ca05_arm64"
        },
        "product_reference": "registry.redhat.io/devspaces/configbump-rhel9@sha256:43cdf063e9a6aa5f84233c8bd850a711b5d5fae8a7795803609fec07d189ca05_arm64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/configbump-rhel9@sha256:7ad9073c0a768f170cf8d4311ea35ec1caccfdefdf6d1dccbc10ed01cdeafd16_ppc64le as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:7ad9073c0a768f170cf8d4311ea35ec1caccfdefdf6d1dccbc10ed01cdeafd16_ppc64le"
        },
        "product_reference": "registry.redhat.io/devspaces/configbump-rhel9@sha256:7ad9073c0a768f170cf8d4311ea35ec1caccfdefdf6d1dccbc10ed01cdeafd16_ppc64le",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/configbump-rhel9@sha256:934c224a59086c689be1839b6846a0984370a78a8adc8510fa692f5215bb6182_s390x as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:934c224a59086c689be1839b6846a0984370a78a8adc8510fa692f5215bb6182_s390x"
        },
        "product_reference": "registry.redhat.io/devspaces/configbump-rhel9@sha256:934c224a59086c689be1839b6846a0984370a78a8adc8510fa692f5215bb6182_s390x",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/configbump-rhel9@sha256:d2bfcb27baf36e569eca4f7c85f458a180d7938616413a4cf8e10cb329e6a150_amd64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:d2bfcb27baf36e569eca4f7c85f458a180d7938616413a4cf8e10cb329e6a150_amd64"
        },
        "product_reference": "registry.redhat.io/devspaces/configbump-rhel9@sha256:d2bfcb27baf36e569eca4f7c85f458a180d7938616413a4cf8e10cb329e6a150_amd64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:78dabed4a5fc1eb3246778e6ee6e1a543829cf88d0b03f0ccccf101c41a7bdda_arm64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:78dabed4a5fc1eb3246778e6ee6e1a543829cf88d0b03f0ccccf101c41a7bdda_arm64"
        },
        "product_reference": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:78dabed4a5fc1eb3246778e6ee6e1a543829cf88d0b03f0ccccf101c41a7bdda_arm64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:7c98501fee1297a24caa77d325f6bfd7f91192589f0aa22d47d9766e8219c749_s390x as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:7c98501fee1297a24caa77d325f6bfd7f91192589f0aa22d47d9766e8219c749_s390x"
        },
        "product_reference": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:7c98501fee1297a24caa77d325f6bfd7f91192589f0aa22d47d9766e8219c749_s390x",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:905d45518e20ea10daa3a35ea2f2201a6f762a16f9b4829ce37b7396d493ac59_amd64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:905d45518e20ea10daa3a35ea2f2201a6f762a16f9b4829ce37b7396d493ac59_amd64"
        },
        "product_reference": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:905d45518e20ea10daa3a35ea2f2201a6f762a16f9b4829ce37b7396d493ac59_amd64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:91e064bccc3f7320844763fc136cb4c650db40190e01edebe16135bcc00627ac_ppc64le as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:91e064bccc3f7320844763fc136cb4c650db40190e01edebe16135bcc00627ac_ppc64le"
        },
        "product_reference": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:91e064bccc3f7320844763fc136cb4c650db40190e01edebe16135bcc00627ac_ppc64le",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:a48dd94d5616183843ba939146b7e4d985210cdd902038ff80ff6df3df3d74ca_amd64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:a48dd94d5616183843ba939146b7e4d985210cdd902038ff80ff6df3df3d74ca_amd64"
        },
        "product_reference": "registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:a48dd94d5616183843ba939146b7e4d985210cdd902038ff80ff6df3df3d74ca_amd64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:2b18f2cf31e0914762cc6e99c9797c24a19db69ca08bc9983bc2aacc85ee7024_amd64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:2b18f2cf31e0914762cc6e99c9797c24a19db69ca08bc9983bc2aacc85ee7024_amd64"
        },
        "product_reference": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:2b18f2cf31e0914762cc6e99c9797c24a19db69ca08bc9983bc2aacc85ee7024_amd64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:38c9b56aa9c2a5153e01ffc1edb399247ed1937b9382ac4f0fb2beae4c27f69a_ppc64le as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:38c9b56aa9c2a5153e01ffc1edb399247ed1937b9382ac4f0fb2beae4c27f69a_ppc64le"
        },
        "product_reference": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:38c9b56aa9c2a5153e01ffc1edb399247ed1937b9382ac4f0fb2beae4c27f69a_ppc64le",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:59f85768c28401783b9475ce21088e3d8fbf6bcd64bb49e3a243c881ac6b546c_s390x as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:59f85768c28401783b9475ce21088e3d8fbf6bcd64bb49e3a243c881ac6b546c_s390x"
        },
        "product_reference": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:59f85768c28401783b9475ce21088e3d8fbf6bcd64bb49e3a243c881ac6b546c_s390x",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f5b515ecaea7d542ac18ea5a056c99fe84ca2ac25fa3904bdc50a78ecf47541f_arm64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f5b515ecaea7d542ac18ea5a056c99fe84ca2ac25fa3904bdc50a78ecf47541f_arm64"
        },
        "product_reference": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f5b515ecaea7d542ac18ea5a056c99fe84ca2ac25fa3904bdc50a78ecf47541f_arm64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8cdf016c4d61bce4f244415ae192fe1647ef517ba1690f2009b5b8e1104c72a7_s390x as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8cdf016c4d61bce4f244415ae192fe1647ef517ba1690f2009b5b8e1104c72a7_s390x"
        },
        "product_reference": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8cdf016c4d61bce4f244415ae192fe1647ef517ba1690f2009b5b8e1104c72a7_s390x",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:a69c6f8b091d11c69b6864edc6973c6f5f4515eb3a1923bf51fdb971315c28b0_amd64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:a69c6f8b091d11c69b6864edc6973c6f5f4515eb3a1923bf51fdb971315c28b0_amd64"
        },
        "product_reference": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:a69c6f8b091d11c69b6864edc6973c6f5f4515eb3a1923bf51fdb971315c28b0_amd64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ad5f4d1b7f712416bb62785375ce15ef1a5cb3f1a77226899abc8aba32a11623_ppc64le as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ad5f4d1b7f712416bb62785375ce15ef1a5cb3f1a77226899abc8aba32a11623_ppc64le"
        },
        "product_reference": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ad5f4d1b7f712416bb62785375ce15ef1a5cb3f1a77226899abc8aba32a11623_ppc64le",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c9808efcb221c10d78bdf663e3b5e3d5d281bf59702be049090fc1fa0511b078_arm64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c9808efcb221c10d78bdf663e3b5e3d5d281bf59702be049090fc1fa0511b078_arm64"
        },
        "product_reference": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c9808efcb221c10d78bdf663e3b5e3d5d281bf59702be049090fc1fa0511b078_arm64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/machineexec-rhel9@sha256:13f0ec3ce663f6701501e82bbb508549e149588eedb0982729a59d98c88d0ba0_ppc64le as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:13f0ec3ce663f6701501e82bbb508549e149588eedb0982729a59d98c88d0ba0_ppc64le"
        },
        "product_reference": "registry.redhat.io/devspaces/machineexec-rhel9@sha256:13f0ec3ce663f6701501e82bbb508549e149588eedb0982729a59d98c88d0ba0_ppc64le",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/machineexec-rhel9@sha256:43d9679eb3ac8d5287863137f2d698d814a2fbc2fbd6a6aacba11240cd76d40c_arm64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:43d9679eb3ac8d5287863137f2d698d814a2fbc2fbd6a6aacba11240cd76d40c_arm64"
        },
        "product_reference": "registry.redhat.io/devspaces/machineexec-rhel9@sha256:43d9679eb3ac8d5287863137f2d698d814a2fbc2fbd6a6aacba11240cd76d40c_arm64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/machineexec-rhel9@sha256:d23a4d9f0967f53d15fefda63e972e035d23aebe819dd11a6cec9beceacd8997_amd64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:d23a4d9f0967f53d15fefda63e972e035d23aebe819dd11a6cec9beceacd8997_amd64"
        },
        "product_reference": "registry.redhat.io/devspaces/machineexec-rhel9@sha256:d23a4d9f0967f53d15fefda63e972e035d23aebe819dd11a6cec9beceacd8997_amd64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/machineexec-rhel9@sha256:e32fc2e1c50fb1110a835e29e6e360b4127ed84fca98c6276b0b171ccd6cb223_s390x as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:e32fc2e1c50fb1110a835e29e6e360b4127ed84fca98c6276b0b171ccd6cb223_s390x"
        },
        "product_reference": "registry.redhat.io/devspaces/machineexec-rhel9@sha256:e32fc2e1c50fb1110a835e29e6e360b4127ed84fca98c6276b0b171ccd6cb223_s390x",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:1168d897f16b276ba5a6e6170e31fbe1499a980666aed493b2fe27036471ba55_s390x as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:1168d897f16b276ba5a6e6170e31fbe1499a980666aed493b2fe27036471ba55_s390x"
        },
        "product_reference": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:1168d897f16b276ba5a6e6170e31fbe1499a980666aed493b2fe27036471ba55_s390x",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:15300e7d45a8e2093ef6f33303174f7361de7d9b648f8c9f2cf06f8ba3c56c76_arm64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:15300e7d45a8e2093ef6f33303174f7361de7d9b648f8c9f2cf06f8ba3c56c76_arm64"
        },
        "product_reference": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:15300e7d45a8e2093ef6f33303174f7361de7d9b648f8c9f2cf06f8ba3c56c76_arm64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:6ccd50b0049e4ba0f9d4ea8779b17c6acc95395490579fbaa3b9e9084ac7d314_amd64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:6ccd50b0049e4ba0f9d4ea8779b17c6acc95395490579fbaa3b9e9084ac7d314_amd64"
        },
        "product_reference": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:6ccd50b0049e4ba0f9d4ea8779b17c6acc95395490579fbaa3b9e9084ac7d314_amd64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:e762a9019e4b5afd27331ad519a5b63a2bba3c7eb522533e0932e97c2879a36e_ppc64le as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e762a9019e4b5afd27331ad519a5b63a2bba3c7eb522533e0932e97c2879a36e_ppc64le"
        },
        "product_reference": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:e762a9019e4b5afd27331ad519a5b63a2bba3c7eb522533e0932e97c2879a36e_ppc64le",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f4c5323da09593280fc61c2df7fced0f6dc9d3ca322d27069f51334c3d18dae_ppc64le as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f4c5323da09593280fc61c2df7fced0f6dc9d3ca322d27069f51334c3d18dae_ppc64le"
        },
        "product_reference": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f4c5323da09593280fc61c2df7fced0f6dc9d3ca322d27069f51334c3d18dae_ppc64le",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:918c66e3ea09e481c38673314021ef1aa6b46afc9dcb115b9d19b6819c5db4a7_amd64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:918c66e3ea09e481c38673314021ef1aa6b46afc9dcb115b9d19b6819c5db4a7_amd64"
        },
        "product_reference": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:918c66e3ea09e481c38673314021ef1aa6b46afc9dcb115b9d19b6819c5db4a7_amd64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:cc4f2ce5926da93eaf81b0935d3171d81a310ec97e3c08bbbf6599752446810d_arm64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:cc4f2ce5926da93eaf81b0935d3171d81a310ec97e3c08bbbf6599752446810d_arm64"
        },
        "product_reference": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:cc4f2ce5926da93eaf81b0935d3171d81a310ec97e3c08bbbf6599752446810d_arm64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f2bcd5123e4fad7aa4ad54f2819a1beb75d844302aa162e0335c1a0191fe5346_s390x as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f2bcd5123e4fad7aa4ad54f2819a1beb75d844302aa162e0335c1a0191fe5346_s390x"
        },
        "product_reference": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f2bcd5123e4fad7aa4ad54f2819a1beb75d844302aa162e0335c1a0191fe5346_s390x",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/server-rhel9@sha256:27b7eef1c64e432dbe15e92cf745a951aebdc9b379d9c02dbfef6df296c39cd1_amd64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:27b7eef1c64e432dbe15e92cf745a951aebdc9b379d9c02dbfef6df296c39cd1_amd64"
        },
        "product_reference": "registry.redhat.io/devspaces/server-rhel9@sha256:27b7eef1c64e432dbe15e92cf745a951aebdc9b379d9c02dbfef6df296c39cd1_amd64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/server-rhel9@sha256:3cfcd5f9ab8ec42cefd8fab992ecb493a9d14126bdf53ba542ffa4b51fd1684c_arm64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:3cfcd5f9ab8ec42cefd8fab992ecb493a9d14126bdf53ba542ffa4b51fd1684c_arm64"
        },
        "product_reference": "registry.redhat.io/devspaces/server-rhel9@sha256:3cfcd5f9ab8ec42cefd8fab992ecb493a9d14126bdf53ba542ffa4b51fd1684c_arm64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/server-rhel9@sha256:641354f1d56627f49af3e32ad963616b69aac644ac33d664e7fe29de32fe43b3_s390x as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:641354f1d56627f49af3e32ad963616b69aac644ac33d664e7fe29de32fe43b3_s390x"
        },
        "product_reference": "registry.redhat.io/devspaces/server-rhel9@sha256:641354f1d56627f49af3e32ad963616b69aac644ac33d664e7fe29de32fe43b3_s390x",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/server-rhel9@sha256:fa5400aecca1a46c4b98d00c749ea56d6187ced20952f02e4dd1c12e2467117e_ppc64le as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:fa5400aecca1a46c4b98d00c749ea56d6187ced20952f02e4dd1c12e2467117e_ppc64le"
        },
        "product_reference": "registry.redhat.io/devspaces/server-rhel9@sha256:fa5400aecca1a46c4b98d00c749ea56d6187ced20952f02e4dd1c12e2467117e_ppc64le",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/traefik-rhel9@sha256:15a4a74016cdb94aece0bc651edd221b72a9202e5fd414d30ae969707cb5b4c9_amd64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:15a4a74016cdb94aece0bc651edd221b72a9202e5fd414d30ae969707cb5b4c9_amd64"
        },
        "product_reference": "registry.redhat.io/devspaces/traefik-rhel9@sha256:15a4a74016cdb94aece0bc651edd221b72a9202e5fd414d30ae969707cb5b4c9_amd64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/traefik-rhel9@sha256:5361443dee5415dc554d79e2fa23a6b336f1d8ea89fb20a4caa72f70574b939b_s390x as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:5361443dee5415dc554d79e2fa23a6b336f1d8ea89fb20a4caa72f70574b939b_s390x"
        },
        "product_reference": "registry.redhat.io/devspaces/traefik-rhel9@sha256:5361443dee5415dc554d79e2fa23a6b336f1d8ea89fb20a4caa72f70574b939b_s390x",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/traefik-rhel9@sha256:a152f1e75dd10ba692587a4e702d59cd1c5adcde8b97390f58742270edf85d33_ppc64le as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:a152f1e75dd10ba692587a4e702d59cd1c5adcde8b97390f58742270edf85d33_ppc64le"
        },
        "product_reference": "registry.redhat.io/devspaces/traefik-rhel9@sha256:a152f1e75dd10ba692587a4e702d59cd1c5adcde8b97390f58742270edf85d33_ppc64le",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/traefik-rhel9@sha256:f17428eced9d6bec1eaaa1510b68250824d3ace2f66af7f31fbf7327ca11540c_arm64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:f17428eced9d6bec1eaaa1510b68250824d3ace2f66af7f31fbf7327ca11540c_arm64"
        },
        "product_reference": "registry.redhat.io/devspaces/traefik-rhel9@sha256:f17428eced9d6bec1eaaa1510b68250824d3ace2f66af7f31fbf7327ca11540c_arm64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:42d8388fafeb7c188b03389c92561da4068f91a8cc2343f33d967939342e4f64_amd64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:42d8388fafeb7c188b03389c92561da4068f91a8cc2343f33d967939342e4f64_amd64"
        },
        "product_reference": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:42d8388fafeb7c188b03389c92561da4068f91a8cc2343f33d967939342e4f64_amd64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:a86e59cedc67e9fcee3412afa157572a2ab815a3d9e18da03ada502f7313cc80_arm64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:a86e59cedc67e9fcee3412afa157572a2ab815a3d9e18da03ada502f7313cc80_arm64"
        },
        "product_reference": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:a86e59cedc67e9fcee3412afa157572a2ab815a3d9e18da03ada502f7313cc80_arm64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:b60b4b992b89b82620e5ea618350a97434b272d1f023200dcbeae642612e3569_s390x as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b60b4b992b89b82620e5ea618350a97434b272d1f023200dcbeae642612e3569_s390x"
        },
        "product_reference": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:b60b4b992b89b82620e5ea618350a97434b272d1f023200dcbeae642612e3569_s390x",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:ee9d72769b916b350307df495022e04add1fbcd67c1e62757fd316e7f1dd60ae_ppc64le as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ee9d72769b916b350307df495022e04add1fbcd67c1e62757fd316e7f1dd60ae_ppc64le"
        },
        "product_reference": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:ee9d72769b916b350307df495022e04add1fbcd67c1e62757fd316e7f1dd60ae_ppc64le",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/udi-rhel9@sha256:53618eb41967e64660e87e5ad6ce8f5d9803aed9bb48da8898aaefb4d0a4632d_arm64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:53618eb41967e64660e87e5ad6ce8f5d9803aed9bb48da8898aaefb4d0a4632d_arm64"
        },
        "product_reference": "registry.redhat.io/devspaces/udi-rhel9@sha256:53618eb41967e64660e87e5ad6ce8f5d9803aed9bb48da8898aaefb4d0a4632d_arm64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/udi-rhel9@sha256:65176a94e684c200beef8f25016982ab212bdcd10d31b54a831310e20c026f77_amd64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:65176a94e684c200beef8f25016982ab212bdcd10d31b54a831310e20c026f77_amd64"
        },
        "product_reference": "registry.redhat.io/devspaces/udi-rhel9@sha256:65176a94e684c200beef8f25016982ab212bdcd10d31b54a831310e20c026f77_amd64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/udi-rhel9@sha256:a4ca99dc99b864ef805f3e8d997f0567168c809433f16ec23540c0b8ead96216_s390x as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:a4ca99dc99b864ef805f3e8d997f0567168c809433f16ec23540c0b8ead96216_s390x"
        },
        "product_reference": "registry.redhat.io/devspaces/udi-rhel9@sha256:a4ca99dc99b864ef805f3e8d997f0567168c809433f16ec23540c0b8ead96216_s390x",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/udi-rhel9@sha256:cc31b6212f77e03383e615ee30fd97419806c3841f18d2f6c950d82cdd21e872_ppc64le as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.23",
          "product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:cc31b6212f77e03383e615ee30fd97419806c3841f18d2f6c950d82cdd21e872_ppc64le"
        },
        "product_reference": "registry.redhat.io/devspaces/udi-rhel9@sha256:cc31b6212f77e03383e615ee30fd97419806c3841f18d2f6c950d82cdd21e872_ppc64le",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2024-10005",
      "cwe": {
        "id": "CWE-22",
        "name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
      },
      "discovery_date": "2024-10-30T22:00:40.599537+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/idea-rhel9@sha256:df24ebb239a2cc0d4543309f51a7268c7d524d428a536e0b3443c51089c3f87e_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:0dc291e3dc58d285d054a35b480d14c3912777e14fd643915b8ceabd178ad6bf_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:ac5b3e78470c747377dbc9ecb6e0680d724086c331955ed5471b74d01155ece8_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:cd1ee1d15cafe77bbf8e283cee2cde88dcdfb59c9545867a047cf4b42089aa85_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:d0b17cb5f9a530ca959058fe926b3f5c42539487e23587d51948f49d7a38cf5d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:2bfe5265856abdd8cb490bde852d4e992f1793684f003d1ef53776fe69d790d7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:32d9568317c55235f75c4d0e1c98de6d4af252cbdd116ed2355025cbaeac862f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:48b99d167a5c54a98e69bba441bb5b70db2ffe065d3f8f8d23ecfed7b813336e_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:8b2b33e91756bbd1c7ed6905e00176b9d55a4e13aee2f84862bc571a8a82f113_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:43cdf063e9a6aa5f84233c8bd850a711b5d5fae8a7795803609fec07d189ca05_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:7ad9073c0a768f170cf8d4311ea35ec1caccfdefdf6d1dccbc10ed01cdeafd16_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:934c224a59086c689be1839b6846a0984370a78a8adc8510fa692f5215bb6182_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:d2bfcb27baf36e569eca4f7c85f458a180d7938616413a4cf8e10cb329e6a150_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:78dabed4a5fc1eb3246778e6ee6e1a543829cf88d0b03f0ccccf101c41a7bdda_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:7c98501fee1297a24caa77d325f6bfd7f91192589f0aa22d47d9766e8219c749_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:905d45518e20ea10daa3a35ea2f2201a6f762a16f9b4829ce37b7396d493ac59_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:91e064bccc3f7320844763fc136cb4c650db40190e01edebe16135bcc00627ac_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:a48dd94d5616183843ba939146b7e4d985210cdd902038ff80ff6df3df3d74ca_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:2b18f2cf31e0914762cc6e99c9797c24a19db69ca08bc9983bc2aacc85ee7024_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:38c9b56aa9c2a5153e01ffc1edb399247ed1937b9382ac4f0fb2beae4c27f69a_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:59f85768c28401783b9475ce21088e3d8fbf6bcd64bb49e3a243c881ac6b546c_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f5b515ecaea7d542ac18ea5a056c99fe84ca2ac25fa3904bdc50a78ecf47541f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8cdf016c4d61bce4f244415ae192fe1647ef517ba1690f2009b5b8e1104c72a7_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:a69c6f8b091d11c69b6864edc6973c6f5f4515eb3a1923bf51fdb971315c28b0_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ad5f4d1b7f712416bb62785375ce15ef1a5cb3f1a77226899abc8aba32a11623_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c9808efcb221c10d78bdf663e3b5e3d5d281bf59702be049090fc1fa0511b078_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:13f0ec3ce663f6701501e82bbb508549e149588eedb0982729a59d98c88d0ba0_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:43d9679eb3ac8d5287863137f2d698d814a2fbc2fbd6a6aacba11240cd76d40c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:d23a4d9f0967f53d15fefda63e972e035d23aebe819dd11a6cec9beceacd8997_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:e32fc2e1c50fb1110a835e29e6e360b4127ed84fca98c6276b0b171ccd6cb223_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:1168d897f16b276ba5a6e6170e31fbe1499a980666aed493b2fe27036471ba55_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:15300e7d45a8e2093ef6f33303174f7361de7d9b648f8c9f2cf06f8ba3c56c76_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:6ccd50b0049e4ba0f9d4ea8779b17c6acc95395490579fbaa3b9e9084ac7d314_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e762a9019e4b5afd27331ad519a5b63a2bba3c7eb522533e0932e97c2879a36e_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f4c5323da09593280fc61c2df7fced0f6dc9d3ca322d27069f51334c3d18dae_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:918c66e3ea09e481c38673314021ef1aa6b46afc9dcb115b9d19b6819c5db4a7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:cc4f2ce5926da93eaf81b0935d3171d81a310ec97e3c08bbbf6599752446810d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f2bcd5123e4fad7aa4ad54f2819a1beb75d844302aa162e0335c1a0191fe5346_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:27b7eef1c64e432dbe15e92cf745a951aebdc9b379d9c02dbfef6df296c39cd1_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:3cfcd5f9ab8ec42cefd8fab992ecb493a9d14126bdf53ba542ffa4b51fd1684c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:641354f1d56627f49af3e32ad963616b69aac644ac33d664e7fe29de32fe43b3_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:fa5400aecca1a46c4b98d00c749ea56d6187ced20952f02e4dd1c12e2467117e_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:42d8388fafeb7c188b03389c92561da4068f91a8cc2343f33d967939342e4f64_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:a86e59cedc67e9fcee3412afa157572a2ab815a3d9e18da03ada502f7313cc80_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b60b4b992b89b82620e5ea618350a97434b272d1f023200dcbeae642612e3569_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ee9d72769b916b350307df495022e04add1fbcd67c1e62757fd316e7f1dd60ae_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:53618eb41967e64660e87e5ad6ce8f5d9803aed9bb48da8898aaefb4d0a4632d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:65176a94e684c200beef8f25016982ab212bdcd10d31b54a831310e20c026f77_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:a4ca99dc99b864ef805f3e8d997f0567168c809433f16ec23540c0b8ead96216_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:cc31b6212f77e03383e615ee30fd97419806c3841f18d2f6c950d82cdd21e872_ppc64le"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2322857"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability was found in HashiCorp Consul. Due to a lack of path normalization, URL paths in L7 traffic intentions can be exploited to bypass permissions defined in the intentions.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "hashicorp/consul: consul: Consul L7 Intentions Vulnerable To URL Path Bypass",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability is rated as important severity because the lack of path normalization in HashiCorp Consul allows attackers to exploit URL paths in L7 traffic intentions, bypassing defined permissions. This can compromise both confidentiality and integrity, enabling unauthorized access to sensitive data and resources, highlighting the need for immediate attention.\n\nThis CVE has been rated \"Low\" as RH does not use Consul/Consul Catalog as a provider for configuration discovery in Traefik Proxy. Even though the product is affected, RH products are not vulnerable.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:15a4a74016cdb94aece0bc651edd221b72a9202e5fd414d30ae969707cb5b4c9_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:5361443dee5415dc554d79e2fa23a6b336f1d8ea89fb20a4caa72f70574b939b_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:a152f1e75dd10ba692587a4e702d59cd1c5adcde8b97390f58742270edf85d33_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:f17428eced9d6bec1eaaa1510b68250824d3ace2f66af7f31fbf7327ca11540c_arm64"
        ],
        "known_not_affected": [
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/idea-rhel9@sha256:df24ebb239a2cc0d4543309f51a7268c7d524d428a536e0b3443c51089c3f87e_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:0dc291e3dc58d285d054a35b480d14c3912777e14fd643915b8ceabd178ad6bf_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:ac5b3e78470c747377dbc9ecb6e0680d724086c331955ed5471b74d01155ece8_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:cd1ee1d15cafe77bbf8e283cee2cde88dcdfb59c9545867a047cf4b42089aa85_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:d0b17cb5f9a530ca959058fe926b3f5c42539487e23587d51948f49d7a38cf5d_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:2bfe5265856abdd8cb490bde852d4e992f1793684f003d1ef53776fe69d790d7_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:32d9568317c55235f75c4d0e1c98de6d4af252cbdd116ed2355025cbaeac862f_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:48b99d167a5c54a98e69bba441bb5b70db2ffe065d3f8f8d23ecfed7b813336e_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:8b2b33e91756bbd1c7ed6905e00176b9d55a4e13aee2f84862bc571a8a82f113_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:43cdf063e9a6aa5f84233c8bd850a711b5d5fae8a7795803609fec07d189ca05_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:7ad9073c0a768f170cf8d4311ea35ec1caccfdefdf6d1dccbc10ed01cdeafd16_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:934c224a59086c689be1839b6846a0984370a78a8adc8510fa692f5215bb6182_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:d2bfcb27baf36e569eca4f7c85f458a180d7938616413a4cf8e10cb329e6a150_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:78dabed4a5fc1eb3246778e6ee6e1a543829cf88d0b03f0ccccf101c41a7bdda_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:7c98501fee1297a24caa77d325f6bfd7f91192589f0aa22d47d9766e8219c749_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:905d45518e20ea10daa3a35ea2f2201a6f762a16f9b4829ce37b7396d493ac59_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:91e064bccc3f7320844763fc136cb4c650db40190e01edebe16135bcc00627ac_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:a48dd94d5616183843ba939146b7e4d985210cdd902038ff80ff6df3df3d74ca_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:2b18f2cf31e0914762cc6e99c9797c24a19db69ca08bc9983bc2aacc85ee7024_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:38c9b56aa9c2a5153e01ffc1edb399247ed1937b9382ac4f0fb2beae4c27f69a_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:59f85768c28401783b9475ce21088e3d8fbf6bcd64bb49e3a243c881ac6b546c_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f5b515ecaea7d542ac18ea5a056c99fe84ca2ac25fa3904bdc50a78ecf47541f_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8cdf016c4d61bce4f244415ae192fe1647ef517ba1690f2009b5b8e1104c72a7_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:a69c6f8b091d11c69b6864edc6973c6f5f4515eb3a1923bf51fdb971315c28b0_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ad5f4d1b7f712416bb62785375ce15ef1a5cb3f1a77226899abc8aba32a11623_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c9808efcb221c10d78bdf663e3b5e3d5d281bf59702be049090fc1fa0511b078_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:13f0ec3ce663f6701501e82bbb508549e149588eedb0982729a59d98c88d0ba0_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:43d9679eb3ac8d5287863137f2d698d814a2fbc2fbd6a6aacba11240cd76d40c_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:d23a4d9f0967f53d15fefda63e972e035d23aebe819dd11a6cec9beceacd8997_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:e32fc2e1c50fb1110a835e29e6e360b4127ed84fca98c6276b0b171ccd6cb223_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:1168d897f16b276ba5a6e6170e31fbe1499a980666aed493b2fe27036471ba55_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:15300e7d45a8e2093ef6f33303174f7361de7d9b648f8c9f2cf06f8ba3c56c76_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:6ccd50b0049e4ba0f9d4ea8779b17c6acc95395490579fbaa3b9e9084ac7d314_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e762a9019e4b5afd27331ad519a5b63a2bba3c7eb522533e0932e97c2879a36e_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f4c5323da09593280fc61c2df7fced0f6dc9d3ca322d27069f51334c3d18dae_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:918c66e3ea09e481c38673314021ef1aa6b46afc9dcb115b9d19b6819c5db4a7_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:cc4f2ce5926da93eaf81b0935d3171d81a310ec97e3c08bbbf6599752446810d_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f2bcd5123e4fad7aa4ad54f2819a1beb75d844302aa162e0335c1a0191fe5346_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:27b7eef1c64e432dbe15e92cf745a951aebdc9b379d9c02dbfef6df296c39cd1_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:3cfcd5f9ab8ec42cefd8fab992ecb493a9d14126bdf53ba542ffa4b51fd1684c_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:641354f1d56627f49af3e32ad963616b69aac644ac33d664e7fe29de32fe43b3_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:fa5400aecca1a46c4b98d00c749ea56d6187ced20952f02e4dd1c12e2467117e_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:42d8388fafeb7c188b03389c92561da4068f91a8cc2343f33d967939342e4f64_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:a86e59cedc67e9fcee3412afa157572a2ab815a3d9e18da03ada502f7313cc80_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b60b4b992b89b82620e5ea618350a97434b272d1f023200dcbeae642612e3569_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ee9d72769b916b350307df495022e04add1fbcd67c1e62757fd316e7f1dd60ae_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:53618eb41967e64660e87e5ad6ce8f5d9803aed9bb48da8898aaefb4d0a4632d_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:65176a94e684c200beef8f25016982ab212bdcd10d31b54a831310e20c026f77_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:a4ca99dc99b864ef805f3e8d997f0567168c809433f16ec23540c0b8ead96216_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:cc31b6212f77e03383e615ee30fd97419806c3841f18d2f6c950d82cdd21e872_ppc64le"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-10005"
        },
        {
          "category": "external",
          "summary": "RHBZ#2322857",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2322857"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-10005",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-10005"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-10005",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-10005"
        },
        {
          "category": "external",
          "summary": "https://discuss.hashicorp.com/t/hcsec-2024-22-consul-l7-intentions-vulnerable-to-url-path-bypass",
          "url": "https://discuss.hashicorp.com/t/hcsec-2024-22-consul-l7-intentions-vulnerable-to-url-path-bypass"
        }
      ],
      "release_date": "2024-10-30T21:19:22.576000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-09-15T16:27:40+00:00",
          "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:15a4a74016cdb94aece0bc651edd221b72a9202e5fd414d30ae969707cb5b4c9_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:5361443dee5415dc554d79e2fa23a6b336f1d8ea89fb20a4caa72f70574b939b_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:a152f1e75dd10ba692587a4e702d59cd1c5adcde8b97390f58742270edf85d33_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:f17428eced9d6bec1eaaa1510b68250824d3ace2f66af7f31fbf7327ca11540c_arm64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:15847"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/idea-rhel9@sha256:df24ebb239a2cc0d4543309f51a7268c7d524d428a536e0b3443c51089c3f87e_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:0dc291e3dc58d285d054a35b480d14c3912777e14fd643915b8ceabd178ad6bf_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:ac5b3e78470c747377dbc9ecb6e0680d724086c331955ed5471b74d01155ece8_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:cd1ee1d15cafe77bbf8e283cee2cde88dcdfb59c9545867a047cf4b42089aa85_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:d0b17cb5f9a530ca959058fe926b3f5c42539487e23587d51948f49d7a38cf5d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:2bfe5265856abdd8cb490bde852d4e992f1793684f003d1ef53776fe69d790d7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:32d9568317c55235f75c4d0e1c98de6d4af252cbdd116ed2355025cbaeac862f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:48b99d167a5c54a98e69bba441bb5b70db2ffe065d3f8f8d23ecfed7b813336e_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:8b2b33e91756bbd1c7ed6905e00176b9d55a4e13aee2f84862bc571a8a82f113_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:43cdf063e9a6aa5f84233c8bd850a711b5d5fae8a7795803609fec07d189ca05_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:7ad9073c0a768f170cf8d4311ea35ec1caccfdefdf6d1dccbc10ed01cdeafd16_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:934c224a59086c689be1839b6846a0984370a78a8adc8510fa692f5215bb6182_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:d2bfcb27baf36e569eca4f7c85f458a180d7938616413a4cf8e10cb329e6a150_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:78dabed4a5fc1eb3246778e6ee6e1a543829cf88d0b03f0ccccf101c41a7bdda_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:7c98501fee1297a24caa77d325f6bfd7f91192589f0aa22d47d9766e8219c749_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:905d45518e20ea10daa3a35ea2f2201a6f762a16f9b4829ce37b7396d493ac59_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:91e064bccc3f7320844763fc136cb4c650db40190e01edebe16135bcc00627ac_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:a48dd94d5616183843ba939146b7e4d985210cdd902038ff80ff6df3df3d74ca_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:2b18f2cf31e0914762cc6e99c9797c24a19db69ca08bc9983bc2aacc85ee7024_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:38c9b56aa9c2a5153e01ffc1edb399247ed1937b9382ac4f0fb2beae4c27f69a_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:59f85768c28401783b9475ce21088e3d8fbf6bcd64bb49e3a243c881ac6b546c_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f5b515ecaea7d542ac18ea5a056c99fe84ca2ac25fa3904bdc50a78ecf47541f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8cdf016c4d61bce4f244415ae192fe1647ef517ba1690f2009b5b8e1104c72a7_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:a69c6f8b091d11c69b6864edc6973c6f5f4515eb3a1923bf51fdb971315c28b0_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ad5f4d1b7f712416bb62785375ce15ef1a5cb3f1a77226899abc8aba32a11623_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c9808efcb221c10d78bdf663e3b5e3d5d281bf59702be049090fc1fa0511b078_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:13f0ec3ce663f6701501e82bbb508549e149588eedb0982729a59d98c88d0ba0_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:43d9679eb3ac8d5287863137f2d698d814a2fbc2fbd6a6aacba11240cd76d40c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:d23a4d9f0967f53d15fefda63e972e035d23aebe819dd11a6cec9beceacd8997_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:e32fc2e1c50fb1110a835e29e6e360b4127ed84fca98c6276b0b171ccd6cb223_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:1168d897f16b276ba5a6e6170e31fbe1499a980666aed493b2fe27036471ba55_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:15300e7d45a8e2093ef6f33303174f7361de7d9b648f8c9f2cf06f8ba3c56c76_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:6ccd50b0049e4ba0f9d4ea8779b17c6acc95395490579fbaa3b9e9084ac7d314_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e762a9019e4b5afd27331ad519a5b63a2bba3c7eb522533e0932e97c2879a36e_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f4c5323da09593280fc61c2df7fced0f6dc9d3ca322d27069f51334c3d18dae_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:918c66e3ea09e481c38673314021ef1aa6b46afc9dcb115b9d19b6819c5db4a7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:cc4f2ce5926da93eaf81b0935d3171d81a310ec97e3c08bbbf6599752446810d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f2bcd5123e4fad7aa4ad54f2819a1beb75d844302aa162e0335c1a0191fe5346_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:27b7eef1c64e432dbe15e92cf745a951aebdc9b379d9c02dbfef6df296c39cd1_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:3cfcd5f9ab8ec42cefd8fab992ecb493a9d14126bdf53ba542ffa4b51fd1684c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:641354f1d56627f49af3e32ad963616b69aac644ac33d664e7fe29de32fe43b3_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:fa5400aecca1a46c4b98d00c749ea56d6187ced20952f02e4dd1c12e2467117e_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:15a4a74016cdb94aece0bc651edd221b72a9202e5fd414d30ae969707cb5b4c9_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:5361443dee5415dc554d79e2fa23a6b336f1d8ea89fb20a4caa72f70574b939b_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:a152f1e75dd10ba692587a4e702d59cd1c5adcde8b97390f58742270edf85d33_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:f17428eced9d6bec1eaaa1510b68250824d3ace2f66af7f31fbf7327ca11540c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:42d8388fafeb7c188b03389c92561da4068f91a8cc2343f33d967939342e4f64_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:a86e59cedc67e9fcee3412afa157572a2ab815a3d9e18da03ada502f7313cc80_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b60b4b992b89b82620e5ea618350a97434b272d1f023200dcbeae642612e3569_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ee9d72769b916b350307df495022e04add1fbcd67c1e62757fd316e7f1dd60ae_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:53618eb41967e64660e87e5ad6ce8f5d9803aed9bb48da8898aaefb4d0a4632d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:65176a94e684c200beef8f25016982ab212bdcd10d31b54a831310e20c026f77_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:a4ca99dc99b864ef805f3e8d997f0567168c809433f16ec23540c0b8ead96216_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:cc31b6212f77e03383e615ee30fd97419806c3841f18d2f6c950d82cdd21e872_ppc64le"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 8.1,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/idea-rhel9@sha256:df24ebb239a2cc0d4543309f51a7268c7d524d428a536e0b3443c51089c3f87e_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:0dc291e3dc58d285d054a35b480d14c3912777e14fd643915b8ceabd178ad6bf_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:ac5b3e78470c747377dbc9ecb6e0680d724086c331955ed5471b74d01155ece8_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:cd1ee1d15cafe77bbf8e283cee2cde88dcdfb59c9545867a047cf4b42089aa85_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:d0b17cb5f9a530ca959058fe926b3f5c42539487e23587d51948f49d7a38cf5d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:2bfe5265856abdd8cb490bde852d4e992f1793684f003d1ef53776fe69d790d7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:32d9568317c55235f75c4d0e1c98de6d4af252cbdd116ed2355025cbaeac862f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:48b99d167a5c54a98e69bba441bb5b70db2ffe065d3f8f8d23ecfed7b813336e_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:8b2b33e91756bbd1c7ed6905e00176b9d55a4e13aee2f84862bc571a8a82f113_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:43cdf063e9a6aa5f84233c8bd850a711b5d5fae8a7795803609fec07d189ca05_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:7ad9073c0a768f170cf8d4311ea35ec1caccfdefdf6d1dccbc10ed01cdeafd16_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:934c224a59086c689be1839b6846a0984370a78a8adc8510fa692f5215bb6182_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:d2bfcb27baf36e569eca4f7c85f458a180d7938616413a4cf8e10cb329e6a150_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:78dabed4a5fc1eb3246778e6ee6e1a543829cf88d0b03f0ccccf101c41a7bdda_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:7c98501fee1297a24caa77d325f6bfd7f91192589f0aa22d47d9766e8219c749_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:905d45518e20ea10daa3a35ea2f2201a6f762a16f9b4829ce37b7396d493ac59_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:91e064bccc3f7320844763fc136cb4c650db40190e01edebe16135bcc00627ac_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:a48dd94d5616183843ba939146b7e4d985210cdd902038ff80ff6df3df3d74ca_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:2b18f2cf31e0914762cc6e99c9797c24a19db69ca08bc9983bc2aacc85ee7024_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:38c9b56aa9c2a5153e01ffc1edb399247ed1937b9382ac4f0fb2beae4c27f69a_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:59f85768c28401783b9475ce21088e3d8fbf6bcd64bb49e3a243c881ac6b546c_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f5b515ecaea7d542ac18ea5a056c99fe84ca2ac25fa3904bdc50a78ecf47541f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8cdf016c4d61bce4f244415ae192fe1647ef517ba1690f2009b5b8e1104c72a7_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:a69c6f8b091d11c69b6864edc6973c6f5f4515eb3a1923bf51fdb971315c28b0_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ad5f4d1b7f712416bb62785375ce15ef1a5cb3f1a77226899abc8aba32a11623_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c9808efcb221c10d78bdf663e3b5e3d5d281bf59702be049090fc1fa0511b078_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:13f0ec3ce663f6701501e82bbb508549e149588eedb0982729a59d98c88d0ba0_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:43d9679eb3ac8d5287863137f2d698d814a2fbc2fbd6a6aacba11240cd76d40c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:d23a4d9f0967f53d15fefda63e972e035d23aebe819dd11a6cec9beceacd8997_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:e32fc2e1c50fb1110a835e29e6e360b4127ed84fca98c6276b0b171ccd6cb223_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:1168d897f16b276ba5a6e6170e31fbe1499a980666aed493b2fe27036471ba55_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:15300e7d45a8e2093ef6f33303174f7361de7d9b648f8c9f2cf06f8ba3c56c76_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:6ccd50b0049e4ba0f9d4ea8779b17c6acc95395490579fbaa3b9e9084ac7d314_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e762a9019e4b5afd27331ad519a5b63a2bba3c7eb522533e0932e97c2879a36e_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f4c5323da09593280fc61c2df7fced0f6dc9d3ca322d27069f51334c3d18dae_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:918c66e3ea09e481c38673314021ef1aa6b46afc9dcb115b9d19b6819c5db4a7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:cc4f2ce5926da93eaf81b0935d3171d81a310ec97e3c08bbbf6599752446810d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f2bcd5123e4fad7aa4ad54f2819a1beb75d844302aa162e0335c1a0191fe5346_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:27b7eef1c64e432dbe15e92cf745a951aebdc9b379d9c02dbfef6df296c39cd1_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:3cfcd5f9ab8ec42cefd8fab992ecb493a9d14126bdf53ba542ffa4b51fd1684c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:641354f1d56627f49af3e32ad963616b69aac644ac33d664e7fe29de32fe43b3_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:fa5400aecca1a46c4b98d00c749ea56d6187ced20952f02e4dd1c12e2467117e_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:15a4a74016cdb94aece0bc651edd221b72a9202e5fd414d30ae969707cb5b4c9_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:5361443dee5415dc554d79e2fa23a6b336f1d8ea89fb20a4caa72f70574b939b_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:a152f1e75dd10ba692587a4e702d59cd1c5adcde8b97390f58742270edf85d33_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:f17428eced9d6bec1eaaa1510b68250824d3ace2f66af7f31fbf7327ca11540c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:42d8388fafeb7c188b03389c92561da4068f91a8cc2343f33d967939342e4f64_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:a86e59cedc67e9fcee3412afa157572a2ab815a3d9e18da03ada502f7313cc80_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b60b4b992b89b82620e5ea618350a97434b272d1f023200dcbeae642612e3569_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ee9d72769b916b350307df495022e04add1fbcd67c1e62757fd316e7f1dd60ae_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:53618eb41967e64660e87e5ad6ce8f5d9803aed9bb48da8898aaefb4d0a4632d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:65176a94e684c200beef8f25016982ab212bdcd10d31b54a831310e20c026f77_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:a4ca99dc99b864ef805f3e8d997f0567168c809433f16ec23540c0b8ead96216_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:cc31b6212f77e03383e615ee30fd97419806c3841f18d2f6c950d82cdd21e872_ppc64le"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "hashicorp/consul: consul: Consul L7 Intentions Vulnerable To URL Path Bypass"
    },
    {
      "cve": "CVE-2024-10006",
      "cwe": {
        "id": "CWE-644",
        "name": "Improper Neutralization of HTTP Headers for Scripting Syntax"
      },
      "discovery_date": "2024-10-30T22:00:44.245072+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/idea-rhel9@sha256:df24ebb239a2cc0d4543309f51a7268c7d524d428a536e0b3443c51089c3f87e_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:0dc291e3dc58d285d054a35b480d14c3912777e14fd643915b8ceabd178ad6bf_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:ac5b3e78470c747377dbc9ecb6e0680d724086c331955ed5471b74d01155ece8_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:cd1ee1d15cafe77bbf8e283cee2cde88dcdfb59c9545867a047cf4b42089aa85_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:d0b17cb5f9a530ca959058fe926b3f5c42539487e23587d51948f49d7a38cf5d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:2bfe5265856abdd8cb490bde852d4e992f1793684f003d1ef53776fe69d790d7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:32d9568317c55235f75c4d0e1c98de6d4af252cbdd116ed2355025cbaeac862f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:48b99d167a5c54a98e69bba441bb5b70db2ffe065d3f8f8d23ecfed7b813336e_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:8b2b33e91756bbd1c7ed6905e00176b9d55a4e13aee2f84862bc571a8a82f113_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:43cdf063e9a6aa5f84233c8bd850a711b5d5fae8a7795803609fec07d189ca05_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:7ad9073c0a768f170cf8d4311ea35ec1caccfdefdf6d1dccbc10ed01cdeafd16_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:934c224a59086c689be1839b6846a0984370a78a8adc8510fa692f5215bb6182_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:d2bfcb27baf36e569eca4f7c85f458a180d7938616413a4cf8e10cb329e6a150_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:78dabed4a5fc1eb3246778e6ee6e1a543829cf88d0b03f0ccccf101c41a7bdda_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:7c98501fee1297a24caa77d325f6bfd7f91192589f0aa22d47d9766e8219c749_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:905d45518e20ea10daa3a35ea2f2201a6f762a16f9b4829ce37b7396d493ac59_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:91e064bccc3f7320844763fc136cb4c650db40190e01edebe16135bcc00627ac_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:a48dd94d5616183843ba939146b7e4d985210cdd902038ff80ff6df3df3d74ca_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:2b18f2cf31e0914762cc6e99c9797c24a19db69ca08bc9983bc2aacc85ee7024_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:38c9b56aa9c2a5153e01ffc1edb399247ed1937b9382ac4f0fb2beae4c27f69a_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:59f85768c28401783b9475ce21088e3d8fbf6bcd64bb49e3a243c881ac6b546c_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f5b515ecaea7d542ac18ea5a056c99fe84ca2ac25fa3904bdc50a78ecf47541f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8cdf016c4d61bce4f244415ae192fe1647ef517ba1690f2009b5b8e1104c72a7_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:a69c6f8b091d11c69b6864edc6973c6f5f4515eb3a1923bf51fdb971315c28b0_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ad5f4d1b7f712416bb62785375ce15ef1a5cb3f1a77226899abc8aba32a11623_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c9808efcb221c10d78bdf663e3b5e3d5d281bf59702be049090fc1fa0511b078_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:13f0ec3ce663f6701501e82bbb508549e149588eedb0982729a59d98c88d0ba0_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:43d9679eb3ac8d5287863137f2d698d814a2fbc2fbd6a6aacba11240cd76d40c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:d23a4d9f0967f53d15fefda63e972e035d23aebe819dd11a6cec9beceacd8997_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:e32fc2e1c50fb1110a835e29e6e360b4127ed84fca98c6276b0b171ccd6cb223_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:1168d897f16b276ba5a6e6170e31fbe1499a980666aed493b2fe27036471ba55_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:15300e7d45a8e2093ef6f33303174f7361de7d9b648f8c9f2cf06f8ba3c56c76_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:6ccd50b0049e4ba0f9d4ea8779b17c6acc95395490579fbaa3b9e9084ac7d314_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e762a9019e4b5afd27331ad519a5b63a2bba3c7eb522533e0932e97c2879a36e_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f4c5323da09593280fc61c2df7fced0f6dc9d3ca322d27069f51334c3d18dae_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:918c66e3ea09e481c38673314021ef1aa6b46afc9dcb115b9d19b6819c5db4a7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:cc4f2ce5926da93eaf81b0935d3171d81a310ec97e3c08bbbf6599752446810d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f2bcd5123e4fad7aa4ad54f2819a1beb75d844302aa162e0335c1a0191fe5346_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:27b7eef1c64e432dbe15e92cf745a951aebdc9b379d9c02dbfef6df296c39cd1_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:3cfcd5f9ab8ec42cefd8fab992ecb493a9d14126bdf53ba542ffa4b51fd1684c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:641354f1d56627f49af3e32ad963616b69aac644ac33d664e7fe29de32fe43b3_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:fa5400aecca1a46c4b98d00c749ea56d6187ced20952f02e4dd1c12e2467117e_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:42d8388fafeb7c188b03389c92561da4068f91a8cc2343f33d967939342e4f64_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:a86e59cedc67e9fcee3412afa157572a2ab815a3d9e18da03ada502f7313cc80_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b60b4b992b89b82620e5ea618350a97434b272d1f023200dcbeae642612e3569_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ee9d72769b916b350307df495022e04add1fbcd67c1e62757fd316e7f1dd60ae_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:53618eb41967e64660e87e5ad6ce8f5d9803aed9bb48da8898aaefb4d0a4632d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:65176a94e684c200beef8f25016982ab212bdcd10d31b54a831310e20c026f77_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:a4ca99dc99b864ef805f3e8d997f0567168c809433f16ec23540c0b8ead96216_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:cc31b6212f77e03383e615ee30fd97419806c3841f18d2f6c950d82cdd21e872_ppc64le"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2322858"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in HashiCorp Consul and Consul Enterprise. The server response does not explicitly set a Content-Type HTTP header, allowing user-provided inputs to be misinterpreted and can lead to reflected cross-site scripting (XSS).",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "hashicorp/consul: consul: Consul L7 Intentions Vulnerable To Headers Bypass",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability is rated as important severity because HashiCorp Consul fails to set a Content-Type HTTP header, allowing user inputs to be misinterpreted and potentially leading to reflected cross-site scripting (XSS). This can compromise both confidentiality and integrity, posing a risk to user data and application security, which requires prompt remediation.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:15a4a74016cdb94aece0bc651edd221b72a9202e5fd414d30ae969707cb5b4c9_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:5361443dee5415dc554d79e2fa23a6b336f1d8ea89fb20a4caa72f70574b939b_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:a152f1e75dd10ba692587a4e702d59cd1c5adcde8b97390f58742270edf85d33_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:f17428eced9d6bec1eaaa1510b68250824d3ace2f66af7f31fbf7327ca11540c_arm64"
        ],
        "known_not_affected": [
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/idea-rhel9@sha256:df24ebb239a2cc0d4543309f51a7268c7d524d428a536e0b3443c51089c3f87e_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:0dc291e3dc58d285d054a35b480d14c3912777e14fd643915b8ceabd178ad6bf_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:ac5b3e78470c747377dbc9ecb6e0680d724086c331955ed5471b74d01155ece8_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:cd1ee1d15cafe77bbf8e283cee2cde88dcdfb59c9545867a047cf4b42089aa85_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:d0b17cb5f9a530ca959058fe926b3f5c42539487e23587d51948f49d7a38cf5d_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:2bfe5265856abdd8cb490bde852d4e992f1793684f003d1ef53776fe69d790d7_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:32d9568317c55235f75c4d0e1c98de6d4af252cbdd116ed2355025cbaeac862f_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:48b99d167a5c54a98e69bba441bb5b70db2ffe065d3f8f8d23ecfed7b813336e_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:8b2b33e91756bbd1c7ed6905e00176b9d55a4e13aee2f84862bc571a8a82f113_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:43cdf063e9a6aa5f84233c8bd850a711b5d5fae8a7795803609fec07d189ca05_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:7ad9073c0a768f170cf8d4311ea35ec1caccfdefdf6d1dccbc10ed01cdeafd16_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:934c224a59086c689be1839b6846a0984370a78a8adc8510fa692f5215bb6182_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:d2bfcb27baf36e569eca4f7c85f458a180d7938616413a4cf8e10cb329e6a150_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:78dabed4a5fc1eb3246778e6ee6e1a543829cf88d0b03f0ccccf101c41a7bdda_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:7c98501fee1297a24caa77d325f6bfd7f91192589f0aa22d47d9766e8219c749_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:905d45518e20ea10daa3a35ea2f2201a6f762a16f9b4829ce37b7396d493ac59_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:91e064bccc3f7320844763fc136cb4c650db40190e01edebe16135bcc00627ac_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:a48dd94d5616183843ba939146b7e4d985210cdd902038ff80ff6df3df3d74ca_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:2b18f2cf31e0914762cc6e99c9797c24a19db69ca08bc9983bc2aacc85ee7024_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:38c9b56aa9c2a5153e01ffc1edb399247ed1937b9382ac4f0fb2beae4c27f69a_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:59f85768c28401783b9475ce21088e3d8fbf6bcd64bb49e3a243c881ac6b546c_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f5b515ecaea7d542ac18ea5a056c99fe84ca2ac25fa3904bdc50a78ecf47541f_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8cdf016c4d61bce4f244415ae192fe1647ef517ba1690f2009b5b8e1104c72a7_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:a69c6f8b091d11c69b6864edc6973c6f5f4515eb3a1923bf51fdb971315c28b0_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ad5f4d1b7f712416bb62785375ce15ef1a5cb3f1a77226899abc8aba32a11623_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c9808efcb221c10d78bdf663e3b5e3d5d281bf59702be049090fc1fa0511b078_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:13f0ec3ce663f6701501e82bbb508549e149588eedb0982729a59d98c88d0ba0_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:43d9679eb3ac8d5287863137f2d698d814a2fbc2fbd6a6aacba11240cd76d40c_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:d23a4d9f0967f53d15fefda63e972e035d23aebe819dd11a6cec9beceacd8997_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:e32fc2e1c50fb1110a835e29e6e360b4127ed84fca98c6276b0b171ccd6cb223_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:1168d897f16b276ba5a6e6170e31fbe1499a980666aed493b2fe27036471ba55_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:15300e7d45a8e2093ef6f33303174f7361de7d9b648f8c9f2cf06f8ba3c56c76_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:6ccd50b0049e4ba0f9d4ea8779b17c6acc95395490579fbaa3b9e9084ac7d314_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e762a9019e4b5afd27331ad519a5b63a2bba3c7eb522533e0932e97c2879a36e_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f4c5323da09593280fc61c2df7fced0f6dc9d3ca322d27069f51334c3d18dae_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:918c66e3ea09e481c38673314021ef1aa6b46afc9dcb115b9d19b6819c5db4a7_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:cc4f2ce5926da93eaf81b0935d3171d81a310ec97e3c08bbbf6599752446810d_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f2bcd5123e4fad7aa4ad54f2819a1beb75d844302aa162e0335c1a0191fe5346_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:27b7eef1c64e432dbe15e92cf745a951aebdc9b379d9c02dbfef6df296c39cd1_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:3cfcd5f9ab8ec42cefd8fab992ecb493a9d14126bdf53ba542ffa4b51fd1684c_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:641354f1d56627f49af3e32ad963616b69aac644ac33d664e7fe29de32fe43b3_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:fa5400aecca1a46c4b98d00c749ea56d6187ced20952f02e4dd1c12e2467117e_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:42d8388fafeb7c188b03389c92561da4068f91a8cc2343f33d967939342e4f64_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:a86e59cedc67e9fcee3412afa157572a2ab815a3d9e18da03ada502f7313cc80_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b60b4b992b89b82620e5ea618350a97434b272d1f023200dcbeae642612e3569_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ee9d72769b916b350307df495022e04add1fbcd67c1e62757fd316e7f1dd60ae_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:53618eb41967e64660e87e5ad6ce8f5d9803aed9bb48da8898aaefb4d0a4632d_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:65176a94e684c200beef8f25016982ab212bdcd10d31b54a831310e20c026f77_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:a4ca99dc99b864ef805f3e8d997f0567168c809433f16ec23540c0b8ead96216_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:cc31b6212f77e03383e615ee30fd97419806c3841f18d2f6c950d82cdd21e872_ppc64le"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-10006"
        },
        {
          "category": "external",
          "summary": "RHBZ#2322858",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2322858"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-10006",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-10006"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-10006",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-10006"
        },
        {
          "category": "external",
          "summary": "https://discuss.hashicorp.com/t/hcsec-2024-23-consul-l7-intentions-vulnerable-to-headers-bypass",
          "url": "https://discuss.hashicorp.com/t/hcsec-2024-23-consul-l7-intentions-vulnerable-to-headers-bypass"
        }
      ],
      "release_date": "2024-10-30T21:20:37.011000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-09-15T16:27:40+00:00",
          "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:15a4a74016cdb94aece0bc651edd221b72a9202e5fd414d30ae969707cb5b4c9_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:5361443dee5415dc554d79e2fa23a6b336f1d8ea89fb20a4caa72f70574b939b_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:a152f1e75dd10ba692587a4e702d59cd1c5adcde8b97390f58742270edf85d33_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:f17428eced9d6bec1eaaa1510b68250824d3ace2f66af7f31fbf7327ca11540c_arm64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:15847"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/idea-rhel9@sha256:df24ebb239a2cc0d4543309f51a7268c7d524d428a536e0b3443c51089c3f87e_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:0dc291e3dc58d285d054a35b480d14c3912777e14fd643915b8ceabd178ad6bf_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:ac5b3e78470c747377dbc9ecb6e0680d724086c331955ed5471b74d01155ece8_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:cd1ee1d15cafe77bbf8e283cee2cde88dcdfb59c9545867a047cf4b42089aa85_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:d0b17cb5f9a530ca959058fe926b3f5c42539487e23587d51948f49d7a38cf5d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:2bfe5265856abdd8cb490bde852d4e992f1793684f003d1ef53776fe69d790d7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:32d9568317c55235f75c4d0e1c98de6d4af252cbdd116ed2355025cbaeac862f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:48b99d167a5c54a98e69bba441bb5b70db2ffe065d3f8f8d23ecfed7b813336e_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:8b2b33e91756bbd1c7ed6905e00176b9d55a4e13aee2f84862bc571a8a82f113_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:43cdf063e9a6aa5f84233c8bd850a711b5d5fae8a7795803609fec07d189ca05_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:7ad9073c0a768f170cf8d4311ea35ec1caccfdefdf6d1dccbc10ed01cdeafd16_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:934c224a59086c689be1839b6846a0984370a78a8adc8510fa692f5215bb6182_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:d2bfcb27baf36e569eca4f7c85f458a180d7938616413a4cf8e10cb329e6a150_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:78dabed4a5fc1eb3246778e6ee6e1a543829cf88d0b03f0ccccf101c41a7bdda_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:7c98501fee1297a24caa77d325f6bfd7f91192589f0aa22d47d9766e8219c749_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:905d45518e20ea10daa3a35ea2f2201a6f762a16f9b4829ce37b7396d493ac59_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:91e064bccc3f7320844763fc136cb4c650db40190e01edebe16135bcc00627ac_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:a48dd94d5616183843ba939146b7e4d985210cdd902038ff80ff6df3df3d74ca_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:2b18f2cf31e0914762cc6e99c9797c24a19db69ca08bc9983bc2aacc85ee7024_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:38c9b56aa9c2a5153e01ffc1edb399247ed1937b9382ac4f0fb2beae4c27f69a_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:59f85768c28401783b9475ce21088e3d8fbf6bcd64bb49e3a243c881ac6b546c_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f5b515ecaea7d542ac18ea5a056c99fe84ca2ac25fa3904bdc50a78ecf47541f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8cdf016c4d61bce4f244415ae192fe1647ef517ba1690f2009b5b8e1104c72a7_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:a69c6f8b091d11c69b6864edc6973c6f5f4515eb3a1923bf51fdb971315c28b0_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ad5f4d1b7f712416bb62785375ce15ef1a5cb3f1a77226899abc8aba32a11623_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c9808efcb221c10d78bdf663e3b5e3d5d281bf59702be049090fc1fa0511b078_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:13f0ec3ce663f6701501e82bbb508549e149588eedb0982729a59d98c88d0ba0_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:43d9679eb3ac8d5287863137f2d698d814a2fbc2fbd6a6aacba11240cd76d40c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:d23a4d9f0967f53d15fefda63e972e035d23aebe819dd11a6cec9beceacd8997_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:e32fc2e1c50fb1110a835e29e6e360b4127ed84fca98c6276b0b171ccd6cb223_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:1168d897f16b276ba5a6e6170e31fbe1499a980666aed493b2fe27036471ba55_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:15300e7d45a8e2093ef6f33303174f7361de7d9b648f8c9f2cf06f8ba3c56c76_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:6ccd50b0049e4ba0f9d4ea8779b17c6acc95395490579fbaa3b9e9084ac7d314_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e762a9019e4b5afd27331ad519a5b63a2bba3c7eb522533e0932e97c2879a36e_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f4c5323da09593280fc61c2df7fced0f6dc9d3ca322d27069f51334c3d18dae_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:918c66e3ea09e481c38673314021ef1aa6b46afc9dcb115b9d19b6819c5db4a7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:cc4f2ce5926da93eaf81b0935d3171d81a310ec97e3c08bbbf6599752446810d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f2bcd5123e4fad7aa4ad54f2819a1beb75d844302aa162e0335c1a0191fe5346_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:27b7eef1c64e432dbe15e92cf745a951aebdc9b379d9c02dbfef6df296c39cd1_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:3cfcd5f9ab8ec42cefd8fab992ecb493a9d14126bdf53ba542ffa4b51fd1684c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:641354f1d56627f49af3e32ad963616b69aac644ac33d664e7fe29de32fe43b3_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:fa5400aecca1a46c4b98d00c749ea56d6187ced20952f02e4dd1c12e2467117e_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:15a4a74016cdb94aece0bc651edd221b72a9202e5fd414d30ae969707cb5b4c9_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:5361443dee5415dc554d79e2fa23a6b336f1d8ea89fb20a4caa72f70574b939b_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:a152f1e75dd10ba692587a4e702d59cd1c5adcde8b97390f58742270edf85d33_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:f17428eced9d6bec1eaaa1510b68250824d3ace2f66af7f31fbf7327ca11540c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:42d8388fafeb7c188b03389c92561da4068f91a8cc2343f33d967939342e4f64_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:a86e59cedc67e9fcee3412afa157572a2ab815a3d9e18da03ada502f7313cc80_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b60b4b992b89b82620e5ea618350a97434b272d1f023200dcbeae642612e3569_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ee9d72769b916b350307df495022e04add1fbcd67c1e62757fd316e7f1dd60ae_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:53618eb41967e64660e87e5ad6ce8f5d9803aed9bb48da8898aaefb4d0a4632d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:65176a94e684c200beef8f25016982ab212bdcd10d31b54a831310e20c026f77_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:a4ca99dc99b864ef805f3e8d997f0567168c809433f16ec23540c0b8ead96216_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:cc31b6212f77e03383e615ee30fd97419806c3841f18d2f6c950d82cdd21e872_ppc64le"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 8.3,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/idea-rhel9@sha256:df24ebb239a2cc0d4543309f51a7268c7d524d428a536e0b3443c51089c3f87e_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:0dc291e3dc58d285d054a35b480d14c3912777e14fd643915b8ceabd178ad6bf_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:ac5b3e78470c747377dbc9ecb6e0680d724086c331955ed5471b74d01155ece8_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:cd1ee1d15cafe77bbf8e283cee2cde88dcdfb59c9545867a047cf4b42089aa85_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:d0b17cb5f9a530ca959058fe926b3f5c42539487e23587d51948f49d7a38cf5d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:2bfe5265856abdd8cb490bde852d4e992f1793684f003d1ef53776fe69d790d7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:32d9568317c55235f75c4d0e1c98de6d4af252cbdd116ed2355025cbaeac862f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:48b99d167a5c54a98e69bba441bb5b70db2ffe065d3f8f8d23ecfed7b813336e_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:8b2b33e91756bbd1c7ed6905e00176b9d55a4e13aee2f84862bc571a8a82f113_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:43cdf063e9a6aa5f84233c8bd850a711b5d5fae8a7795803609fec07d189ca05_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:7ad9073c0a768f170cf8d4311ea35ec1caccfdefdf6d1dccbc10ed01cdeafd16_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:934c224a59086c689be1839b6846a0984370a78a8adc8510fa692f5215bb6182_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:d2bfcb27baf36e569eca4f7c85f458a180d7938616413a4cf8e10cb329e6a150_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:78dabed4a5fc1eb3246778e6ee6e1a543829cf88d0b03f0ccccf101c41a7bdda_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:7c98501fee1297a24caa77d325f6bfd7f91192589f0aa22d47d9766e8219c749_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:905d45518e20ea10daa3a35ea2f2201a6f762a16f9b4829ce37b7396d493ac59_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:91e064bccc3f7320844763fc136cb4c650db40190e01edebe16135bcc00627ac_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:a48dd94d5616183843ba939146b7e4d985210cdd902038ff80ff6df3df3d74ca_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:2b18f2cf31e0914762cc6e99c9797c24a19db69ca08bc9983bc2aacc85ee7024_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:38c9b56aa9c2a5153e01ffc1edb399247ed1937b9382ac4f0fb2beae4c27f69a_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:59f85768c28401783b9475ce21088e3d8fbf6bcd64bb49e3a243c881ac6b546c_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f5b515ecaea7d542ac18ea5a056c99fe84ca2ac25fa3904bdc50a78ecf47541f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8cdf016c4d61bce4f244415ae192fe1647ef517ba1690f2009b5b8e1104c72a7_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:a69c6f8b091d11c69b6864edc6973c6f5f4515eb3a1923bf51fdb971315c28b0_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ad5f4d1b7f712416bb62785375ce15ef1a5cb3f1a77226899abc8aba32a11623_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c9808efcb221c10d78bdf663e3b5e3d5d281bf59702be049090fc1fa0511b078_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:13f0ec3ce663f6701501e82bbb508549e149588eedb0982729a59d98c88d0ba0_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:43d9679eb3ac8d5287863137f2d698d814a2fbc2fbd6a6aacba11240cd76d40c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:d23a4d9f0967f53d15fefda63e972e035d23aebe819dd11a6cec9beceacd8997_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:e32fc2e1c50fb1110a835e29e6e360b4127ed84fca98c6276b0b171ccd6cb223_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:1168d897f16b276ba5a6e6170e31fbe1499a980666aed493b2fe27036471ba55_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:15300e7d45a8e2093ef6f33303174f7361de7d9b648f8c9f2cf06f8ba3c56c76_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:6ccd50b0049e4ba0f9d4ea8779b17c6acc95395490579fbaa3b9e9084ac7d314_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e762a9019e4b5afd27331ad519a5b63a2bba3c7eb522533e0932e97c2879a36e_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f4c5323da09593280fc61c2df7fced0f6dc9d3ca322d27069f51334c3d18dae_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:918c66e3ea09e481c38673314021ef1aa6b46afc9dcb115b9d19b6819c5db4a7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:cc4f2ce5926da93eaf81b0935d3171d81a310ec97e3c08bbbf6599752446810d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f2bcd5123e4fad7aa4ad54f2819a1beb75d844302aa162e0335c1a0191fe5346_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:27b7eef1c64e432dbe15e92cf745a951aebdc9b379d9c02dbfef6df296c39cd1_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:3cfcd5f9ab8ec42cefd8fab992ecb493a9d14126bdf53ba542ffa4b51fd1684c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:641354f1d56627f49af3e32ad963616b69aac644ac33d664e7fe29de32fe43b3_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:fa5400aecca1a46c4b98d00c749ea56d6187ced20952f02e4dd1c12e2467117e_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:15a4a74016cdb94aece0bc651edd221b72a9202e5fd414d30ae969707cb5b4c9_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:5361443dee5415dc554d79e2fa23a6b336f1d8ea89fb20a4caa72f70574b939b_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:a152f1e75dd10ba692587a4e702d59cd1c5adcde8b97390f58742270edf85d33_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:f17428eced9d6bec1eaaa1510b68250824d3ace2f66af7f31fbf7327ca11540c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:42d8388fafeb7c188b03389c92561da4068f91a8cc2343f33d967939342e4f64_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:a86e59cedc67e9fcee3412afa157572a2ab815a3d9e18da03ada502f7313cc80_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b60b4b992b89b82620e5ea618350a97434b272d1f023200dcbeae642612e3569_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ee9d72769b916b350307df495022e04add1fbcd67c1e62757fd316e7f1dd60ae_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:53618eb41967e64660e87e5ad6ce8f5d9803aed9bb48da8898aaefb4d0a4632d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:65176a94e684c200beef8f25016982ab212bdcd10d31b54a831310e20c026f77_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:a4ca99dc99b864ef805f3e8d997f0567168c809433f16ec23540c0b8ead96216_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:cc31b6212f77e03383e615ee30fd97419806c3841f18d2f6c950d82cdd21e872_ppc64le"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "hashicorp/consul: consul: Consul L7 Intentions Vulnerable To Headers Bypass"
    },
    {
      "cve": "CVE-2024-22189",
      "cwe": {
        "id": "CWE-770",
        "name": "Allocation of Resources Without Limits or Throttling"
      },
      "discovery_date": "2024-04-04T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/idea-rhel9@sha256:df24ebb239a2cc0d4543309f51a7268c7d524d428a536e0b3443c51089c3f87e_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:0dc291e3dc58d285d054a35b480d14c3912777e14fd643915b8ceabd178ad6bf_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:ac5b3e78470c747377dbc9ecb6e0680d724086c331955ed5471b74d01155ece8_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:cd1ee1d15cafe77bbf8e283cee2cde88dcdfb59c9545867a047cf4b42089aa85_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:d0b17cb5f9a530ca959058fe926b3f5c42539487e23587d51948f49d7a38cf5d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:2bfe5265856abdd8cb490bde852d4e992f1793684f003d1ef53776fe69d790d7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:32d9568317c55235f75c4d0e1c98de6d4af252cbdd116ed2355025cbaeac862f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:48b99d167a5c54a98e69bba441bb5b70db2ffe065d3f8f8d23ecfed7b813336e_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:8b2b33e91756bbd1c7ed6905e00176b9d55a4e13aee2f84862bc571a8a82f113_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:43cdf063e9a6aa5f84233c8bd850a711b5d5fae8a7795803609fec07d189ca05_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:7ad9073c0a768f170cf8d4311ea35ec1caccfdefdf6d1dccbc10ed01cdeafd16_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:934c224a59086c689be1839b6846a0984370a78a8adc8510fa692f5215bb6182_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:d2bfcb27baf36e569eca4f7c85f458a180d7938616413a4cf8e10cb329e6a150_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:78dabed4a5fc1eb3246778e6ee6e1a543829cf88d0b03f0ccccf101c41a7bdda_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:7c98501fee1297a24caa77d325f6bfd7f91192589f0aa22d47d9766e8219c749_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:905d45518e20ea10daa3a35ea2f2201a6f762a16f9b4829ce37b7396d493ac59_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:91e064bccc3f7320844763fc136cb4c650db40190e01edebe16135bcc00627ac_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:a48dd94d5616183843ba939146b7e4d985210cdd902038ff80ff6df3df3d74ca_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:2b18f2cf31e0914762cc6e99c9797c24a19db69ca08bc9983bc2aacc85ee7024_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:38c9b56aa9c2a5153e01ffc1edb399247ed1937b9382ac4f0fb2beae4c27f69a_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:59f85768c28401783b9475ce21088e3d8fbf6bcd64bb49e3a243c881ac6b546c_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f5b515ecaea7d542ac18ea5a056c99fe84ca2ac25fa3904bdc50a78ecf47541f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8cdf016c4d61bce4f244415ae192fe1647ef517ba1690f2009b5b8e1104c72a7_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:a69c6f8b091d11c69b6864edc6973c6f5f4515eb3a1923bf51fdb971315c28b0_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ad5f4d1b7f712416bb62785375ce15ef1a5cb3f1a77226899abc8aba32a11623_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c9808efcb221c10d78bdf663e3b5e3d5d281bf59702be049090fc1fa0511b078_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:13f0ec3ce663f6701501e82bbb508549e149588eedb0982729a59d98c88d0ba0_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:43d9679eb3ac8d5287863137f2d698d814a2fbc2fbd6a6aacba11240cd76d40c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:d23a4d9f0967f53d15fefda63e972e035d23aebe819dd11a6cec9beceacd8997_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:e32fc2e1c50fb1110a835e29e6e360b4127ed84fca98c6276b0b171ccd6cb223_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:1168d897f16b276ba5a6e6170e31fbe1499a980666aed493b2fe27036471ba55_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:15300e7d45a8e2093ef6f33303174f7361de7d9b648f8c9f2cf06f8ba3c56c76_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:6ccd50b0049e4ba0f9d4ea8779b17c6acc95395490579fbaa3b9e9084ac7d314_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e762a9019e4b5afd27331ad519a5b63a2bba3c7eb522533e0932e97c2879a36e_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f4c5323da09593280fc61c2df7fced0f6dc9d3ca322d27069f51334c3d18dae_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:918c66e3ea09e481c38673314021ef1aa6b46afc9dcb115b9d19b6819c5db4a7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:cc4f2ce5926da93eaf81b0935d3171d81a310ec97e3c08bbbf6599752446810d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f2bcd5123e4fad7aa4ad54f2819a1beb75d844302aa162e0335c1a0191fe5346_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:27b7eef1c64e432dbe15e92cf745a951aebdc9b379d9c02dbfef6df296c39cd1_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:3cfcd5f9ab8ec42cefd8fab992ecb493a9d14126bdf53ba542ffa4b51fd1684c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:641354f1d56627f49af3e32ad963616b69aac644ac33d664e7fe29de32fe43b3_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:fa5400aecca1a46c4b98d00c749ea56d6187ced20952f02e4dd1c12e2467117e_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:42d8388fafeb7c188b03389c92561da4068f91a8cc2343f33d967939342e4f64_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:a86e59cedc67e9fcee3412afa157572a2ab815a3d9e18da03ada502f7313cc80_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b60b4b992b89b82620e5ea618350a97434b272d1f023200dcbeae642612e3569_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ee9d72769b916b350307df495022e04add1fbcd67c1e62757fd316e7f1dd60ae_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:53618eb41967e64660e87e5ad6ce8f5d9803aed9bb48da8898aaefb4d0a4632d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:65176a94e684c200beef8f25016982ab212bdcd10d31b54a831310e20c026f77_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:a4ca99dc99b864ef805f3e8d997f0567168c809433f16ec23540c0b8ead96216_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:cc31b6212f77e03383e615ee30fd97419806c3841f18d2f6c950d82cdd21e872_ppc64le"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2273513"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in quic-go. This issue may allow an attacker to trigger a denial of service by sending a large number of NEW_CONNECTION_ID frames that retire old connection IDs. The receiver is supposed to respond to each retirement frame with a RETIRE_CONNECTION_ID frame, but the attacker can prevent the receiver from sending out the vast majority of these RETIRE_CONNECTION_ID frames by selectively acknowledging received packets and collapsing the peers congestion window and by manipulating the peer\u0027s RTT estimate.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "quic-go: memory exhaustion attack against QUIC\u0027s connection ID mechanism",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:15a4a74016cdb94aece0bc651edd221b72a9202e5fd414d30ae969707cb5b4c9_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:5361443dee5415dc554d79e2fa23a6b336f1d8ea89fb20a4caa72f70574b939b_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:a152f1e75dd10ba692587a4e702d59cd1c5adcde8b97390f58742270edf85d33_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:f17428eced9d6bec1eaaa1510b68250824d3ace2f66af7f31fbf7327ca11540c_arm64"
        ],
        "known_not_affected": [
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/idea-rhel9@sha256:df24ebb239a2cc0d4543309f51a7268c7d524d428a536e0b3443c51089c3f87e_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:0dc291e3dc58d285d054a35b480d14c3912777e14fd643915b8ceabd178ad6bf_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:ac5b3e78470c747377dbc9ecb6e0680d724086c331955ed5471b74d01155ece8_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:cd1ee1d15cafe77bbf8e283cee2cde88dcdfb59c9545867a047cf4b42089aa85_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:d0b17cb5f9a530ca959058fe926b3f5c42539487e23587d51948f49d7a38cf5d_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:2bfe5265856abdd8cb490bde852d4e992f1793684f003d1ef53776fe69d790d7_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:32d9568317c55235f75c4d0e1c98de6d4af252cbdd116ed2355025cbaeac862f_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:48b99d167a5c54a98e69bba441bb5b70db2ffe065d3f8f8d23ecfed7b813336e_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:8b2b33e91756bbd1c7ed6905e00176b9d55a4e13aee2f84862bc571a8a82f113_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:43cdf063e9a6aa5f84233c8bd850a711b5d5fae8a7795803609fec07d189ca05_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:7ad9073c0a768f170cf8d4311ea35ec1caccfdefdf6d1dccbc10ed01cdeafd16_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:934c224a59086c689be1839b6846a0984370a78a8adc8510fa692f5215bb6182_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:d2bfcb27baf36e569eca4f7c85f458a180d7938616413a4cf8e10cb329e6a150_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:78dabed4a5fc1eb3246778e6ee6e1a543829cf88d0b03f0ccccf101c41a7bdda_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:7c98501fee1297a24caa77d325f6bfd7f91192589f0aa22d47d9766e8219c749_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:905d45518e20ea10daa3a35ea2f2201a6f762a16f9b4829ce37b7396d493ac59_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:91e064bccc3f7320844763fc136cb4c650db40190e01edebe16135bcc00627ac_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:a48dd94d5616183843ba939146b7e4d985210cdd902038ff80ff6df3df3d74ca_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:2b18f2cf31e0914762cc6e99c9797c24a19db69ca08bc9983bc2aacc85ee7024_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:38c9b56aa9c2a5153e01ffc1edb399247ed1937b9382ac4f0fb2beae4c27f69a_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:59f85768c28401783b9475ce21088e3d8fbf6bcd64bb49e3a243c881ac6b546c_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f5b515ecaea7d542ac18ea5a056c99fe84ca2ac25fa3904bdc50a78ecf47541f_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8cdf016c4d61bce4f244415ae192fe1647ef517ba1690f2009b5b8e1104c72a7_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:a69c6f8b091d11c69b6864edc6973c6f5f4515eb3a1923bf51fdb971315c28b0_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ad5f4d1b7f712416bb62785375ce15ef1a5cb3f1a77226899abc8aba32a11623_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c9808efcb221c10d78bdf663e3b5e3d5d281bf59702be049090fc1fa0511b078_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:13f0ec3ce663f6701501e82bbb508549e149588eedb0982729a59d98c88d0ba0_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:43d9679eb3ac8d5287863137f2d698d814a2fbc2fbd6a6aacba11240cd76d40c_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:d23a4d9f0967f53d15fefda63e972e035d23aebe819dd11a6cec9beceacd8997_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:e32fc2e1c50fb1110a835e29e6e360b4127ed84fca98c6276b0b171ccd6cb223_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:1168d897f16b276ba5a6e6170e31fbe1499a980666aed493b2fe27036471ba55_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:15300e7d45a8e2093ef6f33303174f7361de7d9b648f8c9f2cf06f8ba3c56c76_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:6ccd50b0049e4ba0f9d4ea8779b17c6acc95395490579fbaa3b9e9084ac7d314_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e762a9019e4b5afd27331ad519a5b63a2bba3c7eb522533e0932e97c2879a36e_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f4c5323da09593280fc61c2df7fced0f6dc9d3ca322d27069f51334c3d18dae_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:918c66e3ea09e481c38673314021ef1aa6b46afc9dcb115b9d19b6819c5db4a7_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:cc4f2ce5926da93eaf81b0935d3171d81a310ec97e3c08bbbf6599752446810d_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f2bcd5123e4fad7aa4ad54f2819a1beb75d844302aa162e0335c1a0191fe5346_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:27b7eef1c64e432dbe15e92cf745a951aebdc9b379d9c02dbfef6df296c39cd1_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:3cfcd5f9ab8ec42cefd8fab992ecb493a9d14126bdf53ba542ffa4b51fd1684c_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:641354f1d56627f49af3e32ad963616b69aac644ac33d664e7fe29de32fe43b3_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:fa5400aecca1a46c4b98d00c749ea56d6187ced20952f02e4dd1c12e2467117e_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:42d8388fafeb7c188b03389c92561da4068f91a8cc2343f33d967939342e4f64_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:a86e59cedc67e9fcee3412afa157572a2ab815a3d9e18da03ada502f7313cc80_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b60b4b992b89b82620e5ea618350a97434b272d1f023200dcbeae642612e3569_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ee9d72769b916b350307df495022e04add1fbcd67c1e62757fd316e7f1dd60ae_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:53618eb41967e64660e87e5ad6ce8f5d9803aed9bb48da8898aaefb4d0a4632d_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:65176a94e684c200beef8f25016982ab212bdcd10d31b54a831310e20c026f77_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:a4ca99dc99b864ef805f3e8d997f0567168c809433f16ec23540c0b8ead96216_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:cc31b6212f77e03383e615ee30fd97419806c3841f18d2f6c950d82cdd21e872_ppc64le"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-22189"
        },
        {
          "category": "external",
          "summary": "RHBZ#2273513",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2273513"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-22189",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-22189"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-22189",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-22189"
        },
        {
          "category": "external",
          "summary": "https://github.com/quic-go/quic-go/commit/4a99b816ae3ab03ae5449d15aac45147c85ed47a",
          "url": "https://github.com/quic-go/quic-go/commit/4a99b816ae3ab03ae5449d15aac45147c85ed47a"
        },
        {
          "category": "external",
          "summary": "https://github.com/quic-go/quic-go/security/advisories/GHSA-c33x-xqrf-c478",
          "url": "https://github.com/quic-go/quic-go/security/advisories/GHSA-c33x-xqrf-c478"
        },
        {
          "category": "external",
          "summary": "https://seemann.io/posts/2024-03-19-exploiting-quics-connection-id-management",
          "url": "https://seemann.io/posts/2024-03-19-exploiting-quics-connection-id-management"
        }
      ],
      "release_date": "2024-04-04T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-09-15T16:27:40+00:00",
          "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:15a4a74016cdb94aece0bc651edd221b72a9202e5fd414d30ae969707cb5b4c9_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:5361443dee5415dc554d79e2fa23a6b336f1d8ea89fb20a4caa72f70574b939b_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:a152f1e75dd10ba692587a4e702d59cd1c5adcde8b97390f58742270edf85d33_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:f17428eced9d6bec1eaaa1510b68250824d3ace2f66af7f31fbf7327ca11540c_arm64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:15847"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/idea-rhel9@sha256:df24ebb239a2cc0d4543309f51a7268c7d524d428a536e0b3443c51089c3f87e_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:0dc291e3dc58d285d054a35b480d14c3912777e14fd643915b8ceabd178ad6bf_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:ac5b3e78470c747377dbc9ecb6e0680d724086c331955ed5471b74d01155ece8_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:cd1ee1d15cafe77bbf8e283cee2cde88dcdfb59c9545867a047cf4b42089aa85_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:d0b17cb5f9a530ca959058fe926b3f5c42539487e23587d51948f49d7a38cf5d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:2bfe5265856abdd8cb490bde852d4e992f1793684f003d1ef53776fe69d790d7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:32d9568317c55235f75c4d0e1c98de6d4af252cbdd116ed2355025cbaeac862f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:48b99d167a5c54a98e69bba441bb5b70db2ffe065d3f8f8d23ecfed7b813336e_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:8b2b33e91756bbd1c7ed6905e00176b9d55a4e13aee2f84862bc571a8a82f113_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:43cdf063e9a6aa5f84233c8bd850a711b5d5fae8a7795803609fec07d189ca05_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:7ad9073c0a768f170cf8d4311ea35ec1caccfdefdf6d1dccbc10ed01cdeafd16_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:934c224a59086c689be1839b6846a0984370a78a8adc8510fa692f5215bb6182_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:d2bfcb27baf36e569eca4f7c85f458a180d7938616413a4cf8e10cb329e6a150_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:78dabed4a5fc1eb3246778e6ee6e1a543829cf88d0b03f0ccccf101c41a7bdda_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:7c98501fee1297a24caa77d325f6bfd7f91192589f0aa22d47d9766e8219c749_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:905d45518e20ea10daa3a35ea2f2201a6f762a16f9b4829ce37b7396d493ac59_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:91e064bccc3f7320844763fc136cb4c650db40190e01edebe16135bcc00627ac_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:a48dd94d5616183843ba939146b7e4d985210cdd902038ff80ff6df3df3d74ca_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:2b18f2cf31e0914762cc6e99c9797c24a19db69ca08bc9983bc2aacc85ee7024_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:38c9b56aa9c2a5153e01ffc1edb399247ed1937b9382ac4f0fb2beae4c27f69a_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:59f85768c28401783b9475ce21088e3d8fbf6bcd64bb49e3a243c881ac6b546c_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f5b515ecaea7d542ac18ea5a056c99fe84ca2ac25fa3904bdc50a78ecf47541f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8cdf016c4d61bce4f244415ae192fe1647ef517ba1690f2009b5b8e1104c72a7_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:a69c6f8b091d11c69b6864edc6973c6f5f4515eb3a1923bf51fdb971315c28b0_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ad5f4d1b7f712416bb62785375ce15ef1a5cb3f1a77226899abc8aba32a11623_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c9808efcb221c10d78bdf663e3b5e3d5d281bf59702be049090fc1fa0511b078_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:13f0ec3ce663f6701501e82bbb508549e149588eedb0982729a59d98c88d0ba0_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:43d9679eb3ac8d5287863137f2d698d814a2fbc2fbd6a6aacba11240cd76d40c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:d23a4d9f0967f53d15fefda63e972e035d23aebe819dd11a6cec9beceacd8997_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:e32fc2e1c50fb1110a835e29e6e360b4127ed84fca98c6276b0b171ccd6cb223_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:1168d897f16b276ba5a6e6170e31fbe1499a980666aed493b2fe27036471ba55_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:15300e7d45a8e2093ef6f33303174f7361de7d9b648f8c9f2cf06f8ba3c56c76_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:6ccd50b0049e4ba0f9d4ea8779b17c6acc95395490579fbaa3b9e9084ac7d314_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e762a9019e4b5afd27331ad519a5b63a2bba3c7eb522533e0932e97c2879a36e_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f4c5323da09593280fc61c2df7fced0f6dc9d3ca322d27069f51334c3d18dae_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:918c66e3ea09e481c38673314021ef1aa6b46afc9dcb115b9d19b6819c5db4a7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:cc4f2ce5926da93eaf81b0935d3171d81a310ec97e3c08bbbf6599752446810d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f2bcd5123e4fad7aa4ad54f2819a1beb75d844302aa162e0335c1a0191fe5346_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:27b7eef1c64e432dbe15e92cf745a951aebdc9b379d9c02dbfef6df296c39cd1_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:3cfcd5f9ab8ec42cefd8fab992ecb493a9d14126bdf53ba542ffa4b51fd1684c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:641354f1d56627f49af3e32ad963616b69aac644ac33d664e7fe29de32fe43b3_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:fa5400aecca1a46c4b98d00c749ea56d6187ced20952f02e4dd1c12e2467117e_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:15a4a74016cdb94aece0bc651edd221b72a9202e5fd414d30ae969707cb5b4c9_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:5361443dee5415dc554d79e2fa23a6b336f1d8ea89fb20a4caa72f70574b939b_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:a152f1e75dd10ba692587a4e702d59cd1c5adcde8b97390f58742270edf85d33_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:f17428eced9d6bec1eaaa1510b68250824d3ace2f66af7f31fbf7327ca11540c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:42d8388fafeb7c188b03389c92561da4068f91a8cc2343f33d967939342e4f64_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:a86e59cedc67e9fcee3412afa157572a2ab815a3d9e18da03ada502f7313cc80_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b60b4b992b89b82620e5ea618350a97434b272d1f023200dcbeae642612e3569_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ee9d72769b916b350307df495022e04add1fbcd67c1e62757fd316e7f1dd60ae_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:53618eb41967e64660e87e5ad6ce8f5d9803aed9bb48da8898aaefb4d0a4632d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:65176a94e684c200beef8f25016982ab212bdcd10d31b54a831310e20c026f77_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:a4ca99dc99b864ef805f3e8d997f0567168c809433f16ec23540c0b8ead96216_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:cc31b6212f77e03383e615ee30fd97419806c3841f18d2f6c950d82cdd21e872_ppc64le"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "quic-go: memory exhaustion attack against QUIC\u0027s connection ID mechanism"
    },
    {
      "cve": "CVE-2024-24789",
      "cwe": {
        "id": "CWE-20",
        "name": "Improper Input Validation"
      },
      "discovery_date": "2024-06-17T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/idea-rhel9@sha256:df24ebb239a2cc0d4543309f51a7268c7d524d428a536e0b3443c51089c3f87e_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:0dc291e3dc58d285d054a35b480d14c3912777e14fd643915b8ceabd178ad6bf_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:ac5b3e78470c747377dbc9ecb6e0680d724086c331955ed5471b74d01155ece8_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:cd1ee1d15cafe77bbf8e283cee2cde88dcdfb59c9545867a047cf4b42089aa85_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:d0b17cb5f9a530ca959058fe926b3f5c42539487e23587d51948f49d7a38cf5d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:2bfe5265856abdd8cb490bde852d4e992f1793684f003d1ef53776fe69d790d7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:32d9568317c55235f75c4d0e1c98de6d4af252cbdd116ed2355025cbaeac862f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:48b99d167a5c54a98e69bba441bb5b70db2ffe065d3f8f8d23ecfed7b813336e_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:8b2b33e91756bbd1c7ed6905e00176b9d55a4e13aee2f84862bc571a8a82f113_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:43cdf063e9a6aa5f84233c8bd850a711b5d5fae8a7795803609fec07d189ca05_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:7ad9073c0a768f170cf8d4311ea35ec1caccfdefdf6d1dccbc10ed01cdeafd16_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:934c224a59086c689be1839b6846a0984370a78a8adc8510fa692f5215bb6182_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:d2bfcb27baf36e569eca4f7c85f458a180d7938616413a4cf8e10cb329e6a150_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:78dabed4a5fc1eb3246778e6ee6e1a543829cf88d0b03f0ccccf101c41a7bdda_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:7c98501fee1297a24caa77d325f6bfd7f91192589f0aa22d47d9766e8219c749_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:905d45518e20ea10daa3a35ea2f2201a6f762a16f9b4829ce37b7396d493ac59_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:91e064bccc3f7320844763fc136cb4c650db40190e01edebe16135bcc00627ac_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:a48dd94d5616183843ba939146b7e4d985210cdd902038ff80ff6df3df3d74ca_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:2b18f2cf31e0914762cc6e99c9797c24a19db69ca08bc9983bc2aacc85ee7024_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:38c9b56aa9c2a5153e01ffc1edb399247ed1937b9382ac4f0fb2beae4c27f69a_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:59f85768c28401783b9475ce21088e3d8fbf6bcd64bb49e3a243c881ac6b546c_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f5b515ecaea7d542ac18ea5a056c99fe84ca2ac25fa3904bdc50a78ecf47541f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8cdf016c4d61bce4f244415ae192fe1647ef517ba1690f2009b5b8e1104c72a7_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:a69c6f8b091d11c69b6864edc6973c6f5f4515eb3a1923bf51fdb971315c28b0_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ad5f4d1b7f712416bb62785375ce15ef1a5cb3f1a77226899abc8aba32a11623_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c9808efcb221c10d78bdf663e3b5e3d5d281bf59702be049090fc1fa0511b078_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:13f0ec3ce663f6701501e82bbb508549e149588eedb0982729a59d98c88d0ba0_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:43d9679eb3ac8d5287863137f2d698d814a2fbc2fbd6a6aacba11240cd76d40c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:d23a4d9f0967f53d15fefda63e972e035d23aebe819dd11a6cec9beceacd8997_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:e32fc2e1c50fb1110a835e29e6e360b4127ed84fca98c6276b0b171ccd6cb223_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:1168d897f16b276ba5a6e6170e31fbe1499a980666aed493b2fe27036471ba55_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:15300e7d45a8e2093ef6f33303174f7361de7d9b648f8c9f2cf06f8ba3c56c76_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:6ccd50b0049e4ba0f9d4ea8779b17c6acc95395490579fbaa3b9e9084ac7d314_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e762a9019e4b5afd27331ad519a5b63a2bba3c7eb522533e0932e97c2879a36e_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f4c5323da09593280fc61c2df7fced0f6dc9d3ca322d27069f51334c3d18dae_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:918c66e3ea09e481c38673314021ef1aa6b46afc9dcb115b9d19b6819c5db4a7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:cc4f2ce5926da93eaf81b0935d3171d81a310ec97e3c08bbbf6599752446810d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f2bcd5123e4fad7aa4ad54f2819a1beb75d844302aa162e0335c1a0191fe5346_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:27b7eef1c64e432dbe15e92cf745a951aebdc9b379d9c02dbfef6df296c39cd1_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:3cfcd5f9ab8ec42cefd8fab992ecb493a9d14126bdf53ba542ffa4b51fd1684c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:641354f1d56627f49af3e32ad963616b69aac644ac33d664e7fe29de32fe43b3_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:fa5400aecca1a46c4b98d00c749ea56d6187ced20952f02e4dd1c12e2467117e_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:42d8388fafeb7c188b03389c92561da4068f91a8cc2343f33d967939342e4f64_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:a86e59cedc67e9fcee3412afa157572a2ab815a3d9e18da03ada502f7313cc80_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b60b4b992b89b82620e5ea618350a97434b272d1f023200dcbeae642612e3569_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ee9d72769b916b350307df495022e04add1fbcd67c1e62757fd316e7f1dd60ae_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:53618eb41967e64660e87e5ad6ce8f5d9803aed9bb48da8898aaefb4d0a4632d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:65176a94e684c200beef8f25016982ab212bdcd10d31b54a831310e20c026f77_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:a4ca99dc99b864ef805f3e8d997f0567168c809433f16ec23540c0b8ead96216_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:cc31b6212f77e03383e615ee30fd97419806c3841f18d2f6c950d82cdd21e872_ppc64le"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2292668"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Golang. The ZIP implementation of the Go language archive/zip library behaves differently than the rest of the ZIP file format implementations. When handling ZIP files with a corrupted central directory record, the library skips over the invalid record and processes the next valid one. This flaw allows a malicious user to access hidden information or files inside maliciously crafted ZIP files.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "golang: archive/zip: Incorrect handling of certain ZIP files",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:15a4a74016cdb94aece0bc651edd221b72a9202e5fd414d30ae969707cb5b4c9_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:5361443dee5415dc554d79e2fa23a6b336f1d8ea89fb20a4caa72f70574b939b_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:a152f1e75dd10ba692587a4e702d59cd1c5adcde8b97390f58742270edf85d33_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:f17428eced9d6bec1eaaa1510b68250824d3ace2f66af7f31fbf7327ca11540c_arm64"
        ],
        "known_not_affected": [
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/idea-rhel9@sha256:df24ebb239a2cc0d4543309f51a7268c7d524d428a536e0b3443c51089c3f87e_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:0dc291e3dc58d285d054a35b480d14c3912777e14fd643915b8ceabd178ad6bf_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:ac5b3e78470c747377dbc9ecb6e0680d724086c331955ed5471b74d01155ece8_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:cd1ee1d15cafe77bbf8e283cee2cde88dcdfb59c9545867a047cf4b42089aa85_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:d0b17cb5f9a530ca959058fe926b3f5c42539487e23587d51948f49d7a38cf5d_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:2bfe5265856abdd8cb490bde852d4e992f1793684f003d1ef53776fe69d790d7_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:32d9568317c55235f75c4d0e1c98de6d4af252cbdd116ed2355025cbaeac862f_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:48b99d167a5c54a98e69bba441bb5b70db2ffe065d3f8f8d23ecfed7b813336e_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:8b2b33e91756bbd1c7ed6905e00176b9d55a4e13aee2f84862bc571a8a82f113_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:43cdf063e9a6aa5f84233c8bd850a711b5d5fae8a7795803609fec07d189ca05_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:7ad9073c0a768f170cf8d4311ea35ec1caccfdefdf6d1dccbc10ed01cdeafd16_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:934c224a59086c689be1839b6846a0984370a78a8adc8510fa692f5215bb6182_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:d2bfcb27baf36e569eca4f7c85f458a180d7938616413a4cf8e10cb329e6a150_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:78dabed4a5fc1eb3246778e6ee6e1a543829cf88d0b03f0ccccf101c41a7bdda_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:7c98501fee1297a24caa77d325f6bfd7f91192589f0aa22d47d9766e8219c749_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:905d45518e20ea10daa3a35ea2f2201a6f762a16f9b4829ce37b7396d493ac59_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:91e064bccc3f7320844763fc136cb4c650db40190e01edebe16135bcc00627ac_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:a48dd94d5616183843ba939146b7e4d985210cdd902038ff80ff6df3df3d74ca_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:2b18f2cf31e0914762cc6e99c9797c24a19db69ca08bc9983bc2aacc85ee7024_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:38c9b56aa9c2a5153e01ffc1edb399247ed1937b9382ac4f0fb2beae4c27f69a_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:59f85768c28401783b9475ce21088e3d8fbf6bcd64bb49e3a243c881ac6b546c_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f5b515ecaea7d542ac18ea5a056c99fe84ca2ac25fa3904bdc50a78ecf47541f_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8cdf016c4d61bce4f244415ae192fe1647ef517ba1690f2009b5b8e1104c72a7_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:a69c6f8b091d11c69b6864edc6973c6f5f4515eb3a1923bf51fdb971315c28b0_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ad5f4d1b7f712416bb62785375ce15ef1a5cb3f1a77226899abc8aba32a11623_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c9808efcb221c10d78bdf663e3b5e3d5d281bf59702be049090fc1fa0511b078_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:13f0ec3ce663f6701501e82bbb508549e149588eedb0982729a59d98c88d0ba0_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:43d9679eb3ac8d5287863137f2d698d814a2fbc2fbd6a6aacba11240cd76d40c_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:d23a4d9f0967f53d15fefda63e972e035d23aebe819dd11a6cec9beceacd8997_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:e32fc2e1c50fb1110a835e29e6e360b4127ed84fca98c6276b0b171ccd6cb223_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:1168d897f16b276ba5a6e6170e31fbe1499a980666aed493b2fe27036471ba55_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:15300e7d45a8e2093ef6f33303174f7361de7d9b648f8c9f2cf06f8ba3c56c76_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:6ccd50b0049e4ba0f9d4ea8779b17c6acc95395490579fbaa3b9e9084ac7d314_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e762a9019e4b5afd27331ad519a5b63a2bba3c7eb522533e0932e97c2879a36e_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f4c5323da09593280fc61c2df7fced0f6dc9d3ca322d27069f51334c3d18dae_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:918c66e3ea09e481c38673314021ef1aa6b46afc9dcb115b9d19b6819c5db4a7_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:cc4f2ce5926da93eaf81b0935d3171d81a310ec97e3c08bbbf6599752446810d_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f2bcd5123e4fad7aa4ad54f2819a1beb75d844302aa162e0335c1a0191fe5346_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:27b7eef1c64e432dbe15e92cf745a951aebdc9b379d9c02dbfef6df296c39cd1_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:3cfcd5f9ab8ec42cefd8fab992ecb493a9d14126bdf53ba542ffa4b51fd1684c_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:641354f1d56627f49af3e32ad963616b69aac644ac33d664e7fe29de32fe43b3_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:fa5400aecca1a46c4b98d00c749ea56d6187ced20952f02e4dd1c12e2467117e_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:42d8388fafeb7c188b03389c92561da4068f91a8cc2343f33d967939342e4f64_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:a86e59cedc67e9fcee3412afa157572a2ab815a3d9e18da03ada502f7313cc80_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b60b4b992b89b82620e5ea618350a97434b272d1f023200dcbeae642612e3569_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ee9d72769b916b350307df495022e04add1fbcd67c1e62757fd316e7f1dd60ae_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:53618eb41967e64660e87e5ad6ce8f5d9803aed9bb48da8898aaefb4d0a4632d_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:65176a94e684c200beef8f25016982ab212bdcd10d31b54a831310e20c026f77_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:a4ca99dc99b864ef805f3e8d997f0567168c809433f16ec23540c0b8ead96216_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:cc31b6212f77e03383e615ee30fd97419806c3841f18d2f6c950d82cdd21e872_ppc64le"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-24789"
        },
        {
          "category": "external",
          "summary": "RHBZ#2292668",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292668"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-24789",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-24789"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-24789",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24789"
        }
      ],
      "release_date": "2024-06-04T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-09-15T16:27:40+00:00",
          "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:15a4a74016cdb94aece0bc651edd221b72a9202e5fd414d30ae969707cb5b4c9_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:5361443dee5415dc554d79e2fa23a6b336f1d8ea89fb20a4caa72f70574b939b_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:a152f1e75dd10ba692587a4e702d59cd1c5adcde8b97390f58742270edf85d33_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:f17428eced9d6bec1eaaa1510b68250824d3ace2f66af7f31fbf7327ca11540c_arm64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:15847"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "NONE",
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/idea-rhel9@sha256:df24ebb239a2cc0d4543309f51a7268c7d524d428a536e0b3443c51089c3f87e_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:0dc291e3dc58d285d054a35b480d14c3912777e14fd643915b8ceabd178ad6bf_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:ac5b3e78470c747377dbc9ecb6e0680d724086c331955ed5471b74d01155ece8_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:cd1ee1d15cafe77bbf8e283cee2cde88dcdfb59c9545867a047cf4b42089aa85_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:d0b17cb5f9a530ca959058fe926b3f5c42539487e23587d51948f49d7a38cf5d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:2bfe5265856abdd8cb490bde852d4e992f1793684f003d1ef53776fe69d790d7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:32d9568317c55235f75c4d0e1c98de6d4af252cbdd116ed2355025cbaeac862f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:48b99d167a5c54a98e69bba441bb5b70db2ffe065d3f8f8d23ecfed7b813336e_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:8b2b33e91756bbd1c7ed6905e00176b9d55a4e13aee2f84862bc571a8a82f113_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:43cdf063e9a6aa5f84233c8bd850a711b5d5fae8a7795803609fec07d189ca05_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:7ad9073c0a768f170cf8d4311ea35ec1caccfdefdf6d1dccbc10ed01cdeafd16_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:934c224a59086c689be1839b6846a0984370a78a8adc8510fa692f5215bb6182_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:d2bfcb27baf36e569eca4f7c85f458a180d7938616413a4cf8e10cb329e6a150_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:78dabed4a5fc1eb3246778e6ee6e1a543829cf88d0b03f0ccccf101c41a7bdda_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:7c98501fee1297a24caa77d325f6bfd7f91192589f0aa22d47d9766e8219c749_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:905d45518e20ea10daa3a35ea2f2201a6f762a16f9b4829ce37b7396d493ac59_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:91e064bccc3f7320844763fc136cb4c650db40190e01edebe16135bcc00627ac_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:a48dd94d5616183843ba939146b7e4d985210cdd902038ff80ff6df3df3d74ca_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:2b18f2cf31e0914762cc6e99c9797c24a19db69ca08bc9983bc2aacc85ee7024_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:38c9b56aa9c2a5153e01ffc1edb399247ed1937b9382ac4f0fb2beae4c27f69a_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:59f85768c28401783b9475ce21088e3d8fbf6bcd64bb49e3a243c881ac6b546c_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f5b515ecaea7d542ac18ea5a056c99fe84ca2ac25fa3904bdc50a78ecf47541f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8cdf016c4d61bce4f244415ae192fe1647ef517ba1690f2009b5b8e1104c72a7_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:a69c6f8b091d11c69b6864edc6973c6f5f4515eb3a1923bf51fdb971315c28b0_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ad5f4d1b7f712416bb62785375ce15ef1a5cb3f1a77226899abc8aba32a11623_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c9808efcb221c10d78bdf663e3b5e3d5d281bf59702be049090fc1fa0511b078_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:13f0ec3ce663f6701501e82bbb508549e149588eedb0982729a59d98c88d0ba0_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:43d9679eb3ac8d5287863137f2d698d814a2fbc2fbd6a6aacba11240cd76d40c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:d23a4d9f0967f53d15fefda63e972e035d23aebe819dd11a6cec9beceacd8997_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:e32fc2e1c50fb1110a835e29e6e360b4127ed84fca98c6276b0b171ccd6cb223_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:1168d897f16b276ba5a6e6170e31fbe1499a980666aed493b2fe27036471ba55_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:15300e7d45a8e2093ef6f33303174f7361de7d9b648f8c9f2cf06f8ba3c56c76_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:6ccd50b0049e4ba0f9d4ea8779b17c6acc95395490579fbaa3b9e9084ac7d314_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e762a9019e4b5afd27331ad519a5b63a2bba3c7eb522533e0932e97c2879a36e_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f4c5323da09593280fc61c2df7fced0f6dc9d3ca322d27069f51334c3d18dae_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:918c66e3ea09e481c38673314021ef1aa6b46afc9dcb115b9d19b6819c5db4a7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:cc4f2ce5926da93eaf81b0935d3171d81a310ec97e3c08bbbf6599752446810d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f2bcd5123e4fad7aa4ad54f2819a1beb75d844302aa162e0335c1a0191fe5346_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:27b7eef1c64e432dbe15e92cf745a951aebdc9b379d9c02dbfef6df296c39cd1_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:3cfcd5f9ab8ec42cefd8fab992ecb493a9d14126bdf53ba542ffa4b51fd1684c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:641354f1d56627f49af3e32ad963616b69aac644ac33d664e7fe29de32fe43b3_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:fa5400aecca1a46c4b98d00c749ea56d6187ced20952f02e4dd1c12e2467117e_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:15a4a74016cdb94aece0bc651edd221b72a9202e5fd414d30ae969707cb5b4c9_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:5361443dee5415dc554d79e2fa23a6b336f1d8ea89fb20a4caa72f70574b939b_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:a152f1e75dd10ba692587a4e702d59cd1c5adcde8b97390f58742270edf85d33_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:f17428eced9d6bec1eaaa1510b68250824d3ace2f66af7f31fbf7327ca11540c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:42d8388fafeb7c188b03389c92561da4068f91a8cc2343f33d967939342e4f64_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:a86e59cedc67e9fcee3412afa157572a2ab815a3d9e18da03ada502f7313cc80_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b60b4b992b89b82620e5ea618350a97434b272d1f023200dcbeae642612e3569_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ee9d72769b916b350307df495022e04add1fbcd67c1e62757fd316e7f1dd60ae_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:53618eb41967e64660e87e5ad6ce8f5d9803aed9bb48da8898aaefb4d0a4632d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:65176a94e684c200beef8f25016982ab212bdcd10d31b54a831310e20c026f77_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:a4ca99dc99b864ef805f3e8d997f0567168c809433f16ec23540c0b8ead96216_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:cc31b6212f77e03383e615ee30fd97419806c3841f18d2f6c950d82cdd21e872_ppc64le"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "golang: archive/zip: Incorrect handling of certain ZIP files"
    },
    {
      "cve": "CVE-2024-28869",
      "cwe": {
        "id": "CWE-755",
        "name": "Improper Handling of Exceptional Conditions"
      },
      "discovery_date": "2024-04-14T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/idea-rhel9@sha256:df24ebb239a2cc0d4543309f51a7268c7d524d428a536e0b3443c51089c3f87e_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:0dc291e3dc58d285d054a35b480d14c3912777e14fd643915b8ceabd178ad6bf_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:ac5b3e78470c747377dbc9ecb6e0680d724086c331955ed5471b74d01155ece8_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:cd1ee1d15cafe77bbf8e283cee2cde88dcdfb59c9545867a047cf4b42089aa85_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:d0b17cb5f9a530ca959058fe926b3f5c42539487e23587d51948f49d7a38cf5d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:2bfe5265856abdd8cb490bde852d4e992f1793684f003d1ef53776fe69d790d7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:32d9568317c55235f75c4d0e1c98de6d4af252cbdd116ed2355025cbaeac862f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:48b99d167a5c54a98e69bba441bb5b70db2ffe065d3f8f8d23ecfed7b813336e_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:8b2b33e91756bbd1c7ed6905e00176b9d55a4e13aee2f84862bc571a8a82f113_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:43cdf063e9a6aa5f84233c8bd850a711b5d5fae8a7795803609fec07d189ca05_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:7ad9073c0a768f170cf8d4311ea35ec1caccfdefdf6d1dccbc10ed01cdeafd16_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:934c224a59086c689be1839b6846a0984370a78a8adc8510fa692f5215bb6182_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:d2bfcb27baf36e569eca4f7c85f458a180d7938616413a4cf8e10cb329e6a150_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:78dabed4a5fc1eb3246778e6ee6e1a543829cf88d0b03f0ccccf101c41a7bdda_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:7c98501fee1297a24caa77d325f6bfd7f91192589f0aa22d47d9766e8219c749_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:905d45518e20ea10daa3a35ea2f2201a6f762a16f9b4829ce37b7396d493ac59_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:91e064bccc3f7320844763fc136cb4c650db40190e01edebe16135bcc00627ac_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:a48dd94d5616183843ba939146b7e4d985210cdd902038ff80ff6df3df3d74ca_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:2b18f2cf31e0914762cc6e99c9797c24a19db69ca08bc9983bc2aacc85ee7024_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:38c9b56aa9c2a5153e01ffc1edb399247ed1937b9382ac4f0fb2beae4c27f69a_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:59f85768c28401783b9475ce21088e3d8fbf6bcd64bb49e3a243c881ac6b546c_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f5b515ecaea7d542ac18ea5a056c99fe84ca2ac25fa3904bdc50a78ecf47541f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8cdf016c4d61bce4f244415ae192fe1647ef517ba1690f2009b5b8e1104c72a7_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:a69c6f8b091d11c69b6864edc6973c6f5f4515eb3a1923bf51fdb971315c28b0_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ad5f4d1b7f712416bb62785375ce15ef1a5cb3f1a77226899abc8aba32a11623_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c9808efcb221c10d78bdf663e3b5e3d5d281bf59702be049090fc1fa0511b078_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:13f0ec3ce663f6701501e82bbb508549e149588eedb0982729a59d98c88d0ba0_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:43d9679eb3ac8d5287863137f2d698d814a2fbc2fbd6a6aacba11240cd76d40c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:d23a4d9f0967f53d15fefda63e972e035d23aebe819dd11a6cec9beceacd8997_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:e32fc2e1c50fb1110a835e29e6e360b4127ed84fca98c6276b0b171ccd6cb223_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:1168d897f16b276ba5a6e6170e31fbe1499a980666aed493b2fe27036471ba55_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:15300e7d45a8e2093ef6f33303174f7361de7d9b648f8c9f2cf06f8ba3c56c76_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:6ccd50b0049e4ba0f9d4ea8779b17c6acc95395490579fbaa3b9e9084ac7d314_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e762a9019e4b5afd27331ad519a5b63a2bba3c7eb522533e0932e97c2879a36e_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f4c5323da09593280fc61c2df7fced0f6dc9d3ca322d27069f51334c3d18dae_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:918c66e3ea09e481c38673314021ef1aa6b46afc9dcb115b9d19b6819c5db4a7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:cc4f2ce5926da93eaf81b0935d3171d81a310ec97e3c08bbbf6599752446810d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f2bcd5123e4fad7aa4ad54f2819a1beb75d844302aa162e0335c1a0191fe5346_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:27b7eef1c64e432dbe15e92cf745a951aebdc9b379d9c02dbfef6df296c39cd1_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:3cfcd5f9ab8ec42cefd8fab992ecb493a9d14126bdf53ba542ffa4b51fd1684c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:641354f1d56627f49af3e32ad963616b69aac644ac33d664e7fe29de32fe43b3_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:fa5400aecca1a46c4b98d00c749ea56d6187ced20952f02e4dd1c12e2467117e_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:42d8388fafeb7c188b03389c92561da4068f91a8cc2343f33d967939342e4f64_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:a86e59cedc67e9fcee3412afa157572a2ab815a3d9e18da03ada502f7313cc80_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b60b4b992b89b82620e5ea618350a97434b272d1f023200dcbeae642612e3569_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ee9d72769b916b350307df495022e04add1fbcd67c1e62757fd316e7f1dd60ae_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:53618eb41967e64660e87e5ad6ce8f5d9803aed9bb48da8898aaefb4d0a4632d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:65176a94e684c200beef8f25016982ab212bdcd10d31b54a831310e20c026f77_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:a4ca99dc99b864ef805f3e8d997f0567168c809433f16ec23540c0b8ead96216_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:cc31b6212f77e03383e615ee30fd97419806c3841f18d2f6c950d82cdd21e872_ppc64le"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2274987"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "An improper handling of exceptional conditions vulnerability was found in Traefik. In affected versions, sending a GET request to any Traefik endpoint with the \"Content-length\" request header results in an indefinite hang with the default configuration, resulting in a denial of service.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "traefik: denial of service",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:15a4a74016cdb94aece0bc651edd221b72a9202e5fd414d30ae969707cb5b4c9_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:5361443dee5415dc554d79e2fa23a6b336f1d8ea89fb20a4caa72f70574b939b_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:a152f1e75dd10ba692587a4e702d59cd1c5adcde8b97390f58742270edf85d33_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:f17428eced9d6bec1eaaa1510b68250824d3ace2f66af7f31fbf7327ca11540c_arm64"
        ],
        "known_not_affected": [
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/idea-rhel9@sha256:df24ebb239a2cc0d4543309f51a7268c7d524d428a536e0b3443c51089c3f87e_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:0dc291e3dc58d285d054a35b480d14c3912777e14fd643915b8ceabd178ad6bf_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:ac5b3e78470c747377dbc9ecb6e0680d724086c331955ed5471b74d01155ece8_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:cd1ee1d15cafe77bbf8e283cee2cde88dcdfb59c9545867a047cf4b42089aa85_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:d0b17cb5f9a530ca959058fe926b3f5c42539487e23587d51948f49d7a38cf5d_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:2bfe5265856abdd8cb490bde852d4e992f1793684f003d1ef53776fe69d790d7_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:32d9568317c55235f75c4d0e1c98de6d4af252cbdd116ed2355025cbaeac862f_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:48b99d167a5c54a98e69bba441bb5b70db2ffe065d3f8f8d23ecfed7b813336e_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:8b2b33e91756bbd1c7ed6905e00176b9d55a4e13aee2f84862bc571a8a82f113_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:43cdf063e9a6aa5f84233c8bd850a711b5d5fae8a7795803609fec07d189ca05_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:7ad9073c0a768f170cf8d4311ea35ec1caccfdefdf6d1dccbc10ed01cdeafd16_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:934c224a59086c689be1839b6846a0984370a78a8adc8510fa692f5215bb6182_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:d2bfcb27baf36e569eca4f7c85f458a180d7938616413a4cf8e10cb329e6a150_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:78dabed4a5fc1eb3246778e6ee6e1a543829cf88d0b03f0ccccf101c41a7bdda_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:7c98501fee1297a24caa77d325f6bfd7f91192589f0aa22d47d9766e8219c749_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:905d45518e20ea10daa3a35ea2f2201a6f762a16f9b4829ce37b7396d493ac59_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:91e064bccc3f7320844763fc136cb4c650db40190e01edebe16135bcc00627ac_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:a48dd94d5616183843ba939146b7e4d985210cdd902038ff80ff6df3df3d74ca_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:2b18f2cf31e0914762cc6e99c9797c24a19db69ca08bc9983bc2aacc85ee7024_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:38c9b56aa9c2a5153e01ffc1edb399247ed1937b9382ac4f0fb2beae4c27f69a_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:59f85768c28401783b9475ce21088e3d8fbf6bcd64bb49e3a243c881ac6b546c_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f5b515ecaea7d542ac18ea5a056c99fe84ca2ac25fa3904bdc50a78ecf47541f_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8cdf016c4d61bce4f244415ae192fe1647ef517ba1690f2009b5b8e1104c72a7_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:a69c6f8b091d11c69b6864edc6973c6f5f4515eb3a1923bf51fdb971315c28b0_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ad5f4d1b7f712416bb62785375ce15ef1a5cb3f1a77226899abc8aba32a11623_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c9808efcb221c10d78bdf663e3b5e3d5d281bf59702be049090fc1fa0511b078_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:13f0ec3ce663f6701501e82bbb508549e149588eedb0982729a59d98c88d0ba0_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:43d9679eb3ac8d5287863137f2d698d814a2fbc2fbd6a6aacba11240cd76d40c_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:d23a4d9f0967f53d15fefda63e972e035d23aebe819dd11a6cec9beceacd8997_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:e32fc2e1c50fb1110a835e29e6e360b4127ed84fca98c6276b0b171ccd6cb223_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:1168d897f16b276ba5a6e6170e31fbe1499a980666aed493b2fe27036471ba55_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:15300e7d45a8e2093ef6f33303174f7361de7d9b648f8c9f2cf06f8ba3c56c76_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:6ccd50b0049e4ba0f9d4ea8779b17c6acc95395490579fbaa3b9e9084ac7d314_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e762a9019e4b5afd27331ad519a5b63a2bba3c7eb522533e0932e97c2879a36e_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f4c5323da09593280fc61c2df7fced0f6dc9d3ca322d27069f51334c3d18dae_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:918c66e3ea09e481c38673314021ef1aa6b46afc9dcb115b9d19b6819c5db4a7_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:cc4f2ce5926da93eaf81b0935d3171d81a310ec97e3c08bbbf6599752446810d_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f2bcd5123e4fad7aa4ad54f2819a1beb75d844302aa162e0335c1a0191fe5346_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:27b7eef1c64e432dbe15e92cf745a951aebdc9b379d9c02dbfef6df296c39cd1_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:3cfcd5f9ab8ec42cefd8fab992ecb493a9d14126bdf53ba542ffa4b51fd1684c_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:641354f1d56627f49af3e32ad963616b69aac644ac33d664e7fe29de32fe43b3_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:fa5400aecca1a46c4b98d00c749ea56d6187ced20952f02e4dd1c12e2467117e_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:42d8388fafeb7c188b03389c92561da4068f91a8cc2343f33d967939342e4f64_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:a86e59cedc67e9fcee3412afa157572a2ab815a3d9e18da03ada502f7313cc80_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b60b4b992b89b82620e5ea618350a97434b272d1f023200dcbeae642612e3569_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ee9d72769b916b350307df495022e04add1fbcd67c1e62757fd316e7f1dd60ae_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:53618eb41967e64660e87e5ad6ce8f5d9803aed9bb48da8898aaefb4d0a4632d_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:65176a94e684c200beef8f25016982ab212bdcd10d31b54a831310e20c026f77_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:a4ca99dc99b864ef805f3e8d997f0567168c809433f16ec23540c0b8ead96216_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:cc31b6212f77e03383e615ee30fd97419806c3841f18d2f6c950d82cdd21e872_ppc64le"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-28869"
        },
        {
          "category": "external",
          "summary": "RHBZ#2274987",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2274987"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-28869",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-28869"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-28869",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-28869"
        },
        {
          "category": "external",
          "summary": "https://github.com/traefik/traefik/commit/240b83b77351dfd8cadb91c305b84e9d22e0f9c6",
          "url": "https://github.com/traefik/traefik/commit/240b83b77351dfd8cadb91c305b84e9d22e0f9c6"
        },
        {
          "category": "external",
          "summary": "https://github.com/traefik/traefik/security/advisories/GHSA-4vwx-54mw-vqfw",
          "url": "https://github.com/traefik/traefik/security/advisories/GHSA-4vwx-54mw-vqfw"
        }
      ],
      "release_date": "2024-04-12T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-09-15T16:27:40+00:00",
          "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:15a4a74016cdb94aece0bc651edd221b72a9202e5fd414d30ae969707cb5b4c9_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:5361443dee5415dc554d79e2fa23a6b336f1d8ea89fb20a4caa72f70574b939b_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:a152f1e75dd10ba692587a4e702d59cd1c5adcde8b97390f58742270edf85d33_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:f17428eced9d6bec1eaaa1510b68250824d3ace2f66af7f31fbf7327ca11540c_arm64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:15847"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/idea-rhel9@sha256:df24ebb239a2cc0d4543309f51a7268c7d524d428a536e0b3443c51089c3f87e_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:0dc291e3dc58d285d054a35b480d14c3912777e14fd643915b8ceabd178ad6bf_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:ac5b3e78470c747377dbc9ecb6e0680d724086c331955ed5471b74d01155ece8_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:cd1ee1d15cafe77bbf8e283cee2cde88dcdfb59c9545867a047cf4b42089aa85_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:d0b17cb5f9a530ca959058fe926b3f5c42539487e23587d51948f49d7a38cf5d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:2bfe5265856abdd8cb490bde852d4e992f1793684f003d1ef53776fe69d790d7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:32d9568317c55235f75c4d0e1c98de6d4af252cbdd116ed2355025cbaeac862f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:48b99d167a5c54a98e69bba441bb5b70db2ffe065d3f8f8d23ecfed7b813336e_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:8b2b33e91756bbd1c7ed6905e00176b9d55a4e13aee2f84862bc571a8a82f113_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:43cdf063e9a6aa5f84233c8bd850a711b5d5fae8a7795803609fec07d189ca05_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:7ad9073c0a768f170cf8d4311ea35ec1caccfdefdf6d1dccbc10ed01cdeafd16_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:934c224a59086c689be1839b6846a0984370a78a8adc8510fa692f5215bb6182_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:d2bfcb27baf36e569eca4f7c85f458a180d7938616413a4cf8e10cb329e6a150_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:78dabed4a5fc1eb3246778e6ee6e1a543829cf88d0b03f0ccccf101c41a7bdda_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:7c98501fee1297a24caa77d325f6bfd7f91192589f0aa22d47d9766e8219c749_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:905d45518e20ea10daa3a35ea2f2201a6f762a16f9b4829ce37b7396d493ac59_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:91e064bccc3f7320844763fc136cb4c650db40190e01edebe16135bcc00627ac_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:a48dd94d5616183843ba939146b7e4d985210cdd902038ff80ff6df3df3d74ca_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:2b18f2cf31e0914762cc6e99c9797c24a19db69ca08bc9983bc2aacc85ee7024_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:38c9b56aa9c2a5153e01ffc1edb399247ed1937b9382ac4f0fb2beae4c27f69a_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:59f85768c28401783b9475ce21088e3d8fbf6bcd64bb49e3a243c881ac6b546c_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f5b515ecaea7d542ac18ea5a056c99fe84ca2ac25fa3904bdc50a78ecf47541f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8cdf016c4d61bce4f244415ae192fe1647ef517ba1690f2009b5b8e1104c72a7_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:a69c6f8b091d11c69b6864edc6973c6f5f4515eb3a1923bf51fdb971315c28b0_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ad5f4d1b7f712416bb62785375ce15ef1a5cb3f1a77226899abc8aba32a11623_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c9808efcb221c10d78bdf663e3b5e3d5d281bf59702be049090fc1fa0511b078_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:13f0ec3ce663f6701501e82bbb508549e149588eedb0982729a59d98c88d0ba0_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:43d9679eb3ac8d5287863137f2d698d814a2fbc2fbd6a6aacba11240cd76d40c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:d23a4d9f0967f53d15fefda63e972e035d23aebe819dd11a6cec9beceacd8997_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:e32fc2e1c50fb1110a835e29e6e360b4127ed84fca98c6276b0b171ccd6cb223_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:1168d897f16b276ba5a6e6170e31fbe1499a980666aed493b2fe27036471ba55_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:15300e7d45a8e2093ef6f33303174f7361de7d9b648f8c9f2cf06f8ba3c56c76_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:6ccd50b0049e4ba0f9d4ea8779b17c6acc95395490579fbaa3b9e9084ac7d314_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e762a9019e4b5afd27331ad519a5b63a2bba3c7eb522533e0932e97c2879a36e_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f4c5323da09593280fc61c2df7fced0f6dc9d3ca322d27069f51334c3d18dae_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:918c66e3ea09e481c38673314021ef1aa6b46afc9dcb115b9d19b6819c5db4a7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:cc4f2ce5926da93eaf81b0935d3171d81a310ec97e3c08bbbf6599752446810d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f2bcd5123e4fad7aa4ad54f2819a1beb75d844302aa162e0335c1a0191fe5346_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:27b7eef1c64e432dbe15e92cf745a951aebdc9b379d9c02dbfef6df296c39cd1_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:3cfcd5f9ab8ec42cefd8fab992ecb493a9d14126bdf53ba542ffa4b51fd1684c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:641354f1d56627f49af3e32ad963616b69aac644ac33d664e7fe29de32fe43b3_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:fa5400aecca1a46c4b98d00c749ea56d6187ced20952f02e4dd1c12e2467117e_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:15a4a74016cdb94aece0bc651edd221b72a9202e5fd414d30ae969707cb5b4c9_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:5361443dee5415dc554d79e2fa23a6b336f1d8ea89fb20a4caa72f70574b939b_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:a152f1e75dd10ba692587a4e702d59cd1c5adcde8b97390f58742270edf85d33_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:f17428eced9d6bec1eaaa1510b68250824d3ace2f66af7f31fbf7327ca11540c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:42d8388fafeb7c188b03389c92561da4068f91a8cc2343f33d967939342e4f64_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:a86e59cedc67e9fcee3412afa157572a2ab815a3d9e18da03ada502f7313cc80_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b60b4b992b89b82620e5ea618350a97434b272d1f023200dcbeae642612e3569_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ee9d72769b916b350307df495022e04add1fbcd67c1e62757fd316e7f1dd60ae_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:53618eb41967e64660e87e5ad6ce8f5d9803aed9bb48da8898aaefb4d0a4632d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:65176a94e684c200beef8f25016982ab212bdcd10d31b54a831310e20c026f77_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:a4ca99dc99b864ef805f3e8d997f0567168c809433f16ec23540c0b8ead96216_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:cc31b6212f77e03383e615ee30fd97419806c3841f18d2f6c950d82cdd21e872_ppc64le"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "traefik: denial of service"
    },
    {
      "cve": "CVE-2024-39321",
      "cwe": {
        "id": "CWE-639",
        "name": "Authorization Bypass Through User-Controlled Key"
      },
      "discovery_date": "2024-07-05T18:20:25+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/idea-rhel9@sha256:df24ebb239a2cc0d4543309f51a7268c7d524d428a536e0b3443c51089c3f87e_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:0dc291e3dc58d285d054a35b480d14c3912777e14fd643915b8ceabd178ad6bf_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:ac5b3e78470c747377dbc9ecb6e0680d724086c331955ed5471b74d01155ece8_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:cd1ee1d15cafe77bbf8e283cee2cde88dcdfb59c9545867a047cf4b42089aa85_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:d0b17cb5f9a530ca959058fe926b3f5c42539487e23587d51948f49d7a38cf5d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:2bfe5265856abdd8cb490bde852d4e992f1793684f003d1ef53776fe69d790d7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:32d9568317c55235f75c4d0e1c98de6d4af252cbdd116ed2355025cbaeac862f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:48b99d167a5c54a98e69bba441bb5b70db2ffe065d3f8f8d23ecfed7b813336e_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:8b2b33e91756bbd1c7ed6905e00176b9d55a4e13aee2f84862bc571a8a82f113_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:43cdf063e9a6aa5f84233c8bd850a711b5d5fae8a7795803609fec07d189ca05_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:7ad9073c0a768f170cf8d4311ea35ec1caccfdefdf6d1dccbc10ed01cdeafd16_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:934c224a59086c689be1839b6846a0984370a78a8adc8510fa692f5215bb6182_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:d2bfcb27baf36e569eca4f7c85f458a180d7938616413a4cf8e10cb329e6a150_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:78dabed4a5fc1eb3246778e6ee6e1a543829cf88d0b03f0ccccf101c41a7bdda_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:7c98501fee1297a24caa77d325f6bfd7f91192589f0aa22d47d9766e8219c749_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:905d45518e20ea10daa3a35ea2f2201a6f762a16f9b4829ce37b7396d493ac59_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:91e064bccc3f7320844763fc136cb4c650db40190e01edebe16135bcc00627ac_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:a48dd94d5616183843ba939146b7e4d985210cdd902038ff80ff6df3df3d74ca_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:2b18f2cf31e0914762cc6e99c9797c24a19db69ca08bc9983bc2aacc85ee7024_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:38c9b56aa9c2a5153e01ffc1edb399247ed1937b9382ac4f0fb2beae4c27f69a_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:59f85768c28401783b9475ce21088e3d8fbf6bcd64bb49e3a243c881ac6b546c_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f5b515ecaea7d542ac18ea5a056c99fe84ca2ac25fa3904bdc50a78ecf47541f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8cdf016c4d61bce4f244415ae192fe1647ef517ba1690f2009b5b8e1104c72a7_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:a69c6f8b091d11c69b6864edc6973c6f5f4515eb3a1923bf51fdb971315c28b0_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ad5f4d1b7f712416bb62785375ce15ef1a5cb3f1a77226899abc8aba32a11623_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c9808efcb221c10d78bdf663e3b5e3d5d281bf59702be049090fc1fa0511b078_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:13f0ec3ce663f6701501e82bbb508549e149588eedb0982729a59d98c88d0ba0_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:43d9679eb3ac8d5287863137f2d698d814a2fbc2fbd6a6aacba11240cd76d40c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:d23a4d9f0967f53d15fefda63e972e035d23aebe819dd11a6cec9beceacd8997_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:e32fc2e1c50fb1110a835e29e6e360b4127ed84fca98c6276b0b171ccd6cb223_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:1168d897f16b276ba5a6e6170e31fbe1499a980666aed493b2fe27036471ba55_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:15300e7d45a8e2093ef6f33303174f7361de7d9b648f8c9f2cf06f8ba3c56c76_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:6ccd50b0049e4ba0f9d4ea8779b17c6acc95395490579fbaa3b9e9084ac7d314_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e762a9019e4b5afd27331ad519a5b63a2bba3c7eb522533e0932e97c2879a36e_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f4c5323da09593280fc61c2df7fced0f6dc9d3ca322d27069f51334c3d18dae_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:918c66e3ea09e481c38673314021ef1aa6b46afc9dcb115b9d19b6819c5db4a7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:cc4f2ce5926da93eaf81b0935d3171d81a310ec97e3c08bbbf6599752446810d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f2bcd5123e4fad7aa4ad54f2819a1beb75d844302aa162e0335c1a0191fe5346_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:27b7eef1c64e432dbe15e92cf745a951aebdc9b379d9c02dbfef6df296c39cd1_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:3cfcd5f9ab8ec42cefd8fab992ecb493a9d14126bdf53ba542ffa4b51fd1684c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:641354f1d56627f49af3e32ad963616b69aac644ac33d664e7fe29de32fe43b3_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:fa5400aecca1a46c4b98d00c749ea56d6187ced20952f02e4dd1c12e2467117e_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:42d8388fafeb7c188b03389c92561da4068f91a8cc2343f33d967939342e4f64_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:a86e59cedc67e9fcee3412afa157572a2ab815a3d9e18da03ada502f7313cc80_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b60b4b992b89b82620e5ea618350a97434b272d1f023200dcbeae642612e3569_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ee9d72769b916b350307df495022e04add1fbcd67c1e62757fd316e7f1dd60ae_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:53618eb41967e64660e87e5ad6ce8f5d9803aed9bb48da8898aaefb4d0a4632d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:65176a94e684c200beef8f25016982ab212bdcd10d31b54a831310e20c026f77_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:a4ca99dc99b864ef805f3e8d997f0567168c809433f16ec23540c0b8ead96216_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:cc31b6212f77e03383e615ee30fd97419806c3841f18d2f6c950d82cdd21e872_ppc64le"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2296009"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "An authorization bypass vulnerability was found in Traefik. This flaw allows bypassing IP allow-lists via HTTP/3 early data requests in QUIC 0-RTT handshakes sent with spoofed IP addresses.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "traefik: Bypassing IP allow-lists via HTTP/3 early data requests in QUIC 0-RTT handshakes",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "The vulnerability in Traefik that allows bypassing IP allow-lists via HTTP/3 early data requests in QUIC 0-RTT handshakes, while notable, is categorized as moderate severity rather than important. This classification stems from the requirement for an attacker to leverage HTTP/3\u0027s early data feature and perform spoofed IP address manipulation to exploit the flaw. As a result, successful exploitation demands specific conditions, including network-level access and manipulation capabilities, which may not be trivial in many environments.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:15a4a74016cdb94aece0bc651edd221b72a9202e5fd414d30ae969707cb5b4c9_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:5361443dee5415dc554d79e2fa23a6b336f1d8ea89fb20a4caa72f70574b939b_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:a152f1e75dd10ba692587a4e702d59cd1c5adcde8b97390f58742270edf85d33_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:f17428eced9d6bec1eaaa1510b68250824d3ace2f66af7f31fbf7327ca11540c_arm64"
        ],
        "known_not_affected": [
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/idea-rhel9@sha256:df24ebb239a2cc0d4543309f51a7268c7d524d428a536e0b3443c51089c3f87e_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:0dc291e3dc58d285d054a35b480d14c3912777e14fd643915b8ceabd178ad6bf_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:ac5b3e78470c747377dbc9ecb6e0680d724086c331955ed5471b74d01155ece8_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:cd1ee1d15cafe77bbf8e283cee2cde88dcdfb59c9545867a047cf4b42089aa85_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:d0b17cb5f9a530ca959058fe926b3f5c42539487e23587d51948f49d7a38cf5d_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:2bfe5265856abdd8cb490bde852d4e992f1793684f003d1ef53776fe69d790d7_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:32d9568317c55235f75c4d0e1c98de6d4af252cbdd116ed2355025cbaeac862f_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:48b99d167a5c54a98e69bba441bb5b70db2ffe065d3f8f8d23ecfed7b813336e_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:8b2b33e91756bbd1c7ed6905e00176b9d55a4e13aee2f84862bc571a8a82f113_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:43cdf063e9a6aa5f84233c8bd850a711b5d5fae8a7795803609fec07d189ca05_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:7ad9073c0a768f170cf8d4311ea35ec1caccfdefdf6d1dccbc10ed01cdeafd16_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:934c224a59086c689be1839b6846a0984370a78a8adc8510fa692f5215bb6182_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:d2bfcb27baf36e569eca4f7c85f458a180d7938616413a4cf8e10cb329e6a150_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:78dabed4a5fc1eb3246778e6ee6e1a543829cf88d0b03f0ccccf101c41a7bdda_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:7c98501fee1297a24caa77d325f6bfd7f91192589f0aa22d47d9766e8219c749_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:905d45518e20ea10daa3a35ea2f2201a6f762a16f9b4829ce37b7396d493ac59_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:91e064bccc3f7320844763fc136cb4c650db40190e01edebe16135bcc00627ac_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:a48dd94d5616183843ba939146b7e4d985210cdd902038ff80ff6df3df3d74ca_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:2b18f2cf31e0914762cc6e99c9797c24a19db69ca08bc9983bc2aacc85ee7024_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:38c9b56aa9c2a5153e01ffc1edb399247ed1937b9382ac4f0fb2beae4c27f69a_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:59f85768c28401783b9475ce21088e3d8fbf6bcd64bb49e3a243c881ac6b546c_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f5b515ecaea7d542ac18ea5a056c99fe84ca2ac25fa3904bdc50a78ecf47541f_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8cdf016c4d61bce4f244415ae192fe1647ef517ba1690f2009b5b8e1104c72a7_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:a69c6f8b091d11c69b6864edc6973c6f5f4515eb3a1923bf51fdb971315c28b0_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ad5f4d1b7f712416bb62785375ce15ef1a5cb3f1a77226899abc8aba32a11623_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c9808efcb221c10d78bdf663e3b5e3d5d281bf59702be049090fc1fa0511b078_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:13f0ec3ce663f6701501e82bbb508549e149588eedb0982729a59d98c88d0ba0_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:43d9679eb3ac8d5287863137f2d698d814a2fbc2fbd6a6aacba11240cd76d40c_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:d23a4d9f0967f53d15fefda63e972e035d23aebe819dd11a6cec9beceacd8997_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:e32fc2e1c50fb1110a835e29e6e360b4127ed84fca98c6276b0b171ccd6cb223_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:1168d897f16b276ba5a6e6170e31fbe1499a980666aed493b2fe27036471ba55_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:15300e7d45a8e2093ef6f33303174f7361de7d9b648f8c9f2cf06f8ba3c56c76_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:6ccd50b0049e4ba0f9d4ea8779b17c6acc95395490579fbaa3b9e9084ac7d314_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e762a9019e4b5afd27331ad519a5b63a2bba3c7eb522533e0932e97c2879a36e_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f4c5323da09593280fc61c2df7fced0f6dc9d3ca322d27069f51334c3d18dae_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:918c66e3ea09e481c38673314021ef1aa6b46afc9dcb115b9d19b6819c5db4a7_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:cc4f2ce5926da93eaf81b0935d3171d81a310ec97e3c08bbbf6599752446810d_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f2bcd5123e4fad7aa4ad54f2819a1beb75d844302aa162e0335c1a0191fe5346_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:27b7eef1c64e432dbe15e92cf745a951aebdc9b379d9c02dbfef6df296c39cd1_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:3cfcd5f9ab8ec42cefd8fab992ecb493a9d14126bdf53ba542ffa4b51fd1684c_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:641354f1d56627f49af3e32ad963616b69aac644ac33d664e7fe29de32fe43b3_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:fa5400aecca1a46c4b98d00c749ea56d6187ced20952f02e4dd1c12e2467117e_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:42d8388fafeb7c188b03389c92561da4068f91a8cc2343f33d967939342e4f64_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:a86e59cedc67e9fcee3412afa157572a2ab815a3d9e18da03ada502f7313cc80_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b60b4b992b89b82620e5ea618350a97434b272d1f023200dcbeae642612e3569_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ee9d72769b916b350307df495022e04add1fbcd67c1e62757fd316e7f1dd60ae_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:53618eb41967e64660e87e5ad6ce8f5d9803aed9bb48da8898aaefb4d0a4632d_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:65176a94e684c200beef8f25016982ab212bdcd10d31b54a831310e20c026f77_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:a4ca99dc99b864ef805f3e8d997f0567168c809433f16ec23540c0b8ead96216_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:cc31b6212f77e03383e615ee30fd97419806c3841f18d2f6c950d82cdd21e872_ppc64le"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-39321"
        },
        {
          "category": "external",
          "summary": "RHBZ#2296009",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2296009"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-39321",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-39321"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-39321",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-39321"
        },
        {
          "category": "external",
          "summary": "https://github.com/traefik/traefik/releases/tag/v2.11.6",
          "url": "https://github.com/traefik/traefik/releases/tag/v2.11.6"
        },
        {
          "category": "external",
          "summary": "https://github.com/traefik/traefik/releases/tag/v3.0.4",
          "url": "https://github.com/traefik/traefik/releases/tag/v3.0.4"
        },
        {
          "category": "external",
          "summary": "https://github.com/traefik/traefik/releases/tag/v3.1.0-rc3",
          "url": "https://github.com/traefik/traefik/releases/tag/v3.1.0-rc3"
        },
        {
          "category": "external",
          "summary": "https://github.com/traefik/traefik/security/advisories/GHSA-gxrv-wf35-62w9",
          "url": "https://github.com/traefik/traefik/security/advisories/GHSA-gxrv-wf35-62w9"
        }
      ],
      "release_date": "2024-07-04T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-09-15T16:27:40+00:00",
          "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:15a4a74016cdb94aece0bc651edd221b72a9202e5fd414d30ae969707cb5b4c9_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:5361443dee5415dc554d79e2fa23a6b336f1d8ea89fb20a4caa72f70574b939b_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:a152f1e75dd10ba692587a4e702d59cd1c5adcde8b97390f58742270edf85d33_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:f17428eced9d6bec1eaaa1510b68250824d3ace2f66af7f31fbf7327ca11540c_arm64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:15847"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/idea-rhel9@sha256:df24ebb239a2cc0d4543309f51a7268c7d524d428a536e0b3443c51089c3f87e_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:0dc291e3dc58d285d054a35b480d14c3912777e14fd643915b8ceabd178ad6bf_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:ac5b3e78470c747377dbc9ecb6e0680d724086c331955ed5471b74d01155ece8_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:cd1ee1d15cafe77bbf8e283cee2cde88dcdfb59c9545867a047cf4b42089aa85_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:d0b17cb5f9a530ca959058fe926b3f5c42539487e23587d51948f49d7a38cf5d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:2bfe5265856abdd8cb490bde852d4e992f1793684f003d1ef53776fe69d790d7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:32d9568317c55235f75c4d0e1c98de6d4af252cbdd116ed2355025cbaeac862f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:48b99d167a5c54a98e69bba441bb5b70db2ffe065d3f8f8d23ecfed7b813336e_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:8b2b33e91756bbd1c7ed6905e00176b9d55a4e13aee2f84862bc571a8a82f113_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:43cdf063e9a6aa5f84233c8bd850a711b5d5fae8a7795803609fec07d189ca05_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:7ad9073c0a768f170cf8d4311ea35ec1caccfdefdf6d1dccbc10ed01cdeafd16_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:934c224a59086c689be1839b6846a0984370a78a8adc8510fa692f5215bb6182_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:d2bfcb27baf36e569eca4f7c85f458a180d7938616413a4cf8e10cb329e6a150_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:78dabed4a5fc1eb3246778e6ee6e1a543829cf88d0b03f0ccccf101c41a7bdda_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:7c98501fee1297a24caa77d325f6bfd7f91192589f0aa22d47d9766e8219c749_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:905d45518e20ea10daa3a35ea2f2201a6f762a16f9b4829ce37b7396d493ac59_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:91e064bccc3f7320844763fc136cb4c650db40190e01edebe16135bcc00627ac_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:a48dd94d5616183843ba939146b7e4d985210cdd902038ff80ff6df3df3d74ca_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:2b18f2cf31e0914762cc6e99c9797c24a19db69ca08bc9983bc2aacc85ee7024_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:38c9b56aa9c2a5153e01ffc1edb399247ed1937b9382ac4f0fb2beae4c27f69a_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:59f85768c28401783b9475ce21088e3d8fbf6bcd64bb49e3a243c881ac6b546c_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f5b515ecaea7d542ac18ea5a056c99fe84ca2ac25fa3904bdc50a78ecf47541f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8cdf016c4d61bce4f244415ae192fe1647ef517ba1690f2009b5b8e1104c72a7_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:a69c6f8b091d11c69b6864edc6973c6f5f4515eb3a1923bf51fdb971315c28b0_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ad5f4d1b7f712416bb62785375ce15ef1a5cb3f1a77226899abc8aba32a11623_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c9808efcb221c10d78bdf663e3b5e3d5d281bf59702be049090fc1fa0511b078_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:13f0ec3ce663f6701501e82bbb508549e149588eedb0982729a59d98c88d0ba0_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:43d9679eb3ac8d5287863137f2d698d814a2fbc2fbd6a6aacba11240cd76d40c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:d23a4d9f0967f53d15fefda63e972e035d23aebe819dd11a6cec9beceacd8997_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:e32fc2e1c50fb1110a835e29e6e360b4127ed84fca98c6276b0b171ccd6cb223_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:1168d897f16b276ba5a6e6170e31fbe1499a980666aed493b2fe27036471ba55_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:15300e7d45a8e2093ef6f33303174f7361de7d9b648f8c9f2cf06f8ba3c56c76_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:6ccd50b0049e4ba0f9d4ea8779b17c6acc95395490579fbaa3b9e9084ac7d314_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e762a9019e4b5afd27331ad519a5b63a2bba3c7eb522533e0932e97c2879a36e_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f4c5323da09593280fc61c2df7fced0f6dc9d3ca322d27069f51334c3d18dae_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:918c66e3ea09e481c38673314021ef1aa6b46afc9dcb115b9d19b6819c5db4a7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:cc4f2ce5926da93eaf81b0935d3171d81a310ec97e3c08bbbf6599752446810d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f2bcd5123e4fad7aa4ad54f2819a1beb75d844302aa162e0335c1a0191fe5346_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:27b7eef1c64e432dbe15e92cf745a951aebdc9b379d9c02dbfef6df296c39cd1_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:3cfcd5f9ab8ec42cefd8fab992ecb493a9d14126bdf53ba542ffa4b51fd1684c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:641354f1d56627f49af3e32ad963616b69aac644ac33d664e7fe29de32fe43b3_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:fa5400aecca1a46c4b98d00c749ea56d6187ced20952f02e4dd1c12e2467117e_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:15a4a74016cdb94aece0bc651edd221b72a9202e5fd414d30ae969707cb5b4c9_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:5361443dee5415dc554d79e2fa23a6b336f1d8ea89fb20a4caa72f70574b939b_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:a152f1e75dd10ba692587a4e702d59cd1c5adcde8b97390f58742270edf85d33_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:f17428eced9d6bec1eaaa1510b68250824d3ace2f66af7f31fbf7327ca11540c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:42d8388fafeb7c188b03389c92561da4068f91a8cc2343f33d967939342e4f64_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:a86e59cedc67e9fcee3412afa157572a2ab815a3d9e18da03ada502f7313cc80_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b60b4b992b89b82620e5ea618350a97434b272d1f023200dcbeae642612e3569_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ee9d72769b916b350307df495022e04add1fbcd67c1e62757fd316e7f1dd60ae_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:53618eb41967e64660e87e5ad6ce8f5d9803aed9bb48da8898aaefb4d0a4632d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:65176a94e684c200beef8f25016982ab212bdcd10d31b54a831310e20c026f77_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:a4ca99dc99b864ef805f3e8d997f0567168c809433f16ec23540c0b8ead96216_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:cc31b6212f77e03383e615ee30fd97419806c3841f18d2f6c950d82cdd21e872_ppc64le"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/idea-rhel9@sha256:df24ebb239a2cc0d4543309f51a7268c7d524d428a536e0b3443c51089c3f87e_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:0dc291e3dc58d285d054a35b480d14c3912777e14fd643915b8ceabd178ad6bf_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:ac5b3e78470c747377dbc9ecb6e0680d724086c331955ed5471b74d01155ece8_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:cd1ee1d15cafe77bbf8e283cee2cde88dcdfb59c9545867a047cf4b42089aa85_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:d0b17cb5f9a530ca959058fe926b3f5c42539487e23587d51948f49d7a38cf5d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:2bfe5265856abdd8cb490bde852d4e992f1793684f003d1ef53776fe69d790d7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:32d9568317c55235f75c4d0e1c98de6d4af252cbdd116ed2355025cbaeac862f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:48b99d167a5c54a98e69bba441bb5b70db2ffe065d3f8f8d23ecfed7b813336e_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:8b2b33e91756bbd1c7ed6905e00176b9d55a4e13aee2f84862bc571a8a82f113_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:43cdf063e9a6aa5f84233c8bd850a711b5d5fae8a7795803609fec07d189ca05_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:7ad9073c0a768f170cf8d4311ea35ec1caccfdefdf6d1dccbc10ed01cdeafd16_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:934c224a59086c689be1839b6846a0984370a78a8adc8510fa692f5215bb6182_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:d2bfcb27baf36e569eca4f7c85f458a180d7938616413a4cf8e10cb329e6a150_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:78dabed4a5fc1eb3246778e6ee6e1a543829cf88d0b03f0ccccf101c41a7bdda_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:7c98501fee1297a24caa77d325f6bfd7f91192589f0aa22d47d9766e8219c749_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:905d45518e20ea10daa3a35ea2f2201a6f762a16f9b4829ce37b7396d493ac59_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:91e064bccc3f7320844763fc136cb4c650db40190e01edebe16135bcc00627ac_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:a48dd94d5616183843ba939146b7e4d985210cdd902038ff80ff6df3df3d74ca_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:2b18f2cf31e0914762cc6e99c9797c24a19db69ca08bc9983bc2aacc85ee7024_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:38c9b56aa9c2a5153e01ffc1edb399247ed1937b9382ac4f0fb2beae4c27f69a_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:59f85768c28401783b9475ce21088e3d8fbf6bcd64bb49e3a243c881ac6b546c_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f5b515ecaea7d542ac18ea5a056c99fe84ca2ac25fa3904bdc50a78ecf47541f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8cdf016c4d61bce4f244415ae192fe1647ef517ba1690f2009b5b8e1104c72a7_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:a69c6f8b091d11c69b6864edc6973c6f5f4515eb3a1923bf51fdb971315c28b0_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ad5f4d1b7f712416bb62785375ce15ef1a5cb3f1a77226899abc8aba32a11623_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c9808efcb221c10d78bdf663e3b5e3d5d281bf59702be049090fc1fa0511b078_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:13f0ec3ce663f6701501e82bbb508549e149588eedb0982729a59d98c88d0ba0_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:43d9679eb3ac8d5287863137f2d698d814a2fbc2fbd6a6aacba11240cd76d40c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:d23a4d9f0967f53d15fefda63e972e035d23aebe819dd11a6cec9beceacd8997_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:e32fc2e1c50fb1110a835e29e6e360b4127ed84fca98c6276b0b171ccd6cb223_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:1168d897f16b276ba5a6e6170e31fbe1499a980666aed493b2fe27036471ba55_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:15300e7d45a8e2093ef6f33303174f7361de7d9b648f8c9f2cf06f8ba3c56c76_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:6ccd50b0049e4ba0f9d4ea8779b17c6acc95395490579fbaa3b9e9084ac7d314_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e762a9019e4b5afd27331ad519a5b63a2bba3c7eb522533e0932e97c2879a36e_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f4c5323da09593280fc61c2df7fced0f6dc9d3ca322d27069f51334c3d18dae_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:918c66e3ea09e481c38673314021ef1aa6b46afc9dcb115b9d19b6819c5db4a7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:cc4f2ce5926da93eaf81b0935d3171d81a310ec97e3c08bbbf6599752446810d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f2bcd5123e4fad7aa4ad54f2819a1beb75d844302aa162e0335c1a0191fe5346_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:27b7eef1c64e432dbe15e92cf745a951aebdc9b379d9c02dbfef6df296c39cd1_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:3cfcd5f9ab8ec42cefd8fab992ecb493a9d14126bdf53ba542ffa4b51fd1684c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:641354f1d56627f49af3e32ad963616b69aac644ac33d664e7fe29de32fe43b3_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:fa5400aecca1a46c4b98d00c749ea56d6187ced20952f02e4dd1c12e2467117e_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:15a4a74016cdb94aece0bc651edd221b72a9202e5fd414d30ae969707cb5b4c9_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:5361443dee5415dc554d79e2fa23a6b336f1d8ea89fb20a4caa72f70574b939b_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:a152f1e75dd10ba692587a4e702d59cd1c5adcde8b97390f58742270edf85d33_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:f17428eced9d6bec1eaaa1510b68250824d3ace2f66af7f31fbf7327ca11540c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:42d8388fafeb7c188b03389c92561da4068f91a8cc2343f33d967939342e4f64_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:a86e59cedc67e9fcee3412afa157572a2ab815a3d9e18da03ada502f7313cc80_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b60b4b992b89b82620e5ea618350a97434b272d1f023200dcbeae642612e3569_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ee9d72769b916b350307df495022e04add1fbcd67c1e62757fd316e7f1dd60ae_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:53618eb41967e64660e87e5ad6ce8f5d9803aed9bb48da8898aaefb4d0a4632d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:65176a94e684c200beef8f25016982ab212bdcd10d31b54a831310e20c026f77_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:a4ca99dc99b864ef805f3e8d997f0567168c809433f16ec23540c0b8ead96216_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:cc31b6212f77e03383e615ee30fd97419806c3841f18d2f6c950d82cdd21e872_ppc64le"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "traefik: Bypassing IP allow-lists via HTTP/3 early data requests in QUIC 0-RTT handshakes"
    },
    {
      "cve": "CVE-2024-45338",
      "cwe": {
        "id": "CWE-770",
        "name": "Allocation of Resources Without Limits or Throttling"
      },
      "discovery_date": "2024-12-18T21:00:59.938173+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/idea-rhel9@sha256:df24ebb239a2cc0d4543309f51a7268c7d524d428a536e0b3443c51089c3f87e_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:0dc291e3dc58d285d054a35b480d14c3912777e14fd643915b8ceabd178ad6bf_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:ac5b3e78470c747377dbc9ecb6e0680d724086c331955ed5471b74d01155ece8_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:cd1ee1d15cafe77bbf8e283cee2cde88dcdfb59c9545867a047cf4b42089aa85_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:d0b17cb5f9a530ca959058fe926b3f5c42539487e23587d51948f49d7a38cf5d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:2bfe5265856abdd8cb490bde852d4e992f1793684f003d1ef53776fe69d790d7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:32d9568317c55235f75c4d0e1c98de6d4af252cbdd116ed2355025cbaeac862f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:48b99d167a5c54a98e69bba441bb5b70db2ffe065d3f8f8d23ecfed7b813336e_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:8b2b33e91756bbd1c7ed6905e00176b9d55a4e13aee2f84862bc571a8a82f113_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:43cdf063e9a6aa5f84233c8bd850a711b5d5fae8a7795803609fec07d189ca05_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:7ad9073c0a768f170cf8d4311ea35ec1caccfdefdf6d1dccbc10ed01cdeafd16_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:934c224a59086c689be1839b6846a0984370a78a8adc8510fa692f5215bb6182_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:d2bfcb27baf36e569eca4f7c85f458a180d7938616413a4cf8e10cb329e6a150_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:78dabed4a5fc1eb3246778e6ee6e1a543829cf88d0b03f0ccccf101c41a7bdda_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:7c98501fee1297a24caa77d325f6bfd7f91192589f0aa22d47d9766e8219c749_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:905d45518e20ea10daa3a35ea2f2201a6f762a16f9b4829ce37b7396d493ac59_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:91e064bccc3f7320844763fc136cb4c650db40190e01edebe16135bcc00627ac_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:a48dd94d5616183843ba939146b7e4d985210cdd902038ff80ff6df3df3d74ca_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:2b18f2cf31e0914762cc6e99c9797c24a19db69ca08bc9983bc2aacc85ee7024_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:38c9b56aa9c2a5153e01ffc1edb399247ed1937b9382ac4f0fb2beae4c27f69a_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:59f85768c28401783b9475ce21088e3d8fbf6bcd64bb49e3a243c881ac6b546c_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f5b515ecaea7d542ac18ea5a056c99fe84ca2ac25fa3904bdc50a78ecf47541f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8cdf016c4d61bce4f244415ae192fe1647ef517ba1690f2009b5b8e1104c72a7_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:a69c6f8b091d11c69b6864edc6973c6f5f4515eb3a1923bf51fdb971315c28b0_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ad5f4d1b7f712416bb62785375ce15ef1a5cb3f1a77226899abc8aba32a11623_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c9808efcb221c10d78bdf663e3b5e3d5d281bf59702be049090fc1fa0511b078_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:13f0ec3ce663f6701501e82bbb508549e149588eedb0982729a59d98c88d0ba0_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:43d9679eb3ac8d5287863137f2d698d814a2fbc2fbd6a6aacba11240cd76d40c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:d23a4d9f0967f53d15fefda63e972e035d23aebe819dd11a6cec9beceacd8997_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:e32fc2e1c50fb1110a835e29e6e360b4127ed84fca98c6276b0b171ccd6cb223_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:1168d897f16b276ba5a6e6170e31fbe1499a980666aed493b2fe27036471ba55_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:15300e7d45a8e2093ef6f33303174f7361de7d9b648f8c9f2cf06f8ba3c56c76_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:6ccd50b0049e4ba0f9d4ea8779b17c6acc95395490579fbaa3b9e9084ac7d314_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e762a9019e4b5afd27331ad519a5b63a2bba3c7eb522533e0932e97c2879a36e_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f4c5323da09593280fc61c2df7fced0f6dc9d3ca322d27069f51334c3d18dae_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:918c66e3ea09e481c38673314021ef1aa6b46afc9dcb115b9d19b6819c5db4a7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:cc4f2ce5926da93eaf81b0935d3171d81a310ec97e3c08bbbf6599752446810d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f2bcd5123e4fad7aa4ad54f2819a1beb75d844302aa162e0335c1a0191fe5346_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:27b7eef1c64e432dbe15e92cf745a951aebdc9b379d9c02dbfef6df296c39cd1_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:3cfcd5f9ab8ec42cefd8fab992ecb493a9d14126bdf53ba542ffa4b51fd1684c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:641354f1d56627f49af3e32ad963616b69aac644ac33d664e7fe29de32fe43b3_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:fa5400aecca1a46c4b98d00c749ea56d6187ced20952f02e4dd1c12e2467117e_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:15a4a74016cdb94aece0bc651edd221b72a9202e5fd414d30ae969707cb5b4c9_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:5361443dee5415dc554d79e2fa23a6b336f1d8ea89fb20a4caa72f70574b939b_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:a152f1e75dd10ba692587a4e702d59cd1c5adcde8b97390f58742270edf85d33_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:f17428eced9d6bec1eaaa1510b68250824d3ace2f66af7f31fbf7327ca11540c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:42d8388fafeb7c188b03389c92561da4068f91a8cc2343f33d967939342e4f64_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:a86e59cedc67e9fcee3412afa157572a2ab815a3d9e18da03ada502f7313cc80_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b60b4b992b89b82620e5ea618350a97434b272d1f023200dcbeae642612e3569_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ee9d72769b916b350307df495022e04add1fbcd67c1e62757fd316e7f1dd60ae_ppc64le"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2333122"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in golang.org/x/net/html. This flaw allows an attacker to craft input to the parse functions that would be processed non-linearly with respect to its length, resulting in extremely slow parsing. This issue can cause a denial of service.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "golang.org/x/net/html: Non-linear parsing of case-insensitive content in golang.org/x/net/html",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability is rated as an Important severity because an attacker can craft malicious input that causes the parsing functions to process data non-linearly, resulting in significant delays which leads to a denial of service by exhausting system resources.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:53618eb41967e64660e87e5ad6ce8f5d9803aed9bb48da8898aaefb4d0a4632d_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:65176a94e684c200beef8f25016982ab212bdcd10d31b54a831310e20c026f77_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:a4ca99dc99b864ef805f3e8d997f0567168c809433f16ec23540c0b8ead96216_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:cc31b6212f77e03383e615ee30fd97419806c3841f18d2f6c950d82cdd21e872_ppc64le"
        ],
        "known_not_affected": [
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/idea-rhel9@sha256:df24ebb239a2cc0d4543309f51a7268c7d524d428a536e0b3443c51089c3f87e_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:0dc291e3dc58d285d054a35b480d14c3912777e14fd643915b8ceabd178ad6bf_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:ac5b3e78470c747377dbc9ecb6e0680d724086c331955ed5471b74d01155ece8_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:cd1ee1d15cafe77bbf8e283cee2cde88dcdfb59c9545867a047cf4b42089aa85_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:d0b17cb5f9a530ca959058fe926b3f5c42539487e23587d51948f49d7a38cf5d_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:2bfe5265856abdd8cb490bde852d4e992f1793684f003d1ef53776fe69d790d7_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:32d9568317c55235f75c4d0e1c98de6d4af252cbdd116ed2355025cbaeac862f_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:48b99d167a5c54a98e69bba441bb5b70db2ffe065d3f8f8d23ecfed7b813336e_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:8b2b33e91756bbd1c7ed6905e00176b9d55a4e13aee2f84862bc571a8a82f113_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:43cdf063e9a6aa5f84233c8bd850a711b5d5fae8a7795803609fec07d189ca05_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:7ad9073c0a768f170cf8d4311ea35ec1caccfdefdf6d1dccbc10ed01cdeafd16_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:934c224a59086c689be1839b6846a0984370a78a8adc8510fa692f5215bb6182_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:d2bfcb27baf36e569eca4f7c85f458a180d7938616413a4cf8e10cb329e6a150_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:78dabed4a5fc1eb3246778e6ee6e1a543829cf88d0b03f0ccccf101c41a7bdda_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:7c98501fee1297a24caa77d325f6bfd7f91192589f0aa22d47d9766e8219c749_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:905d45518e20ea10daa3a35ea2f2201a6f762a16f9b4829ce37b7396d493ac59_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:91e064bccc3f7320844763fc136cb4c650db40190e01edebe16135bcc00627ac_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:a48dd94d5616183843ba939146b7e4d985210cdd902038ff80ff6df3df3d74ca_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:2b18f2cf31e0914762cc6e99c9797c24a19db69ca08bc9983bc2aacc85ee7024_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:38c9b56aa9c2a5153e01ffc1edb399247ed1937b9382ac4f0fb2beae4c27f69a_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:59f85768c28401783b9475ce21088e3d8fbf6bcd64bb49e3a243c881ac6b546c_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f5b515ecaea7d542ac18ea5a056c99fe84ca2ac25fa3904bdc50a78ecf47541f_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8cdf016c4d61bce4f244415ae192fe1647ef517ba1690f2009b5b8e1104c72a7_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:a69c6f8b091d11c69b6864edc6973c6f5f4515eb3a1923bf51fdb971315c28b0_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ad5f4d1b7f712416bb62785375ce15ef1a5cb3f1a77226899abc8aba32a11623_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c9808efcb221c10d78bdf663e3b5e3d5d281bf59702be049090fc1fa0511b078_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:13f0ec3ce663f6701501e82bbb508549e149588eedb0982729a59d98c88d0ba0_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:43d9679eb3ac8d5287863137f2d698d814a2fbc2fbd6a6aacba11240cd76d40c_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:d23a4d9f0967f53d15fefda63e972e035d23aebe819dd11a6cec9beceacd8997_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:e32fc2e1c50fb1110a835e29e6e360b4127ed84fca98c6276b0b171ccd6cb223_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:1168d897f16b276ba5a6e6170e31fbe1499a980666aed493b2fe27036471ba55_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:15300e7d45a8e2093ef6f33303174f7361de7d9b648f8c9f2cf06f8ba3c56c76_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:6ccd50b0049e4ba0f9d4ea8779b17c6acc95395490579fbaa3b9e9084ac7d314_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e762a9019e4b5afd27331ad519a5b63a2bba3c7eb522533e0932e97c2879a36e_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f4c5323da09593280fc61c2df7fced0f6dc9d3ca322d27069f51334c3d18dae_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:918c66e3ea09e481c38673314021ef1aa6b46afc9dcb115b9d19b6819c5db4a7_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:cc4f2ce5926da93eaf81b0935d3171d81a310ec97e3c08bbbf6599752446810d_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f2bcd5123e4fad7aa4ad54f2819a1beb75d844302aa162e0335c1a0191fe5346_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:27b7eef1c64e432dbe15e92cf745a951aebdc9b379d9c02dbfef6df296c39cd1_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:3cfcd5f9ab8ec42cefd8fab992ecb493a9d14126bdf53ba542ffa4b51fd1684c_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:641354f1d56627f49af3e32ad963616b69aac644ac33d664e7fe29de32fe43b3_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:fa5400aecca1a46c4b98d00c749ea56d6187ced20952f02e4dd1c12e2467117e_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:15a4a74016cdb94aece0bc651edd221b72a9202e5fd414d30ae969707cb5b4c9_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:5361443dee5415dc554d79e2fa23a6b336f1d8ea89fb20a4caa72f70574b939b_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:a152f1e75dd10ba692587a4e702d59cd1c5adcde8b97390f58742270edf85d33_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:f17428eced9d6bec1eaaa1510b68250824d3ace2f66af7f31fbf7327ca11540c_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:42d8388fafeb7c188b03389c92561da4068f91a8cc2343f33d967939342e4f64_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:a86e59cedc67e9fcee3412afa157572a2ab815a3d9e18da03ada502f7313cc80_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b60b4b992b89b82620e5ea618350a97434b272d1f023200dcbeae642612e3569_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ee9d72769b916b350307df495022e04add1fbcd67c1e62757fd316e7f1dd60ae_ppc64le"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-45338"
        },
        {
          "category": "external",
          "summary": "RHBZ#2333122",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2333122"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-45338",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-45338"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45338",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45338"
        },
        {
          "category": "external",
          "summary": "https://go.dev/cl/637536",
          "url": "https://go.dev/cl/637536"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/70906",
          "url": "https://go.dev/issue/70906"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/wSCRmFnNmPA/m/Lvcd0mRMAwAJ",
          "url": "https://groups.google.com/g/golang-announce/c/wSCRmFnNmPA/m/Lvcd0mRMAwAJ"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2024-3333",
          "url": "https://pkg.go.dev/vuln/GO-2024-3333"
        }
      ],
      "release_date": "2024-12-18T20:38:22.660000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-09-15T16:27:40+00:00",
          "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:53618eb41967e64660e87e5ad6ce8f5d9803aed9bb48da8898aaefb4d0a4632d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:65176a94e684c200beef8f25016982ab212bdcd10d31b54a831310e20c026f77_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:a4ca99dc99b864ef805f3e8d997f0567168c809433f16ec23540c0b8ead96216_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:cc31b6212f77e03383e615ee30fd97419806c3841f18d2f6c950d82cdd21e872_ppc64le"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:15847"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/idea-rhel9@sha256:df24ebb239a2cc0d4543309f51a7268c7d524d428a536e0b3443c51089c3f87e_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:0dc291e3dc58d285d054a35b480d14c3912777e14fd643915b8ceabd178ad6bf_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:ac5b3e78470c747377dbc9ecb6e0680d724086c331955ed5471b74d01155ece8_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:cd1ee1d15cafe77bbf8e283cee2cde88dcdfb59c9545867a047cf4b42089aa85_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:d0b17cb5f9a530ca959058fe926b3f5c42539487e23587d51948f49d7a38cf5d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:2bfe5265856abdd8cb490bde852d4e992f1793684f003d1ef53776fe69d790d7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:32d9568317c55235f75c4d0e1c98de6d4af252cbdd116ed2355025cbaeac862f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:48b99d167a5c54a98e69bba441bb5b70db2ffe065d3f8f8d23ecfed7b813336e_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:8b2b33e91756bbd1c7ed6905e00176b9d55a4e13aee2f84862bc571a8a82f113_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:43cdf063e9a6aa5f84233c8bd850a711b5d5fae8a7795803609fec07d189ca05_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:7ad9073c0a768f170cf8d4311ea35ec1caccfdefdf6d1dccbc10ed01cdeafd16_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:934c224a59086c689be1839b6846a0984370a78a8adc8510fa692f5215bb6182_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:d2bfcb27baf36e569eca4f7c85f458a180d7938616413a4cf8e10cb329e6a150_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:78dabed4a5fc1eb3246778e6ee6e1a543829cf88d0b03f0ccccf101c41a7bdda_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:7c98501fee1297a24caa77d325f6bfd7f91192589f0aa22d47d9766e8219c749_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:905d45518e20ea10daa3a35ea2f2201a6f762a16f9b4829ce37b7396d493ac59_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:91e064bccc3f7320844763fc136cb4c650db40190e01edebe16135bcc00627ac_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:a48dd94d5616183843ba939146b7e4d985210cdd902038ff80ff6df3df3d74ca_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:2b18f2cf31e0914762cc6e99c9797c24a19db69ca08bc9983bc2aacc85ee7024_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:38c9b56aa9c2a5153e01ffc1edb399247ed1937b9382ac4f0fb2beae4c27f69a_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:59f85768c28401783b9475ce21088e3d8fbf6bcd64bb49e3a243c881ac6b546c_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f5b515ecaea7d542ac18ea5a056c99fe84ca2ac25fa3904bdc50a78ecf47541f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8cdf016c4d61bce4f244415ae192fe1647ef517ba1690f2009b5b8e1104c72a7_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:a69c6f8b091d11c69b6864edc6973c6f5f4515eb3a1923bf51fdb971315c28b0_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ad5f4d1b7f712416bb62785375ce15ef1a5cb3f1a77226899abc8aba32a11623_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c9808efcb221c10d78bdf663e3b5e3d5d281bf59702be049090fc1fa0511b078_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:13f0ec3ce663f6701501e82bbb508549e149588eedb0982729a59d98c88d0ba0_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:43d9679eb3ac8d5287863137f2d698d814a2fbc2fbd6a6aacba11240cd76d40c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:d23a4d9f0967f53d15fefda63e972e035d23aebe819dd11a6cec9beceacd8997_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:e32fc2e1c50fb1110a835e29e6e360b4127ed84fca98c6276b0b171ccd6cb223_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:1168d897f16b276ba5a6e6170e31fbe1499a980666aed493b2fe27036471ba55_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:15300e7d45a8e2093ef6f33303174f7361de7d9b648f8c9f2cf06f8ba3c56c76_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:6ccd50b0049e4ba0f9d4ea8779b17c6acc95395490579fbaa3b9e9084ac7d314_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e762a9019e4b5afd27331ad519a5b63a2bba3c7eb522533e0932e97c2879a36e_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f4c5323da09593280fc61c2df7fced0f6dc9d3ca322d27069f51334c3d18dae_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:918c66e3ea09e481c38673314021ef1aa6b46afc9dcb115b9d19b6819c5db4a7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:cc4f2ce5926da93eaf81b0935d3171d81a310ec97e3c08bbbf6599752446810d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f2bcd5123e4fad7aa4ad54f2819a1beb75d844302aa162e0335c1a0191fe5346_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:27b7eef1c64e432dbe15e92cf745a951aebdc9b379d9c02dbfef6df296c39cd1_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:3cfcd5f9ab8ec42cefd8fab992ecb493a9d14126bdf53ba542ffa4b51fd1684c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:641354f1d56627f49af3e32ad963616b69aac644ac33d664e7fe29de32fe43b3_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:fa5400aecca1a46c4b98d00c749ea56d6187ced20952f02e4dd1c12e2467117e_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:15a4a74016cdb94aece0bc651edd221b72a9202e5fd414d30ae969707cb5b4c9_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:5361443dee5415dc554d79e2fa23a6b336f1d8ea89fb20a4caa72f70574b939b_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:a152f1e75dd10ba692587a4e702d59cd1c5adcde8b97390f58742270edf85d33_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:f17428eced9d6bec1eaaa1510b68250824d3ace2f66af7f31fbf7327ca11540c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:42d8388fafeb7c188b03389c92561da4068f91a8cc2343f33d967939342e4f64_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:a86e59cedc67e9fcee3412afa157572a2ab815a3d9e18da03ada502f7313cc80_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b60b4b992b89b82620e5ea618350a97434b272d1f023200dcbeae642612e3569_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ee9d72769b916b350307df495022e04add1fbcd67c1e62757fd316e7f1dd60ae_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:53618eb41967e64660e87e5ad6ce8f5d9803aed9bb48da8898aaefb4d0a4632d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:65176a94e684c200beef8f25016982ab212bdcd10d31b54a831310e20c026f77_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:a4ca99dc99b864ef805f3e8d997f0567168c809433f16ec23540c0b8ead96216_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:cc31b6212f77e03383e615ee30fd97419806c3841f18d2f6c950d82cdd21e872_ppc64le"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "golang.org/x/net/html: Non-linear parsing of case-insensitive content in golang.org/x/net/html"
    },
    {
      "cve": "CVE-2025-9287",
      "cwe": {
        "id": "CWE-20",
        "name": "Improper Input Validation"
      },
      "discovery_date": "2025-08-20T22:00:53.821394+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/idea-rhel9@sha256:df24ebb239a2cc0d4543309f51a7268c7d524d428a536e0b3443c51089c3f87e_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:0dc291e3dc58d285d054a35b480d14c3912777e14fd643915b8ceabd178ad6bf_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:ac5b3e78470c747377dbc9ecb6e0680d724086c331955ed5471b74d01155ece8_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:cd1ee1d15cafe77bbf8e283cee2cde88dcdfb59c9545867a047cf4b42089aa85_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:d0b17cb5f9a530ca959058fe926b3f5c42539487e23587d51948f49d7a38cf5d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:43cdf063e9a6aa5f84233c8bd850a711b5d5fae8a7795803609fec07d189ca05_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:7ad9073c0a768f170cf8d4311ea35ec1caccfdefdf6d1dccbc10ed01cdeafd16_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:934c224a59086c689be1839b6846a0984370a78a8adc8510fa692f5215bb6182_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:d2bfcb27baf36e569eca4f7c85f458a180d7938616413a4cf8e10cb329e6a150_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:a48dd94d5616183843ba939146b7e4d985210cdd902038ff80ff6df3df3d74ca_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:2b18f2cf31e0914762cc6e99c9797c24a19db69ca08bc9983bc2aacc85ee7024_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:38c9b56aa9c2a5153e01ffc1edb399247ed1937b9382ac4f0fb2beae4c27f69a_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:59f85768c28401783b9475ce21088e3d8fbf6bcd64bb49e3a243c881ac6b546c_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f5b515ecaea7d542ac18ea5a056c99fe84ca2ac25fa3904bdc50a78ecf47541f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8cdf016c4d61bce4f244415ae192fe1647ef517ba1690f2009b5b8e1104c72a7_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:a69c6f8b091d11c69b6864edc6973c6f5f4515eb3a1923bf51fdb971315c28b0_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ad5f4d1b7f712416bb62785375ce15ef1a5cb3f1a77226899abc8aba32a11623_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c9808efcb221c10d78bdf663e3b5e3d5d281bf59702be049090fc1fa0511b078_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:1168d897f16b276ba5a6e6170e31fbe1499a980666aed493b2fe27036471ba55_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:15300e7d45a8e2093ef6f33303174f7361de7d9b648f8c9f2cf06f8ba3c56c76_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:6ccd50b0049e4ba0f9d4ea8779b17c6acc95395490579fbaa3b9e9084ac7d314_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e762a9019e4b5afd27331ad519a5b63a2bba3c7eb522533e0932e97c2879a36e_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f4c5323da09593280fc61c2df7fced0f6dc9d3ca322d27069f51334c3d18dae_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:918c66e3ea09e481c38673314021ef1aa6b46afc9dcb115b9d19b6819c5db4a7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:cc4f2ce5926da93eaf81b0935d3171d81a310ec97e3c08bbbf6599752446810d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f2bcd5123e4fad7aa4ad54f2819a1beb75d844302aa162e0335c1a0191fe5346_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:27b7eef1c64e432dbe15e92cf745a951aebdc9b379d9c02dbfef6df296c39cd1_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:3cfcd5f9ab8ec42cefd8fab992ecb493a9d14126bdf53ba542ffa4b51fd1684c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:641354f1d56627f49af3e32ad963616b69aac644ac33d664e7fe29de32fe43b3_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:fa5400aecca1a46c4b98d00c749ea56d6187ced20952f02e4dd1c12e2467117e_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:15a4a74016cdb94aece0bc651edd221b72a9202e5fd414d30ae969707cb5b4c9_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:5361443dee5415dc554d79e2fa23a6b336f1d8ea89fb20a4caa72f70574b939b_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:a152f1e75dd10ba692587a4e702d59cd1c5adcde8b97390f58742270edf85d33_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:f17428eced9d6bec1eaaa1510b68250824d3ace2f66af7f31fbf7327ca11540c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:42d8388fafeb7c188b03389c92561da4068f91a8cc2343f33d967939342e4f64_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:a86e59cedc67e9fcee3412afa157572a2ab815a3d9e18da03ada502f7313cc80_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b60b4b992b89b82620e5ea618350a97434b272d1f023200dcbeae642612e3569_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ee9d72769b916b350307df495022e04add1fbcd67c1e62757fd316e7f1dd60ae_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:53618eb41967e64660e87e5ad6ce8f5d9803aed9bb48da8898aaefb4d0a4632d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:65176a94e684c200beef8f25016982ab212bdcd10d31b54a831310e20c026f77_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:a4ca99dc99b864ef805f3e8d997f0567168c809433f16ec23540c0b8ead96216_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:cc31b6212f77e03383e615ee30fd97419806c3841f18d2f6c950d82cdd21e872_ppc64le"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2389932"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "An improper input validation vulnerability was found in the cipher-base npm package. Missing input type checks in the polyfill of the Node.js `createHash` function result in invalid\u00a0value calculations,\u00a0hanging and\u00a0rewinding the\u00a0hash state, including\u00a0turning a tagged hash\u00a0into an untagged\u00a0hash, for malicious JSON-stringifyable\u00a0inputs.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "cipher-base: Cipher-base hash manipulation",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:2bfe5265856abdd8cb490bde852d4e992f1793684f003d1ef53776fe69d790d7_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:32d9568317c55235f75c4d0e1c98de6d4af252cbdd116ed2355025cbaeac862f_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:48b99d167a5c54a98e69bba441bb5b70db2ffe065d3f8f8d23ecfed7b813336e_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:8b2b33e91756bbd1c7ed6905e00176b9d55a4e13aee2f84862bc571a8a82f113_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:78dabed4a5fc1eb3246778e6ee6e1a543829cf88d0b03f0ccccf101c41a7bdda_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:7c98501fee1297a24caa77d325f6bfd7f91192589f0aa22d47d9766e8219c749_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:905d45518e20ea10daa3a35ea2f2201a6f762a16f9b4829ce37b7396d493ac59_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:91e064bccc3f7320844763fc136cb4c650db40190e01edebe16135bcc00627ac_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:13f0ec3ce663f6701501e82bbb508549e149588eedb0982729a59d98c88d0ba0_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:43d9679eb3ac8d5287863137f2d698d814a2fbc2fbd6a6aacba11240cd76d40c_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:d23a4d9f0967f53d15fefda63e972e035d23aebe819dd11a6cec9beceacd8997_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:e32fc2e1c50fb1110a835e29e6e360b4127ed84fca98c6276b0b171ccd6cb223_s390x"
        ],
        "known_not_affected": [
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/idea-rhel9@sha256:df24ebb239a2cc0d4543309f51a7268c7d524d428a536e0b3443c51089c3f87e_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:0dc291e3dc58d285d054a35b480d14c3912777e14fd643915b8ceabd178ad6bf_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:ac5b3e78470c747377dbc9ecb6e0680d724086c331955ed5471b74d01155ece8_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:cd1ee1d15cafe77bbf8e283cee2cde88dcdfb59c9545867a047cf4b42089aa85_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:d0b17cb5f9a530ca959058fe926b3f5c42539487e23587d51948f49d7a38cf5d_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:43cdf063e9a6aa5f84233c8bd850a711b5d5fae8a7795803609fec07d189ca05_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:7ad9073c0a768f170cf8d4311ea35ec1caccfdefdf6d1dccbc10ed01cdeafd16_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:934c224a59086c689be1839b6846a0984370a78a8adc8510fa692f5215bb6182_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:d2bfcb27baf36e569eca4f7c85f458a180d7938616413a4cf8e10cb329e6a150_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:a48dd94d5616183843ba939146b7e4d985210cdd902038ff80ff6df3df3d74ca_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:2b18f2cf31e0914762cc6e99c9797c24a19db69ca08bc9983bc2aacc85ee7024_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:38c9b56aa9c2a5153e01ffc1edb399247ed1937b9382ac4f0fb2beae4c27f69a_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:59f85768c28401783b9475ce21088e3d8fbf6bcd64bb49e3a243c881ac6b546c_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f5b515ecaea7d542ac18ea5a056c99fe84ca2ac25fa3904bdc50a78ecf47541f_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8cdf016c4d61bce4f244415ae192fe1647ef517ba1690f2009b5b8e1104c72a7_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:a69c6f8b091d11c69b6864edc6973c6f5f4515eb3a1923bf51fdb971315c28b0_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ad5f4d1b7f712416bb62785375ce15ef1a5cb3f1a77226899abc8aba32a11623_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c9808efcb221c10d78bdf663e3b5e3d5d281bf59702be049090fc1fa0511b078_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:1168d897f16b276ba5a6e6170e31fbe1499a980666aed493b2fe27036471ba55_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:15300e7d45a8e2093ef6f33303174f7361de7d9b648f8c9f2cf06f8ba3c56c76_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:6ccd50b0049e4ba0f9d4ea8779b17c6acc95395490579fbaa3b9e9084ac7d314_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e762a9019e4b5afd27331ad519a5b63a2bba3c7eb522533e0932e97c2879a36e_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f4c5323da09593280fc61c2df7fced0f6dc9d3ca322d27069f51334c3d18dae_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:918c66e3ea09e481c38673314021ef1aa6b46afc9dcb115b9d19b6819c5db4a7_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:cc4f2ce5926da93eaf81b0935d3171d81a310ec97e3c08bbbf6599752446810d_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f2bcd5123e4fad7aa4ad54f2819a1beb75d844302aa162e0335c1a0191fe5346_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:27b7eef1c64e432dbe15e92cf745a951aebdc9b379d9c02dbfef6df296c39cd1_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:3cfcd5f9ab8ec42cefd8fab992ecb493a9d14126bdf53ba542ffa4b51fd1684c_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:641354f1d56627f49af3e32ad963616b69aac644ac33d664e7fe29de32fe43b3_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:fa5400aecca1a46c4b98d00c749ea56d6187ced20952f02e4dd1c12e2467117e_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:15a4a74016cdb94aece0bc651edd221b72a9202e5fd414d30ae969707cb5b4c9_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:5361443dee5415dc554d79e2fa23a6b336f1d8ea89fb20a4caa72f70574b939b_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:a152f1e75dd10ba692587a4e702d59cd1c5adcde8b97390f58742270edf85d33_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:f17428eced9d6bec1eaaa1510b68250824d3ace2f66af7f31fbf7327ca11540c_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:42d8388fafeb7c188b03389c92561da4068f91a8cc2343f33d967939342e4f64_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:a86e59cedc67e9fcee3412afa157572a2ab815a3d9e18da03ada502f7313cc80_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b60b4b992b89b82620e5ea618350a97434b272d1f023200dcbeae642612e3569_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ee9d72769b916b350307df495022e04add1fbcd67c1e62757fd316e7f1dd60ae_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:53618eb41967e64660e87e5ad6ce8f5d9803aed9bb48da8898aaefb4d0a4632d_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:65176a94e684c200beef8f25016982ab212bdcd10d31b54a831310e20c026f77_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:a4ca99dc99b864ef805f3e8d997f0567168c809433f16ec23540c0b8ead96216_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:cc31b6212f77e03383e615ee30fd97419806c3841f18d2f6c950d82cdd21e872_ppc64le"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-9287"
        },
        {
          "category": "external",
          "summary": "RHBZ#2389932",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2389932"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-9287",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-9287"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-9287",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-9287"
        },
        {
          "category": "external",
          "summary": "https://github.com/browserify/cipher-base/pull/23",
          "url": "https://github.com/browserify/cipher-base/pull/23"
        },
        {
          "category": "external",
          "summary": "https://github.com/browserify/cipher-base/security/advisories/GHSA-cpq7-6gpm-g9rc",
          "url": "https://github.com/browserify/cipher-base/security/advisories/GHSA-cpq7-6gpm-g9rc"
        }
      ],
      "release_date": "2025-08-20T21:43:56.548000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-09-15T16:27:40+00:00",
          "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:2bfe5265856abdd8cb490bde852d4e992f1793684f003d1ef53776fe69d790d7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:32d9568317c55235f75c4d0e1c98de6d4af252cbdd116ed2355025cbaeac862f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:48b99d167a5c54a98e69bba441bb5b70db2ffe065d3f8f8d23ecfed7b813336e_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:8b2b33e91756bbd1c7ed6905e00176b9d55a4e13aee2f84862bc571a8a82f113_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:78dabed4a5fc1eb3246778e6ee6e1a543829cf88d0b03f0ccccf101c41a7bdda_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:7c98501fee1297a24caa77d325f6bfd7f91192589f0aa22d47d9766e8219c749_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:905d45518e20ea10daa3a35ea2f2201a6f762a16f9b4829ce37b7396d493ac59_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:91e064bccc3f7320844763fc136cb4c650db40190e01edebe16135bcc00627ac_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:13f0ec3ce663f6701501e82bbb508549e149588eedb0982729a59d98c88d0ba0_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:43d9679eb3ac8d5287863137f2d698d814a2fbc2fbd6a6aacba11240cd76d40c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:d23a4d9f0967f53d15fefda63e972e035d23aebe819dd11a6cec9beceacd8997_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:e32fc2e1c50fb1110a835e29e6e360b4127ed84fca98c6276b0b171ccd6cb223_s390x"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:15847"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/idea-rhel9@sha256:df24ebb239a2cc0d4543309f51a7268c7d524d428a536e0b3443c51089c3f87e_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:0dc291e3dc58d285d054a35b480d14c3912777e14fd643915b8ceabd178ad6bf_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:ac5b3e78470c747377dbc9ecb6e0680d724086c331955ed5471b74d01155ece8_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:cd1ee1d15cafe77bbf8e283cee2cde88dcdfb59c9545867a047cf4b42089aa85_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:d0b17cb5f9a530ca959058fe926b3f5c42539487e23587d51948f49d7a38cf5d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:2bfe5265856abdd8cb490bde852d4e992f1793684f003d1ef53776fe69d790d7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:32d9568317c55235f75c4d0e1c98de6d4af252cbdd116ed2355025cbaeac862f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:48b99d167a5c54a98e69bba441bb5b70db2ffe065d3f8f8d23ecfed7b813336e_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:8b2b33e91756bbd1c7ed6905e00176b9d55a4e13aee2f84862bc571a8a82f113_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:43cdf063e9a6aa5f84233c8bd850a711b5d5fae8a7795803609fec07d189ca05_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:7ad9073c0a768f170cf8d4311ea35ec1caccfdefdf6d1dccbc10ed01cdeafd16_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:934c224a59086c689be1839b6846a0984370a78a8adc8510fa692f5215bb6182_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:d2bfcb27baf36e569eca4f7c85f458a180d7938616413a4cf8e10cb329e6a150_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:78dabed4a5fc1eb3246778e6ee6e1a543829cf88d0b03f0ccccf101c41a7bdda_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:7c98501fee1297a24caa77d325f6bfd7f91192589f0aa22d47d9766e8219c749_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:905d45518e20ea10daa3a35ea2f2201a6f762a16f9b4829ce37b7396d493ac59_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:91e064bccc3f7320844763fc136cb4c650db40190e01edebe16135bcc00627ac_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:a48dd94d5616183843ba939146b7e4d985210cdd902038ff80ff6df3df3d74ca_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:2b18f2cf31e0914762cc6e99c9797c24a19db69ca08bc9983bc2aacc85ee7024_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:38c9b56aa9c2a5153e01ffc1edb399247ed1937b9382ac4f0fb2beae4c27f69a_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:59f85768c28401783b9475ce21088e3d8fbf6bcd64bb49e3a243c881ac6b546c_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f5b515ecaea7d542ac18ea5a056c99fe84ca2ac25fa3904bdc50a78ecf47541f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8cdf016c4d61bce4f244415ae192fe1647ef517ba1690f2009b5b8e1104c72a7_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:a69c6f8b091d11c69b6864edc6973c6f5f4515eb3a1923bf51fdb971315c28b0_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ad5f4d1b7f712416bb62785375ce15ef1a5cb3f1a77226899abc8aba32a11623_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c9808efcb221c10d78bdf663e3b5e3d5d281bf59702be049090fc1fa0511b078_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:13f0ec3ce663f6701501e82bbb508549e149588eedb0982729a59d98c88d0ba0_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:43d9679eb3ac8d5287863137f2d698d814a2fbc2fbd6a6aacba11240cd76d40c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:d23a4d9f0967f53d15fefda63e972e035d23aebe819dd11a6cec9beceacd8997_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:e32fc2e1c50fb1110a835e29e6e360b4127ed84fca98c6276b0b171ccd6cb223_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:1168d897f16b276ba5a6e6170e31fbe1499a980666aed493b2fe27036471ba55_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:15300e7d45a8e2093ef6f33303174f7361de7d9b648f8c9f2cf06f8ba3c56c76_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:6ccd50b0049e4ba0f9d4ea8779b17c6acc95395490579fbaa3b9e9084ac7d314_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e762a9019e4b5afd27331ad519a5b63a2bba3c7eb522533e0932e97c2879a36e_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f4c5323da09593280fc61c2df7fced0f6dc9d3ca322d27069f51334c3d18dae_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:918c66e3ea09e481c38673314021ef1aa6b46afc9dcb115b9d19b6819c5db4a7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:cc4f2ce5926da93eaf81b0935d3171d81a310ec97e3c08bbbf6599752446810d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f2bcd5123e4fad7aa4ad54f2819a1beb75d844302aa162e0335c1a0191fe5346_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:27b7eef1c64e432dbe15e92cf745a951aebdc9b379d9c02dbfef6df296c39cd1_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:3cfcd5f9ab8ec42cefd8fab992ecb493a9d14126bdf53ba542ffa4b51fd1684c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:641354f1d56627f49af3e32ad963616b69aac644ac33d664e7fe29de32fe43b3_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:fa5400aecca1a46c4b98d00c749ea56d6187ced20952f02e4dd1c12e2467117e_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:15a4a74016cdb94aece0bc651edd221b72a9202e5fd414d30ae969707cb5b4c9_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:5361443dee5415dc554d79e2fa23a6b336f1d8ea89fb20a4caa72f70574b939b_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:a152f1e75dd10ba692587a4e702d59cd1c5adcde8b97390f58742270edf85d33_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:f17428eced9d6bec1eaaa1510b68250824d3ace2f66af7f31fbf7327ca11540c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:42d8388fafeb7c188b03389c92561da4068f91a8cc2343f33d967939342e4f64_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:a86e59cedc67e9fcee3412afa157572a2ab815a3d9e18da03ada502f7313cc80_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b60b4b992b89b82620e5ea618350a97434b272d1f023200dcbeae642612e3569_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ee9d72769b916b350307df495022e04add1fbcd67c1e62757fd316e7f1dd60ae_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:53618eb41967e64660e87e5ad6ce8f5d9803aed9bb48da8898aaefb4d0a4632d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:65176a94e684c200beef8f25016982ab212bdcd10d31b54a831310e20c026f77_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:a4ca99dc99b864ef805f3e8d997f0567168c809433f16ec23540c0b8ead96216_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:cc31b6212f77e03383e615ee30fd97419806c3841f18d2f6c950d82cdd21e872_ppc64le"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:L",
            "version": "3.1"
          },
          "products": [
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/idea-rhel9@sha256:df24ebb239a2cc0d4543309f51a7268c7d524d428a536e0b3443c51089c3f87e_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:0dc291e3dc58d285d054a35b480d14c3912777e14fd643915b8ceabd178ad6bf_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:ac5b3e78470c747377dbc9ecb6e0680d724086c331955ed5471b74d01155ece8_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:cd1ee1d15cafe77bbf8e283cee2cde88dcdfb59c9545867a047cf4b42089aa85_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:d0b17cb5f9a530ca959058fe926b3f5c42539487e23587d51948f49d7a38cf5d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:2bfe5265856abdd8cb490bde852d4e992f1793684f003d1ef53776fe69d790d7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:32d9568317c55235f75c4d0e1c98de6d4af252cbdd116ed2355025cbaeac862f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:48b99d167a5c54a98e69bba441bb5b70db2ffe065d3f8f8d23ecfed7b813336e_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:8b2b33e91756bbd1c7ed6905e00176b9d55a4e13aee2f84862bc571a8a82f113_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:43cdf063e9a6aa5f84233c8bd850a711b5d5fae8a7795803609fec07d189ca05_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:7ad9073c0a768f170cf8d4311ea35ec1caccfdefdf6d1dccbc10ed01cdeafd16_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:934c224a59086c689be1839b6846a0984370a78a8adc8510fa692f5215bb6182_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:d2bfcb27baf36e569eca4f7c85f458a180d7938616413a4cf8e10cb329e6a150_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:78dabed4a5fc1eb3246778e6ee6e1a543829cf88d0b03f0ccccf101c41a7bdda_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:7c98501fee1297a24caa77d325f6bfd7f91192589f0aa22d47d9766e8219c749_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:905d45518e20ea10daa3a35ea2f2201a6f762a16f9b4829ce37b7396d493ac59_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:91e064bccc3f7320844763fc136cb4c650db40190e01edebe16135bcc00627ac_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:a48dd94d5616183843ba939146b7e4d985210cdd902038ff80ff6df3df3d74ca_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:2b18f2cf31e0914762cc6e99c9797c24a19db69ca08bc9983bc2aacc85ee7024_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:38c9b56aa9c2a5153e01ffc1edb399247ed1937b9382ac4f0fb2beae4c27f69a_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:59f85768c28401783b9475ce21088e3d8fbf6bcd64bb49e3a243c881ac6b546c_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f5b515ecaea7d542ac18ea5a056c99fe84ca2ac25fa3904bdc50a78ecf47541f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8cdf016c4d61bce4f244415ae192fe1647ef517ba1690f2009b5b8e1104c72a7_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:a69c6f8b091d11c69b6864edc6973c6f5f4515eb3a1923bf51fdb971315c28b0_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ad5f4d1b7f712416bb62785375ce15ef1a5cb3f1a77226899abc8aba32a11623_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c9808efcb221c10d78bdf663e3b5e3d5d281bf59702be049090fc1fa0511b078_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:13f0ec3ce663f6701501e82bbb508549e149588eedb0982729a59d98c88d0ba0_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:43d9679eb3ac8d5287863137f2d698d814a2fbc2fbd6a6aacba11240cd76d40c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:d23a4d9f0967f53d15fefda63e972e035d23aebe819dd11a6cec9beceacd8997_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:e32fc2e1c50fb1110a835e29e6e360b4127ed84fca98c6276b0b171ccd6cb223_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:1168d897f16b276ba5a6e6170e31fbe1499a980666aed493b2fe27036471ba55_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:15300e7d45a8e2093ef6f33303174f7361de7d9b648f8c9f2cf06f8ba3c56c76_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:6ccd50b0049e4ba0f9d4ea8779b17c6acc95395490579fbaa3b9e9084ac7d314_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e762a9019e4b5afd27331ad519a5b63a2bba3c7eb522533e0932e97c2879a36e_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f4c5323da09593280fc61c2df7fced0f6dc9d3ca322d27069f51334c3d18dae_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:918c66e3ea09e481c38673314021ef1aa6b46afc9dcb115b9d19b6819c5db4a7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:cc4f2ce5926da93eaf81b0935d3171d81a310ec97e3c08bbbf6599752446810d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f2bcd5123e4fad7aa4ad54f2819a1beb75d844302aa162e0335c1a0191fe5346_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:27b7eef1c64e432dbe15e92cf745a951aebdc9b379d9c02dbfef6df296c39cd1_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:3cfcd5f9ab8ec42cefd8fab992ecb493a9d14126bdf53ba542ffa4b51fd1684c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:641354f1d56627f49af3e32ad963616b69aac644ac33d664e7fe29de32fe43b3_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:fa5400aecca1a46c4b98d00c749ea56d6187ced20952f02e4dd1c12e2467117e_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:15a4a74016cdb94aece0bc651edd221b72a9202e5fd414d30ae969707cb5b4c9_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:5361443dee5415dc554d79e2fa23a6b336f1d8ea89fb20a4caa72f70574b939b_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:a152f1e75dd10ba692587a4e702d59cd1c5adcde8b97390f58742270edf85d33_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:f17428eced9d6bec1eaaa1510b68250824d3ace2f66af7f31fbf7327ca11540c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:42d8388fafeb7c188b03389c92561da4068f91a8cc2343f33d967939342e4f64_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:a86e59cedc67e9fcee3412afa157572a2ab815a3d9e18da03ada502f7313cc80_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b60b4b992b89b82620e5ea618350a97434b272d1f023200dcbeae642612e3569_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ee9d72769b916b350307df495022e04add1fbcd67c1e62757fd316e7f1dd60ae_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:53618eb41967e64660e87e5ad6ce8f5d9803aed9bb48da8898aaefb4d0a4632d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:65176a94e684c200beef8f25016982ab212bdcd10d31b54a831310e20c026f77_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:a4ca99dc99b864ef805f3e8d997f0567168c809433f16ec23540c0b8ead96216_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:cc31b6212f77e03383e615ee30fd97419806c3841f18d2f6c950d82cdd21e872_ppc64le"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "cipher-base: Cipher-base hash manipulation"
    },
    {
      "cve": "CVE-2025-9288",
      "cwe": {
        "id": "CWE-20",
        "name": "Improper Input Validation"
      },
      "discovery_date": "2025-08-20T23:00:56.263191+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/idea-rhel9@sha256:df24ebb239a2cc0d4543309f51a7268c7d524d428a536e0b3443c51089c3f87e_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:0dc291e3dc58d285d054a35b480d14c3912777e14fd643915b8ceabd178ad6bf_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:ac5b3e78470c747377dbc9ecb6e0680d724086c331955ed5471b74d01155ece8_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:cd1ee1d15cafe77bbf8e283cee2cde88dcdfb59c9545867a047cf4b42089aa85_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:d0b17cb5f9a530ca959058fe926b3f5c42539487e23587d51948f49d7a38cf5d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:43cdf063e9a6aa5f84233c8bd850a711b5d5fae8a7795803609fec07d189ca05_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:7ad9073c0a768f170cf8d4311ea35ec1caccfdefdf6d1dccbc10ed01cdeafd16_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:934c224a59086c689be1839b6846a0984370a78a8adc8510fa692f5215bb6182_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:d2bfcb27baf36e569eca4f7c85f458a180d7938616413a4cf8e10cb329e6a150_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:a48dd94d5616183843ba939146b7e4d985210cdd902038ff80ff6df3df3d74ca_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:2b18f2cf31e0914762cc6e99c9797c24a19db69ca08bc9983bc2aacc85ee7024_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:38c9b56aa9c2a5153e01ffc1edb399247ed1937b9382ac4f0fb2beae4c27f69a_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:59f85768c28401783b9475ce21088e3d8fbf6bcd64bb49e3a243c881ac6b546c_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f5b515ecaea7d542ac18ea5a056c99fe84ca2ac25fa3904bdc50a78ecf47541f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8cdf016c4d61bce4f244415ae192fe1647ef517ba1690f2009b5b8e1104c72a7_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:a69c6f8b091d11c69b6864edc6973c6f5f4515eb3a1923bf51fdb971315c28b0_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ad5f4d1b7f712416bb62785375ce15ef1a5cb3f1a77226899abc8aba32a11623_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c9808efcb221c10d78bdf663e3b5e3d5d281bf59702be049090fc1fa0511b078_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:1168d897f16b276ba5a6e6170e31fbe1499a980666aed493b2fe27036471ba55_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:15300e7d45a8e2093ef6f33303174f7361de7d9b648f8c9f2cf06f8ba3c56c76_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:6ccd50b0049e4ba0f9d4ea8779b17c6acc95395490579fbaa3b9e9084ac7d314_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e762a9019e4b5afd27331ad519a5b63a2bba3c7eb522533e0932e97c2879a36e_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f4c5323da09593280fc61c2df7fced0f6dc9d3ca322d27069f51334c3d18dae_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:918c66e3ea09e481c38673314021ef1aa6b46afc9dcb115b9d19b6819c5db4a7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:cc4f2ce5926da93eaf81b0935d3171d81a310ec97e3c08bbbf6599752446810d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f2bcd5123e4fad7aa4ad54f2819a1beb75d844302aa162e0335c1a0191fe5346_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:27b7eef1c64e432dbe15e92cf745a951aebdc9b379d9c02dbfef6df296c39cd1_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:3cfcd5f9ab8ec42cefd8fab992ecb493a9d14126bdf53ba542ffa4b51fd1684c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:641354f1d56627f49af3e32ad963616b69aac644ac33d664e7fe29de32fe43b3_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:fa5400aecca1a46c4b98d00c749ea56d6187ced20952f02e4dd1c12e2467117e_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:15a4a74016cdb94aece0bc651edd221b72a9202e5fd414d30ae969707cb5b4c9_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:5361443dee5415dc554d79e2fa23a6b336f1d8ea89fb20a4caa72f70574b939b_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:a152f1e75dd10ba692587a4e702d59cd1c5adcde8b97390f58742270edf85d33_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:f17428eced9d6bec1eaaa1510b68250824d3ace2f66af7f31fbf7327ca11540c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:42d8388fafeb7c188b03389c92561da4068f91a8cc2343f33d967939342e4f64_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:a86e59cedc67e9fcee3412afa157572a2ab815a3d9e18da03ada502f7313cc80_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b60b4b992b89b82620e5ea618350a97434b272d1f023200dcbeae642612e3569_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ee9d72769b916b350307df495022e04add1fbcd67c1e62757fd316e7f1dd60ae_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:53618eb41967e64660e87e5ad6ce8f5d9803aed9bb48da8898aaefb4d0a4632d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:65176a94e684c200beef8f25016982ab212bdcd10d31b54a831310e20c026f77_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:a4ca99dc99b864ef805f3e8d997f0567168c809433f16ec23540c0b8ead96216_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:cc31b6212f77e03383e615ee30fd97419806c3841f18d2f6c950d82cdd21e872_ppc64le"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2389980"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability was found in sha.js, where the hashing implementation does not perform sufficient input type validation. The .update() function accepts arbitrary objects, including those with crafted length properties, which can alter the internal state machine of the hashing process. This flaw may result in unexpected behavior such as rewinding the hash state, producing inconsistent digest outputs, or entering invalid processing loops. The issue was introduced due to the reliance on JavaScript object coercion rules rather than enforcing strict buffer or string inputs.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "sha.js: Missing type checks leading to hash rewind and passing on crafted data",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability was marked as Important rather then Critical because while the lack of input type checks in sha.js allows for hash state rewinding, crafted collisions, and potential denial of service, the vulnerability requires highly specific crafted input objects that are unlikely to occur in typical real-world usage, especially since most applications pass well-formed strings or buffers to hashing functions. Moreover, the cryptographic breakages described, such as nonce reuse leading to private key extraction, are indirect and depend on downstream libraries misusing sha.js for sensitive operations without additional validation layers. As a result, the flaw significantly undermines correctness and robustness of the hashing API, but its exploitability in common production systems is constrained, which could justify viewing it as an Important vulnerability rather than a Critical one.\n\n\nThe flaw requires applications to pass attacker-controlled, non-standard JavaScript objects into hash.update(). Most real-world Node.js applications and libraries already use Buffer, TypedArray, or String inputs, which are unaffected. Furthermore, Node\u2019s built-in crypto module, which is widely adopted, enforces stricter type-checking and is not impacted. As a result, the vulnerability mainly threatens projects that (a) directly depend on sha.js for cryptographically sensitive operations, and (b) hash untrusted input without type validation.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:2bfe5265856abdd8cb490bde852d4e992f1793684f003d1ef53776fe69d790d7_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:32d9568317c55235f75c4d0e1c98de6d4af252cbdd116ed2355025cbaeac862f_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:48b99d167a5c54a98e69bba441bb5b70db2ffe065d3f8f8d23ecfed7b813336e_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:8b2b33e91756bbd1c7ed6905e00176b9d55a4e13aee2f84862bc571a8a82f113_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:78dabed4a5fc1eb3246778e6ee6e1a543829cf88d0b03f0ccccf101c41a7bdda_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:7c98501fee1297a24caa77d325f6bfd7f91192589f0aa22d47d9766e8219c749_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:905d45518e20ea10daa3a35ea2f2201a6f762a16f9b4829ce37b7396d493ac59_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:91e064bccc3f7320844763fc136cb4c650db40190e01edebe16135bcc00627ac_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:13f0ec3ce663f6701501e82bbb508549e149588eedb0982729a59d98c88d0ba0_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:43d9679eb3ac8d5287863137f2d698d814a2fbc2fbd6a6aacba11240cd76d40c_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:d23a4d9f0967f53d15fefda63e972e035d23aebe819dd11a6cec9beceacd8997_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:e32fc2e1c50fb1110a835e29e6e360b4127ed84fca98c6276b0b171ccd6cb223_s390x"
        ],
        "known_not_affected": [
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/idea-rhel9@sha256:df24ebb239a2cc0d4543309f51a7268c7d524d428a536e0b3443c51089c3f87e_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:0dc291e3dc58d285d054a35b480d14c3912777e14fd643915b8ceabd178ad6bf_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:ac5b3e78470c747377dbc9ecb6e0680d724086c331955ed5471b74d01155ece8_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:cd1ee1d15cafe77bbf8e283cee2cde88dcdfb59c9545867a047cf4b42089aa85_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:d0b17cb5f9a530ca959058fe926b3f5c42539487e23587d51948f49d7a38cf5d_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:43cdf063e9a6aa5f84233c8bd850a711b5d5fae8a7795803609fec07d189ca05_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:7ad9073c0a768f170cf8d4311ea35ec1caccfdefdf6d1dccbc10ed01cdeafd16_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:934c224a59086c689be1839b6846a0984370a78a8adc8510fa692f5215bb6182_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:d2bfcb27baf36e569eca4f7c85f458a180d7938616413a4cf8e10cb329e6a150_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:a48dd94d5616183843ba939146b7e4d985210cdd902038ff80ff6df3df3d74ca_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:2b18f2cf31e0914762cc6e99c9797c24a19db69ca08bc9983bc2aacc85ee7024_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:38c9b56aa9c2a5153e01ffc1edb399247ed1937b9382ac4f0fb2beae4c27f69a_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:59f85768c28401783b9475ce21088e3d8fbf6bcd64bb49e3a243c881ac6b546c_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f5b515ecaea7d542ac18ea5a056c99fe84ca2ac25fa3904bdc50a78ecf47541f_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8cdf016c4d61bce4f244415ae192fe1647ef517ba1690f2009b5b8e1104c72a7_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:a69c6f8b091d11c69b6864edc6973c6f5f4515eb3a1923bf51fdb971315c28b0_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ad5f4d1b7f712416bb62785375ce15ef1a5cb3f1a77226899abc8aba32a11623_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c9808efcb221c10d78bdf663e3b5e3d5d281bf59702be049090fc1fa0511b078_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:1168d897f16b276ba5a6e6170e31fbe1499a980666aed493b2fe27036471ba55_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:15300e7d45a8e2093ef6f33303174f7361de7d9b648f8c9f2cf06f8ba3c56c76_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:6ccd50b0049e4ba0f9d4ea8779b17c6acc95395490579fbaa3b9e9084ac7d314_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e762a9019e4b5afd27331ad519a5b63a2bba3c7eb522533e0932e97c2879a36e_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f4c5323da09593280fc61c2df7fced0f6dc9d3ca322d27069f51334c3d18dae_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:918c66e3ea09e481c38673314021ef1aa6b46afc9dcb115b9d19b6819c5db4a7_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:cc4f2ce5926da93eaf81b0935d3171d81a310ec97e3c08bbbf6599752446810d_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f2bcd5123e4fad7aa4ad54f2819a1beb75d844302aa162e0335c1a0191fe5346_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:27b7eef1c64e432dbe15e92cf745a951aebdc9b379d9c02dbfef6df296c39cd1_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:3cfcd5f9ab8ec42cefd8fab992ecb493a9d14126bdf53ba542ffa4b51fd1684c_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:641354f1d56627f49af3e32ad963616b69aac644ac33d664e7fe29de32fe43b3_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:fa5400aecca1a46c4b98d00c749ea56d6187ced20952f02e4dd1c12e2467117e_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:15a4a74016cdb94aece0bc651edd221b72a9202e5fd414d30ae969707cb5b4c9_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:5361443dee5415dc554d79e2fa23a6b336f1d8ea89fb20a4caa72f70574b939b_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:a152f1e75dd10ba692587a4e702d59cd1c5adcde8b97390f58742270edf85d33_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:f17428eced9d6bec1eaaa1510b68250824d3ace2f66af7f31fbf7327ca11540c_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:42d8388fafeb7c188b03389c92561da4068f91a8cc2343f33d967939342e4f64_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:a86e59cedc67e9fcee3412afa157572a2ab815a3d9e18da03ada502f7313cc80_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b60b4b992b89b82620e5ea618350a97434b272d1f023200dcbeae642612e3569_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ee9d72769b916b350307df495022e04add1fbcd67c1e62757fd316e7f1dd60ae_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:53618eb41967e64660e87e5ad6ce8f5d9803aed9bb48da8898aaefb4d0a4632d_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:65176a94e684c200beef8f25016982ab212bdcd10d31b54a831310e20c026f77_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:a4ca99dc99b864ef805f3e8d997f0567168c809433f16ec23540c0b8ead96216_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:cc31b6212f77e03383e615ee30fd97419806c3841f18d2f6c950d82cdd21e872_ppc64le"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-9288"
        },
        {
          "category": "external",
          "summary": "RHBZ#2389980",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2389980"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-9288",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-9288"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-9288",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-9288"
        },
        {
          "category": "external",
          "summary": "https://github.com/browserify/sha.js/pull/78",
          "url": "https://github.com/browserify/sha.js/pull/78"
        },
        {
          "category": "external",
          "summary": "https://github.com/browserify/sha.js/security/advisories/GHSA-95m3-7q98-8xr5",
          "url": "https://github.com/browserify/sha.js/security/advisories/GHSA-95m3-7q98-8xr5"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-9287",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-9287"
        }
      ],
      "release_date": "2025-08-20T21:59:44.728000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-09-15T16:27:40+00:00",
          "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:2bfe5265856abdd8cb490bde852d4e992f1793684f003d1ef53776fe69d790d7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:32d9568317c55235f75c4d0e1c98de6d4af252cbdd116ed2355025cbaeac862f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:48b99d167a5c54a98e69bba441bb5b70db2ffe065d3f8f8d23ecfed7b813336e_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:8b2b33e91756bbd1c7ed6905e00176b9d55a4e13aee2f84862bc571a8a82f113_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:78dabed4a5fc1eb3246778e6ee6e1a543829cf88d0b03f0ccccf101c41a7bdda_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:7c98501fee1297a24caa77d325f6bfd7f91192589f0aa22d47d9766e8219c749_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:905d45518e20ea10daa3a35ea2f2201a6f762a16f9b4829ce37b7396d493ac59_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:91e064bccc3f7320844763fc136cb4c650db40190e01edebe16135bcc00627ac_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:13f0ec3ce663f6701501e82bbb508549e149588eedb0982729a59d98c88d0ba0_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:43d9679eb3ac8d5287863137f2d698d814a2fbc2fbd6a6aacba11240cd76d40c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:d23a4d9f0967f53d15fefda63e972e035d23aebe819dd11a6cec9beceacd8997_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:e32fc2e1c50fb1110a835e29e6e360b4127ed84fca98c6276b0b171ccd6cb223_s390x"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:15847"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/idea-rhel9@sha256:df24ebb239a2cc0d4543309f51a7268c7d524d428a536e0b3443c51089c3f87e_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:0dc291e3dc58d285d054a35b480d14c3912777e14fd643915b8ceabd178ad6bf_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:ac5b3e78470c747377dbc9ecb6e0680d724086c331955ed5471b74d01155ece8_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:cd1ee1d15cafe77bbf8e283cee2cde88dcdfb59c9545867a047cf4b42089aa85_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:d0b17cb5f9a530ca959058fe926b3f5c42539487e23587d51948f49d7a38cf5d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:2bfe5265856abdd8cb490bde852d4e992f1793684f003d1ef53776fe69d790d7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:32d9568317c55235f75c4d0e1c98de6d4af252cbdd116ed2355025cbaeac862f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:48b99d167a5c54a98e69bba441bb5b70db2ffe065d3f8f8d23ecfed7b813336e_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:8b2b33e91756bbd1c7ed6905e00176b9d55a4e13aee2f84862bc571a8a82f113_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:43cdf063e9a6aa5f84233c8bd850a711b5d5fae8a7795803609fec07d189ca05_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:7ad9073c0a768f170cf8d4311ea35ec1caccfdefdf6d1dccbc10ed01cdeafd16_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:934c224a59086c689be1839b6846a0984370a78a8adc8510fa692f5215bb6182_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:d2bfcb27baf36e569eca4f7c85f458a180d7938616413a4cf8e10cb329e6a150_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:78dabed4a5fc1eb3246778e6ee6e1a543829cf88d0b03f0ccccf101c41a7bdda_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:7c98501fee1297a24caa77d325f6bfd7f91192589f0aa22d47d9766e8219c749_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:905d45518e20ea10daa3a35ea2f2201a6f762a16f9b4829ce37b7396d493ac59_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:91e064bccc3f7320844763fc136cb4c650db40190e01edebe16135bcc00627ac_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:a48dd94d5616183843ba939146b7e4d985210cdd902038ff80ff6df3df3d74ca_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:2b18f2cf31e0914762cc6e99c9797c24a19db69ca08bc9983bc2aacc85ee7024_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:38c9b56aa9c2a5153e01ffc1edb399247ed1937b9382ac4f0fb2beae4c27f69a_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:59f85768c28401783b9475ce21088e3d8fbf6bcd64bb49e3a243c881ac6b546c_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f5b515ecaea7d542ac18ea5a056c99fe84ca2ac25fa3904bdc50a78ecf47541f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8cdf016c4d61bce4f244415ae192fe1647ef517ba1690f2009b5b8e1104c72a7_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:a69c6f8b091d11c69b6864edc6973c6f5f4515eb3a1923bf51fdb971315c28b0_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ad5f4d1b7f712416bb62785375ce15ef1a5cb3f1a77226899abc8aba32a11623_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c9808efcb221c10d78bdf663e3b5e3d5d281bf59702be049090fc1fa0511b078_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:13f0ec3ce663f6701501e82bbb508549e149588eedb0982729a59d98c88d0ba0_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:43d9679eb3ac8d5287863137f2d698d814a2fbc2fbd6a6aacba11240cd76d40c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:d23a4d9f0967f53d15fefda63e972e035d23aebe819dd11a6cec9beceacd8997_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:e32fc2e1c50fb1110a835e29e6e360b4127ed84fca98c6276b0b171ccd6cb223_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:1168d897f16b276ba5a6e6170e31fbe1499a980666aed493b2fe27036471ba55_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:15300e7d45a8e2093ef6f33303174f7361de7d9b648f8c9f2cf06f8ba3c56c76_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:6ccd50b0049e4ba0f9d4ea8779b17c6acc95395490579fbaa3b9e9084ac7d314_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e762a9019e4b5afd27331ad519a5b63a2bba3c7eb522533e0932e97c2879a36e_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f4c5323da09593280fc61c2df7fced0f6dc9d3ca322d27069f51334c3d18dae_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:918c66e3ea09e481c38673314021ef1aa6b46afc9dcb115b9d19b6819c5db4a7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:cc4f2ce5926da93eaf81b0935d3171d81a310ec97e3c08bbbf6599752446810d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f2bcd5123e4fad7aa4ad54f2819a1beb75d844302aa162e0335c1a0191fe5346_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:27b7eef1c64e432dbe15e92cf745a951aebdc9b379d9c02dbfef6df296c39cd1_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:3cfcd5f9ab8ec42cefd8fab992ecb493a9d14126bdf53ba542ffa4b51fd1684c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:641354f1d56627f49af3e32ad963616b69aac644ac33d664e7fe29de32fe43b3_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:fa5400aecca1a46c4b98d00c749ea56d6187ced20952f02e4dd1c12e2467117e_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:15a4a74016cdb94aece0bc651edd221b72a9202e5fd414d30ae969707cb5b4c9_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:5361443dee5415dc554d79e2fa23a6b336f1d8ea89fb20a4caa72f70574b939b_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:a152f1e75dd10ba692587a4e702d59cd1c5adcde8b97390f58742270edf85d33_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:f17428eced9d6bec1eaaa1510b68250824d3ace2f66af7f31fbf7327ca11540c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:42d8388fafeb7c188b03389c92561da4068f91a8cc2343f33d967939342e4f64_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:a86e59cedc67e9fcee3412afa157572a2ab815a3d9e18da03ada502f7313cc80_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b60b4b992b89b82620e5ea618350a97434b272d1f023200dcbeae642612e3569_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ee9d72769b916b350307df495022e04add1fbcd67c1e62757fd316e7f1dd60ae_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:53618eb41967e64660e87e5ad6ce8f5d9803aed9bb48da8898aaefb4d0a4632d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:65176a94e684c200beef8f25016982ab212bdcd10d31b54a831310e20c026f77_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:a4ca99dc99b864ef805f3e8d997f0567168c809433f16ec23540c0b8ead96216_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:cc31b6212f77e03383e615ee30fd97419806c3841f18d2f6c950d82cdd21e872_ppc64le"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.7,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "LOW",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/idea-rhel9@sha256:df24ebb239a2cc0d4543309f51a7268c7d524d428a536e0b3443c51089c3f87e_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:0dc291e3dc58d285d054a35b480d14c3912777e14fd643915b8ceabd178ad6bf_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:ac5b3e78470c747377dbc9ecb6e0680d724086c331955ed5471b74d01155ece8_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:cd1ee1d15cafe77bbf8e283cee2cde88dcdfb59c9545867a047cf4b42089aa85_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:d0b17cb5f9a530ca959058fe926b3f5c42539487e23587d51948f49d7a38cf5d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:2bfe5265856abdd8cb490bde852d4e992f1793684f003d1ef53776fe69d790d7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:32d9568317c55235f75c4d0e1c98de6d4af252cbdd116ed2355025cbaeac862f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:48b99d167a5c54a98e69bba441bb5b70db2ffe065d3f8f8d23ecfed7b813336e_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:8b2b33e91756bbd1c7ed6905e00176b9d55a4e13aee2f84862bc571a8a82f113_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:43cdf063e9a6aa5f84233c8bd850a711b5d5fae8a7795803609fec07d189ca05_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:7ad9073c0a768f170cf8d4311ea35ec1caccfdefdf6d1dccbc10ed01cdeafd16_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:934c224a59086c689be1839b6846a0984370a78a8adc8510fa692f5215bb6182_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:d2bfcb27baf36e569eca4f7c85f458a180d7938616413a4cf8e10cb329e6a150_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:78dabed4a5fc1eb3246778e6ee6e1a543829cf88d0b03f0ccccf101c41a7bdda_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:7c98501fee1297a24caa77d325f6bfd7f91192589f0aa22d47d9766e8219c749_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:905d45518e20ea10daa3a35ea2f2201a6f762a16f9b4829ce37b7396d493ac59_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:91e064bccc3f7320844763fc136cb4c650db40190e01edebe16135bcc00627ac_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:a48dd94d5616183843ba939146b7e4d985210cdd902038ff80ff6df3df3d74ca_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:2b18f2cf31e0914762cc6e99c9797c24a19db69ca08bc9983bc2aacc85ee7024_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:38c9b56aa9c2a5153e01ffc1edb399247ed1937b9382ac4f0fb2beae4c27f69a_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:59f85768c28401783b9475ce21088e3d8fbf6bcd64bb49e3a243c881ac6b546c_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f5b515ecaea7d542ac18ea5a056c99fe84ca2ac25fa3904bdc50a78ecf47541f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8cdf016c4d61bce4f244415ae192fe1647ef517ba1690f2009b5b8e1104c72a7_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:a69c6f8b091d11c69b6864edc6973c6f5f4515eb3a1923bf51fdb971315c28b0_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ad5f4d1b7f712416bb62785375ce15ef1a5cb3f1a77226899abc8aba32a11623_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c9808efcb221c10d78bdf663e3b5e3d5d281bf59702be049090fc1fa0511b078_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:13f0ec3ce663f6701501e82bbb508549e149588eedb0982729a59d98c88d0ba0_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:43d9679eb3ac8d5287863137f2d698d814a2fbc2fbd6a6aacba11240cd76d40c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:d23a4d9f0967f53d15fefda63e972e035d23aebe819dd11a6cec9beceacd8997_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:e32fc2e1c50fb1110a835e29e6e360b4127ed84fca98c6276b0b171ccd6cb223_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:1168d897f16b276ba5a6e6170e31fbe1499a980666aed493b2fe27036471ba55_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:15300e7d45a8e2093ef6f33303174f7361de7d9b648f8c9f2cf06f8ba3c56c76_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:6ccd50b0049e4ba0f9d4ea8779b17c6acc95395490579fbaa3b9e9084ac7d314_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e762a9019e4b5afd27331ad519a5b63a2bba3c7eb522533e0932e97c2879a36e_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f4c5323da09593280fc61c2df7fced0f6dc9d3ca322d27069f51334c3d18dae_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:918c66e3ea09e481c38673314021ef1aa6b46afc9dcb115b9d19b6819c5db4a7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:cc4f2ce5926da93eaf81b0935d3171d81a310ec97e3c08bbbf6599752446810d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f2bcd5123e4fad7aa4ad54f2819a1beb75d844302aa162e0335c1a0191fe5346_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:27b7eef1c64e432dbe15e92cf745a951aebdc9b379d9c02dbfef6df296c39cd1_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:3cfcd5f9ab8ec42cefd8fab992ecb493a9d14126bdf53ba542ffa4b51fd1684c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:641354f1d56627f49af3e32ad963616b69aac644ac33d664e7fe29de32fe43b3_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:fa5400aecca1a46c4b98d00c749ea56d6187ced20952f02e4dd1c12e2467117e_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:15a4a74016cdb94aece0bc651edd221b72a9202e5fd414d30ae969707cb5b4c9_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:5361443dee5415dc554d79e2fa23a6b336f1d8ea89fb20a4caa72f70574b939b_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:a152f1e75dd10ba692587a4e702d59cd1c5adcde8b97390f58742270edf85d33_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:f17428eced9d6bec1eaaa1510b68250824d3ace2f66af7f31fbf7327ca11540c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:42d8388fafeb7c188b03389c92561da4068f91a8cc2343f33d967939342e4f64_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:a86e59cedc67e9fcee3412afa157572a2ab815a3d9e18da03ada502f7313cc80_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b60b4b992b89b82620e5ea618350a97434b272d1f023200dcbeae642612e3569_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ee9d72769b916b350307df495022e04add1fbcd67c1e62757fd316e7f1dd60ae_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:53618eb41967e64660e87e5ad6ce8f5d9803aed9bb48da8898aaefb4d0a4632d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:65176a94e684c200beef8f25016982ab212bdcd10d31b54a831310e20c026f77_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:a4ca99dc99b864ef805f3e8d997f0567168c809433f16ec23540c0b8ead96216_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:cc31b6212f77e03383e615ee30fd97419806c3841f18d2f6c950d82cdd21e872_ppc64le"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "sha.js: Missing type checks leading to hash rewind and passing on crafted data"
    },
    {
      "cve": "CVE-2025-48385",
      "cwe": {
        "id": "CWE-88",
        "name": "Improper Neutralization of Argument Delimiters in a Command (\u0027Argument Injection\u0027)"
      },
      "discovery_date": "2025-07-08T19:00:55.106787+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/idea-rhel9@sha256:df24ebb239a2cc0d4543309f51a7268c7d524d428a536e0b3443c51089c3f87e_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:0dc291e3dc58d285d054a35b480d14c3912777e14fd643915b8ceabd178ad6bf_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:ac5b3e78470c747377dbc9ecb6e0680d724086c331955ed5471b74d01155ece8_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:cd1ee1d15cafe77bbf8e283cee2cde88dcdfb59c9545867a047cf4b42089aa85_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:d0b17cb5f9a530ca959058fe926b3f5c42539487e23587d51948f49d7a38cf5d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:43cdf063e9a6aa5f84233c8bd850a711b5d5fae8a7795803609fec07d189ca05_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:7ad9073c0a768f170cf8d4311ea35ec1caccfdefdf6d1dccbc10ed01cdeafd16_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:934c224a59086c689be1839b6846a0984370a78a8adc8510fa692f5215bb6182_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:d2bfcb27baf36e569eca4f7c85f458a180d7938616413a4cf8e10cb329e6a150_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:78dabed4a5fc1eb3246778e6ee6e1a543829cf88d0b03f0ccccf101c41a7bdda_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:7c98501fee1297a24caa77d325f6bfd7f91192589f0aa22d47d9766e8219c749_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:905d45518e20ea10daa3a35ea2f2201a6f762a16f9b4829ce37b7396d493ac59_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:91e064bccc3f7320844763fc136cb4c650db40190e01edebe16135bcc00627ac_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:a48dd94d5616183843ba939146b7e4d985210cdd902038ff80ff6df3df3d74ca_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:2b18f2cf31e0914762cc6e99c9797c24a19db69ca08bc9983bc2aacc85ee7024_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:38c9b56aa9c2a5153e01ffc1edb399247ed1937b9382ac4f0fb2beae4c27f69a_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:59f85768c28401783b9475ce21088e3d8fbf6bcd64bb49e3a243c881ac6b546c_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f5b515ecaea7d542ac18ea5a056c99fe84ca2ac25fa3904bdc50a78ecf47541f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8cdf016c4d61bce4f244415ae192fe1647ef517ba1690f2009b5b8e1104c72a7_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:a69c6f8b091d11c69b6864edc6973c6f5f4515eb3a1923bf51fdb971315c28b0_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ad5f4d1b7f712416bb62785375ce15ef1a5cb3f1a77226899abc8aba32a11623_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c9808efcb221c10d78bdf663e3b5e3d5d281bf59702be049090fc1fa0511b078_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:13f0ec3ce663f6701501e82bbb508549e149588eedb0982729a59d98c88d0ba0_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:43d9679eb3ac8d5287863137f2d698d814a2fbc2fbd6a6aacba11240cd76d40c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:d23a4d9f0967f53d15fefda63e972e035d23aebe819dd11a6cec9beceacd8997_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:e32fc2e1c50fb1110a835e29e6e360b4127ed84fca98c6276b0b171ccd6cb223_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:1168d897f16b276ba5a6e6170e31fbe1499a980666aed493b2fe27036471ba55_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:15300e7d45a8e2093ef6f33303174f7361de7d9b648f8c9f2cf06f8ba3c56c76_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:6ccd50b0049e4ba0f9d4ea8779b17c6acc95395490579fbaa3b9e9084ac7d314_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e762a9019e4b5afd27331ad519a5b63a2bba3c7eb522533e0932e97c2879a36e_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f4c5323da09593280fc61c2df7fced0f6dc9d3ca322d27069f51334c3d18dae_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:918c66e3ea09e481c38673314021ef1aa6b46afc9dcb115b9d19b6819c5db4a7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:cc4f2ce5926da93eaf81b0935d3171d81a310ec97e3c08bbbf6599752446810d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f2bcd5123e4fad7aa4ad54f2819a1beb75d844302aa162e0335c1a0191fe5346_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:27b7eef1c64e432dbe15e92cf745a951aebdc9b379d9c02dbfef6df296c39cd1_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:3cfcd5f9ab8ec42cefd8fab992ecb493a9d14126bdf53ba542ffa4b51fd1684c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:641354f1d56627f49af3e32ad963616b69aac644ac33d664e7fe29de32fe43b3_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:fa5400aecca1a46c4b98d00c749ea56d6187ced20952f02e4dd1c12e2467117e_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:15a4a74016cdb94aece0bc651edd221b72a9202e5fd414d30ae969707cb5b4c9_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:5361443dee5415dc554d79e2fa23a6b336f1d8ea89fb20a4caa72f70574b939b_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:a152f1e75dd10ba692587a4e702d59cd1c5adcde8b97390f58742270edf85d33_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:f17428eced9d6bec1eaaa1510b68250824d3ace2f66af7f31fbf7327ca11540c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:42d8388fafeb7c188b03389c92561da4068f91a8cc2343f33d967939342e4f64_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:a86e59cedc67e9fcee3412afa157572a2ab815a3d9e18da03ada502f7313cc80_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b60b4b992b89b82620e5ea618350a97434b272d1f023200dcbeae642612e3569_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ee9d72769b916b350307df495022e04add1fbcd67c1e62757fd316e7f1dd60ae_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:53618eb41967e64660e87e5ad6ce8f5d9803aed9bb48da8898aaefb4d0a4632d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:65176a94e684c200beef8f25016982ab212bdcd10d31b54a831310e20c026f77_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:a4ca99dc99b864ef805f3e8d997f0567168c809433f16ec23540c0b8ead96216_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:cc31b6212f77e03383e615ee30fd97419806c3841f18d2f6c950d82cdd21e872_ppc64le"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2378808"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A bundled uri handling flaw was found in Git. When cloning a repository, Git knows to optionally fetch a bundle advertised by the remote server, which allows the server side to offload parts of the clone to a CDN. The Git client does not perform sufficient validation of the advertised bundles, which allows the remote side to perform protocol injection.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "git: Git arbitrary file writes",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability marked as Important rather than a Moderate flaw because it enables protocol injection at the transport layer of Git\u0027s bundle-uri mechanism, allowing a remote server to manipulate how and where data is written on the client system during a clone operation. The lack of input sanitization on user-controlled values like the URI and target path means that malformed inputs containing spaces or newlines can break protocol framing, leading to arbitrary file writes. In scenarios such as CI pipelines, developer environments, or recursive clones with submodules, an attacker can exploit this to overwrite critical files or inject malicious content, potentially achieving remote code execution (RCE).",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:2bfe5265856abdd8cb490bde852d4e992f1793684f003d1ef53776fe69d790d7_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:32d9568317c55235f75c4d0e1c98de6d4af252cbdd116ed2355025cbaeac862f_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:48b99d167a5c54a98e69bba441bb5b70db2ffe065d3f8f8d23ecfed7b813336e_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:8b2b33e91756bbd1c7ed6905e00176b9d55a4e13aee2f84862bc571a8a82f113_ppc64le"
        ],
        "known_not_affected": [
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/idea-rhel9@sha256:df24ebb239a2cc0d4543309f51a7268c7d524d428a536e0b3443c51089c3f87e_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:0dc291e3dc58d285d054a35b480d14c3912777e14fd643915b8ceabd178ad6bf_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:ac5b3e78470c747377dbc9ecb6e0680d724086c331955ed5471b74d01155ece8_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:cd1ee1d15cafe77bbf8e283cee2cde88dcdfb59c9545867a047cf4b42089aa85_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:d0b17cb5f9a530ca959058fe926b3f5c42539487e23587d51948f49d7a38cf5d_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:43cdf063e9a6aa5f84233c8bd850a711b5d5fae8a7795803609fec07d189ca05_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:7ad9073c0a768f170cf8d4311ea35ec1caccfdefdf6d1dccbc10ed01cdeafd16_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:934c224a59086c689be1839b6846a0984370a78a8adc8510fa692f5215bb6182_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:d2bfcb27baf36e569eca4f7c85f458a180d7938616413a4cf8e10cb329e6a150_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:78dabed4a5fc1eb3246778e6ee6e1a543829cf88d0b03f0ccccf101c41a7bdda_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:7c98501fee1297a24caa77d325f6bfd7f91192589f0aa22d47d9766e8219c749_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:905d45518e20ea10daa3a35ea2f2201a6f762a16f9b4829ce37b7396d493ac59_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:91e064bccc3f7320844763fc136cb4c650db40190e01edebe16135bcc00627ac_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:a48dd94d5616183843ba939146b7e4d985210cdd902038ff80ff6df3df3d74ca_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:2b18f2cf31e0914762cc6e99c9797c24a19db69ca08bc9983bc2aacc85ee7024_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:38c9b56aa9c2a5153e01ffc1edb399247ed1937b9382ac4f0fb2beae4c27f69a_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:59f85768c28401783b9475ce21088e3d8fbf6bcd64bb49e3a243c881ac6b546c_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f5b515ecaea7d542ac18ea5a056c99fe84ca2ac25fa3904bdc50a78ecf47541f_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8cdf016c4d61bce4f244415ae192fe1647ef517ba1690f2009b5b8e1104c72a7_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:a69c6f8b091d11c69b6864edc6973c6f5f4515eb3a1923bf51fdb971315c28b0_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ad5f4d1b7f712416bb62785375ce15ef1a5cb3f1a77226899abc8aba32a11623_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c9808efcb221c10d78bdf663e3b5e3d5d281bf59702be049090fc1fa0511b078_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:13f0ec3ce663f6701501e82bbb508549e149588eedb0982729a59d98c88d0ba0_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:43d9679eb3ac8d5287863137f2d698d814a2fbc2fbd6a6aacba11240cd76d40c_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:d23a4d9f0967f53d15fefda63e972e035d23aebe819dd11a6cec9beceacd8997_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:e32fc2e1c50fb1110a835e29e6e360b4127ed84fca98c6276b0b171ccd6cb223_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:1168d897f16b276ba5a6e6170e31fbe1499a980666aed493b2fe27036471ba55_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:15300e7d45a8e2093ef6f33303174f7361de7d9b648f8c9f2cf06f8ba3c56c76_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:6ccd50b0049e4ba0f9d4ea8779b17c6acc95395490579fbaa3b9e9084ac7d314_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e762a9019e4b5afd27331ad519a5b63a2bba3c7eb522533e0932e97c2879a36e_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f4c5323da09593280fc61c2df7fced0f6dc9d3ca322d27069f51334c3d18dae_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:918c66e3ea09e481c38673314021ef1aa6b46afc9dcb115b9d19b6819c5db4a7_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:cc4f2ce5926da93eaf81b0935d3171d81a310ec97e3c08bbbf6599752446810d_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f2bcd5123e4fad7aa4ad54f2819a1beb75d844302aa162e0335c1a0191fe5346_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:27b7eef1c64e432dbe15e92cf745a951aebdc9b379d9c02dbfef6df296c39cd1_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:3cfcd5f9ab8ec42cefd8fab992ecb493a9d14126bdf53ba542ffa4b51fd1684c_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:641354f1d56627f49af3e32ad963616b69aac644ac33d664e7fe29de32fe43b3_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:fa5400aecca1a46c4b98d00c749ea56d6187ced20952f02e4dd1c12e2467117e_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:15a4a74016cdb94aece0bc651edd221b72a9202e5fd414d30ae969707cb5b4c9_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:5361443dee5415dc554d79e2fa23a6b336f1d8ea89fb20a4caa72f70574b939b_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:a152f1e75dd10ba692587a4e702d59cd1c5adcde8b97390f58742270edf85d33_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:f17428eced9d6bec1eaaa1510b68250824d3ace2f66af7f31fbf7327ca11540c_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:42d8388fafeb7c188b03389c92561da4068f91a8cc2343f33d967939342e4f64_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:a86e59cedc67e9fcee3412afa157572a2ab815a3d9e18da03ada502f7313cc80_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b60b4b992b89b82620e5ea618350a97434b272d1f023200dcbeae642612e3569_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ee9d72769b916b350307df495022e04add1fbcd67c1e62757fd316e7f1dd60ae_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:53618eb41967e64660e87e5ad6ce8f5d9803aed9bb48da8898aaefb4d0a4632d_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:65176a94e684c200beef8f25016982ab212bdcd10d31b54a831310e20c026f77_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:a4ca99dc99b864ef805f3e8d997f0567168c809433f16ec23540c0b8ead96216_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:cc31b6212f77e03383e615ee30fd97419806c3841f18d2f6c950d82cdd21e872_ppc64le"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-48385"
        },
        {
          "category": "external",
          "summary": "RHBZ#2378808",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378808"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-48385",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-48385"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-48385",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-48385"
        },
        {
          "category": "external",
          "summary": "https://github.com/git/git/security/advisories/GHSA-m98c-vgpc-9655",
          "url": "https://github.com/git/git/security/advisories/GHSA-m98c-vgpc-9655"
        }
      ],
      "release_date": "2025-07-08T18:23:44.405000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-09-15T16:27:40+00:00",
          "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:2bfe5265856abdd8cb490bde852d4e992f1793684f003d1ef53776fe69d790d7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:32d9568317c55235f75c4d0e1c98de6d4af252cbdd116ed2355025cbaeac862f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:48b99d167a5c54a98e69bba441bb5b70db2ffe065d3f8f8d23ecfed7b813336e_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:8b2b33e91756bbd1c7ed6905e00176b9d55a4e13aee2f84862bc571a8a82f113_ppc64le"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:15847"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/idea-rhel9@sha256:df24ebb239a2cc0d4543309f51a7268c7d524d428a536e0b3443c51089c3f87e_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:0dc291e3dc58d285d054a35b480d14c3912777e14fd643915b8ceabd178ad6bf_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:ac5b3e78470c747377dbc9ecb6e0680d724086c331955ed5471b74d01155ece8_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:cd1ee1d15cafe77bbf8e283cee2cde88dcdfb59c9545867a047cf4b42089aa85_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:d0b17cb5f9a530ca959058fe926b3f5c42539487e23587d51948f49d7a38cf5d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:2bfe5265856abdd8cb490bde852d4e992f1793684f003d1ef53776fe69d790d7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:32d9568317c55235f75c4d0e1c98de6d4af252cbdd116ed2355025cbaeac862f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:48b99d167a5c54a98e69bba441bb5b70db2ffe065d3f8f8d23ecfed7b813336e_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:8b2b33e91756bbd1c7ed6905e00176b9d55a4e13aee2f84862bc571a8a82f113_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:43cdf063e9a6aa5f84233c8bd850a711b5d5fae8a7795803609fec07d189ca05_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:7ad9073c0a768f170cf8d4311ea35ec1caccfdefdf6d1dccbc10ed01cdeafd16_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:934c224a59086c689be1839b6846a0984370a78a8adc8510fa692f5215bb6182_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:d2bfcb27baf36e569eca4f7c85f458a180d7938616413a4cf8e10cb329e6a150_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:78dabed4a5fc1eb3246778e6ee6e1a543829cf88d0b03f0ccccf101c41a7bdda_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:7c98501fee1297a24caa77d325f6bfd7f91192589f0aa22d47d9766e8219c749_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:905d45518e20ea10daa3a35ea2f2201a6f762a16f9b4829ce37b7396d493ac59_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:91e064bccc3f7320844763fc136cb4c650db40190e01edebe16135bcc00627ac_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:a48dd94d5616183843ba939146b7e4d985210cdd902038ff80ff6df3df3d74ca_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:2b18f2cf31e0914762cc6e99c9797c24a19db69ca08bc9983bc2aacc85ee7024_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:38c9b56aa9c2a5153e01ffc1edb399247ed1937b9382ac4f0fb2beae4c27f69a_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:59f85768c28401783b9475ce21088e3d8fbf6bcd64bb49e3a243c881ac6b546c_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f5b515ecaea7d542ac18ea5a056c99fe84ca2ac25fa3904bdc50a78ecf47541f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8cdf016c4d61bce4f244415ae192fe1647ef517ba1690f2009b5b8e1104c72a7_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:a69c6f8b091d11c69b6864edc6973c6f5f4515eb3a1923bf51fdb971315c28b0_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ad5f4d1b7f712416bb62785375ce15ef1a5cb3f1a77226899abc8aba32a11623_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c9808efcb221c10d78bdf663e3b5e3d5d281bf59702be049090fc1fa0511b078_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:13f0ec3ce663f6701501e82bbb508549e149588eedb0982729a59d98c88d0ba0_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:43d9679eb3ac8d5287863137f2d698d814a2fbc2fbd6a6aacba11240cd76d40c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:d23a4d9f0967f53d15fefda63e972e035d23aebe819dd11a6cec9beceacd8997_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:e32fc2e1c50fb1110a835e29e6e360b4127ed84fca98c6276b0b171ccd6cb223_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:1168d897f16b276ba5a6e6170e31fbe1499a980666aed493b2fe27036471ba55_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:15300e7d45a8e2093ef6f33303174f7361de7d9b648f8c9f2cf06f8ba3c56c76_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:6ccd50b0049e4ba0f9d4ea8779b17c6acc95395490579fbaa3b9e9084ac7d314_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e762a9019e4b5afd27331ad519a5b63a2bba3c7eb522533e0932e97c2879a36e_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f4c5323da09593280fc61c2df7fced0f6dc9d3ca322d27069f51334c3d18dae_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:918c66e3ea09e481c38673314021ef1aa6b46afc9dcb115b9d19b6819c5db4a7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:cc4f2ce5926da93eaf81b0935d3171d81a310ec97e3c08bbbf6599752446810d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f2bcd5123e4fad7aa4ad54f2819a1beb75d844302aa162e0335c1a0191fe5346_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:27b7eef1c64e432dbe15e92cf745a951aebdc9b379d9c02dbfef6df296c39cd1_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:3cfcd5f9ab8ec42cefd8fab992ecb493a9d14126bdf53ba542ffa4b51fd1684c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:641354f1d56627f49af3e32ad963616b69aac644ac33d664e7fe29de32fe43b3_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:fa5400aecca1a46c4b98d00c749ea56d6187ced20952f02e4dd1c12e2467117e_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:15a4a74016cdb94aece0bc651edd221b72a9202e5fd414d30ae969707cb5b4c9_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:5361443dee5415dc554d79e2fa23a6b336f1d8ea89fb20a4caa72f70574b939b_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:a152f1e75dd10ba692587a4e702d59cd1c5adcde8b97390f58742270edf85d33_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:f17428eced9d6bec1eaaa1510b68250824d3ace2f66af7f31fbf7327ca11540c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:42d8388fafeb7c188b03389c92561da4068f91a8cc2343f33d967939342e4f64_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:a86e59cedc67e9fcee3412afa157572a2ab815a3d9e18da03ada502f7313cc80_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b60b4b992b89b82620e5ea618350a97434b272d1f023200dcbeae642612e3569_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ee9d72769b916b350307df495022e04add1fbcd67c1e62757fd316e7f1dd60ae_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:53618eb41967e64660e87e5ad6ce8f5d9803aed9bb48da8898aaefb4d0a4632d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:65176a94e684c200beef8f25016982ab212bdcd10d31b54a831310e20c026f77_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:a4ca99dc99b864ef805f3e8d997f0567168c809433f16ec23540c0b8ead96216_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:cc31b6212f77e03383e615ee30fd97419806c3841f18d2f6c950d82cdd21e872_ppc64le"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 8.3,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:L",
            "version": "3.1"
          },
          "products": [
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/idea-rhel9@sha256:df24ebb239a2cc0d4543309f51a7268c7d524d428a536e0b3443c51089c3f87e_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:0dc291e3dc58d285d054a35b480d14c3912777e14fd643915b8ceabd178ad6bf_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:ac5b3e78470c747377dbc9ecb6e0680d724086c331955ed5471b74d01155ece8_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:cd1ee1d15cafe77bbf8e283cee2cde88dcdfb59c9545867a047cf4b42089aa85_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:d0b17cb5f9a530ca959058fe926b3f5c42539487e23587d51948f49d7a38cf5d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:2bfe5265856abdd8cb490bde852d4e992f1793684f003d1ef53776fe69d790d7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:32d9568317c55235f75c4d0e1c98de6d4af252cbdd116ed2355025cbaeac862f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:48b99d167a5c54a98e69bba441bb5b70db2ffe065d3f8f8d23ecfed7b813336e_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:8b2b33e91756bbd1c7ed6905e00176b9d55a4e13aee2f84862bc571a8a82f113_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:43cdf063e9a6aa5f84233c8bd850a711b5d5fae8a7795803609fec07d189ca05_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:7ad9073c0a768f170cf8d4311ea35ec1caccfdefdf6d1dccbc10ed01cdeafd16_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:934c224a59086c689be1839b6846a0984370a78a8adc8510fa692f5215bb6182_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:d2bfcb27baf36e569eca4f7c85f458a180d7938616413a4cf8e10cb329e6a150_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:78dabed4a5fc1eb3246778e6ee6e1a543829cf88d0b03f0ccccf101c41a7bdda_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:7c98501fee1297a24caa77d325f6bfd7f91192589f0aa22d47d9766e8219c749_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:905d45518e20ea10daa3a35ea2f2201a6f762a16f9b4829ce37b7396d493ac59_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:91e064bccc3f7320844763fc136cb4c650db40190e01edebe16135bcc00627ac_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:a48dd94d5616183843ba939146b7e4d985210cdd902038ff80ff6df3df3d74ca_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:2b18f2cf31e0914762cc6e99c9797c24a19db69ca08bc9983bc2aacc85ee7024_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:38c9b56aa9c2a5153e01ffc1edb399247ed1937b9382ac4f0fb2beae4c27f69a_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:59f85768c28401783b9475ce21088e3d8fbf6bcd64bb49e3a243c881ac6b546c_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f5b515ecaea7d542ac18ea5a056c99fe84ca2ac25fa3904bdc50a78ecf47541f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8cdf016c4d61bce4f244415ae192fe1647ef517ba1690f2009b5b8e1104c72a7_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:a69c6f8b091d11c69b6864edc6973c6f5f4515eb3a1923bf51fdb971315c28b0_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ad5f4d1b7f712416bb62785375ce15ef1a5cb3f1a77226899abc8aba32a11623_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c9808efcb221c10d78bdf663e3b5e3d5d281bf59702be049090fc1fa0511b078_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:13f0ec3ce663f6701501e82bbb508549e149588eedb0982729a59d98c88d0ba0_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:43d9679eb3ac8d5287863137f2d698d814a2fbc2fbd6a6aacba11240cd76d40c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:d23a4d9f0967f53d15fefda63e972e035d23aebe819dd11a6cec9beceacd8997_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:e32fc2e1c50fb1110a835e29e6e360b4127ed84fca98c6276b0b171ccd6cb223_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:1168d897f16b276ba5a6e6170e31fbe1499a980666aed493b2fe27036471ba55_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:15300e7d45a8e2093ef6f33303174f7361de7d9b648f8c9f2cf06f8ba3c56c76_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:6ccd50b0049e4ba0f9d4ea8779b17c6acc95395490579fbaa3b9e9084ac7d314_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e762a9019e4b5afd27331ad519a5b63a2bba3c7eb522533e0932e97c2879a36e_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f4c5323da09593280fc61c2df7fced0f6dc9d3ca322d27069f51334c3d18dae_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:918c66e3ea09e481c38673314021ef1aa6b46afc9dcb115b9d19b6819c5db4a7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:cc4f2ce5926da93eaf81b0935d3171d81a310ec97e3c08bbbf6599752446810d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f2bcd5123e4fad7aa4ad54f2819a1beb75d844302aa162e0335c1a0191fe5346_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:27b7eef1c64e432dbe15e92cf745a951aebdc9b379d9c02dbfef6df296c39cd1_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:3cfcd5f9ab8ec42cefd8fab992ecb493a9d14126bdf53ba542ffa4b51fd1684c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:641354f1d56627f49af3e32ad963616b69aac644ac33d664e7fe29de32fe43b3_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:fa5400aecca1a46c4b98d00c749ea56d6187ced20952f02e4dd1c12e2467117e_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:15a4a74016cdb94aece0bc651edd221b72a9202e5fd414d30ae969707cb5b4c9_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:5361443dee5415dc554d79e2fa23a6b336f1d8ea89fb20a4caa72f70574b939b_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:a152f1e75dd10ba692587a4e702d59cd1c5adcde8b97390f58742270edf85d33_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:f17428eced9d6bec1eaaa1510b68250824d3ace2f66af7f31fbf7327ca11540c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:42d8388fafeb7c188b03389c92561da4068f91a8cc2343f33d967939342e4f64_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:a86e59cedc67e9fcee3412afa157572a2ab815a3d9e18da03ada502f7313cc80_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b60b4b992b89b82620e5ea618350a97434b272d1f023200dcbeae642612e3569_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ee9d72769b916b350307df495022e04add1fbcd67c1e62757fd316e7f1dd60ae_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:53618eb41967e64660e87e5ad6ce8f5d9803aed9bb48da8898aaefb4d0a4632d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:65176a94e684c200beef8f25016982ab212bdcd10d31b54a831310e20c026f77_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:a4ca99dc99b864ef805f3e8d997f0567168c809433f16ec23540c0b8ead96216_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:cc31b6212f77e03383e615ee30fd97419806c3841f18d2f6c950d82cdd21e872_ppc64le"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "git: Git arbitrary file writes"
    },
    {
      "cve": "CVE-2025-48387",
      "cwe": {
        "id": "CWE-22",
        "name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
      },
      "discovery_date": "2025-06-02T20:00:45.526571+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/idea-rhel9@sha256:df24ebb239a2cc0d4543309f51a7268c7d524d428a536e0b3443c51089c3f87e_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:0dc291e3dc58d285d054a35b480d14c3912777e14fd643915b8ceabd178ad6bf_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:ac5b3e78470c747377dbc9ecb6e0680d724086c331955ed5471b74d01155ece8_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:cd1ee1d15cafe77bbf8e283cee2cde88dcdfb59c9545867a047cf4b42089aa85_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:d0b17cb5f9a530ca959058fe926b3f5c42539487e23587d51948f49d7a38cf5d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:43cdf063e9a6aa5f84233c8bd850a711b5d5fae8a7795803609fec07d189ca05_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:7ad9073c0a768f170cf8d4311ea35ec1caccfdefdf6d1dccbc10ed01cdeafd16_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:934c224a59086c689be1839b6846a0984370a78a8adc8510fa692f5215bb6182_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:d2bfcb27baf36e569eca4f7c85f458a180d7938616413a4cf8e10cb329e6a150_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:78dabed4a5fc1eb3246778e6ee6e1a543829cf88d0b03f0ccccf101c41a7bdda_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:7c98501fee1297a24caa77d325f6bfd7f91192589f0aa22d47d9766e8219c749_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:905d45518e20ea10daa3a35ea2f2201a6f762a16f9b4829ce37b7396d493ac59_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:91e064bccc3f7320844763fc136cb4c650db40190e01edebe16135bcc00627ac_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:a48dd94d5616183843ba939146b7e4d985210cdd902038ff80ff6df3df3d74ca_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:2b18f2cf31e0914762cc6e99c9797c24a19db69ca08bc9983bc2aacc85ee7024_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:38c9b56aa9c2a5153e01ffc1edb399247ed1937b9382ac4f0fb2beae4c27f69a_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:59f85768c28401783b9475ce21088e3d8fbf6bcd64bb49e3a243c881ac6b546c_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f5b515ecaea7d542ac18ea5a056c99fe84ca2ac25fa3904bdc50a78ecf47541f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8cdf016c4d61bce4f244415ae192fe1647ef517ba1690f2009b5b8e1104c72a7_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:a69c6f8b091d11c69b6864edc6973c6f5f4515eb3a1923bf51fdb971315c28b0_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ad5f4d1b7f712416bb62785375ce15ef1a5cb3f1a77226899abc8aba32a11623_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c9808efcb221c10d78bdf663e3b5e3d5d281bf59702be049090fc1fa0511b078_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:13f0ec3ce663f6701501e82bbb508549e149588eedb0982729a59d98c88d0ba0_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:43d9679eb3ac8d5287863137f2d698d814a2fbc2fbd6a6aacba11240cd76d40c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:d23a4d9f0967f53d15fefda63e972e035d23aebe819dd11a6cec9beceacd8997_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:e32fc2e1c50fb1110a835e29e6e360b4127ed84fca98c6276b0b171ccd6cb223_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:1168d897f16b276ba5a6e6170e31fbe1499a980666aed493b2fe27036471ba55_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:15300e7d45a8e2093ef6f33303174f7361de7d9b648f8c9f2cf06f8ba3c56c76_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:6ccd50b0049e4ba0f9d4ea8779b17c6acc95395490579fbaa3b9e9084ac7d314_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e762a9019e4b5afd27331ad519a5b63a2bba3c7eb522533e0932e97c2879a36e_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f4c5323da09593280fc61c2df7fced0f6dc9d3ca322d27069f51334c3d18dae_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:918c66e3ea09e481c38673314021ef1aa6b46afc9dcb115b9d19b6819c5db4a7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:cc4f2ce5926da93eaf81b0935d3171d81a310ec97e3c08bbbf6599752446810d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f2bcd5123e4fad7aa4ad54f2819a1beb75d844302aa162e0335c1a0191fe5346_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:27b7eef1c64e432dbe15e92cf745a951aebdc9b379d9c02dbfef6df296c39cd1_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:3cfcd5f9ab8ec42cefd8fab992ecb493a9d14126bdf53ba542ffa4b51fd1684c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:641354f1d56627f49af3e32ad963616b69aac644ac33d664e7fe29de32fe43b3_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:fa5400aecca1a46c4b98d00c749ea56d6187ced20952f02e4dd1c12e2467117e_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:15a4a74016cdb94aece0bc651edd221b72a9202e5fd414d30ae969707cb5b4c9_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:5361443dee5415dc554d79e2fa23a6b336f1d8ea89fb20a4caa72f70574b939b_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:a152f1e75dd10ba692587a4e702d59cd1c5adcde8b97390f58742270edf85d33_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:f17428eced9d6bec1eaaa1510b68250824d3ace2f66af7f31fbf7327ca11540c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:42d8388fafeb7c188b03389c92561da4068f91a8cc2343f33d967939342e4f64_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:a86e59cedc67e9fcee3412afa157572a2ab815a3d9e18da03ada502f7313cc80_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b60b4b992b89b82620e5ea618350a97434b272d1f023200dcbeae642612e3569_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ee9d72769b916b350307df495022e04add1fbcd67c1e62757fd316e7f1dd60ae_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:53618eb41967e64660e87e5ad6ce8f5d9803aed9bb48da8898aaefb4d0a4632d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:65176a94e684c200beef8f25016982ab212bdcd10d31b54a831310e20c026f77_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:a4ca99dc99b864ef805f3e8d997f0567168c809433f16ec23540c0b8ead96216_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:cc31b6212f77e03383e615ee30fd97419806c3841f18d2f6c950d82cdd21e872_ppc64le"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2369875"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in tar-fs. This vulnerability allows files to be written outside the intended extraction directory via specially crafted tar archives. The issue arises from insufficient path validation during tarball extraction, potentially enabling path traversal attacks that can overwrite arbitrary files on the system.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "tar-fs: tar-fs has issue where extract can write outside the specified dir with a specific tarball",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability in tar-fs is Important not a moderate flaw, primarily due to its ability to bypass directory confinement during tarball extraction. The core issue\u2014path traversal via crafted archive entries\u2014allows attackers to write files outside the intended extraction directory, potentially overwriting system files, configuration files, or injecting malicious scripts into sensitive locations. Unlike moderate flaws that may require specific conditions or user interaction to exploit, this vulnerability can be triggered automatically in server-side environments that extract user-supplied tar files (e.g., CI/CD systems, deployment tools, or file upload handlers). Its exploitation could lead to remote code execution, privilege escalation, or denial of service, depending on the context.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:2bfe5265856abdd8cb490bde852d4e992f1793684f003d1ef53776fe69d790d7_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:32d9568317c55235f75c4d0e1c98de6d4af252cbdd116ed2355025cbaeac862f_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:48b99d167a5c54a98e69bba441bb5b70db2ffe065d3f8f8d23ecfed7b813336e_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:8b2b33e91756bbd1c7ed6905e00176b9d55a4e13aee2f84862bc571a8a82f113_ppc64le"
        ],
        "known_not_affected": [
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/idea-rhel9@sha256:df24ebb239a2cc0d4543309f51a7268c7d524d428a536e0b3443c51089c3f87e_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:0dc291e3dc58d285d054a35b480d14c3912777e14fd643915b8ceabd178ad6bf_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:ac5b3e78470c747377dbc9ecb6e0680d724086c331955ed5471b74d01155ece8_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:cd1ee1d15cafe77bbf8e283cee2cde88dcdfb59c9545867a047cf4b42089aa85_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:d0b17cb5f9a530ca959058fe926b3f5c42539487e23587d51948f49d7a38cf5d_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:43cdf063e9a6aa5f84233c8bd850a711b5d5fae8a7795803609fec07d189ca05_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:7ad9073c0a768f170cf8d4311ea35ec1caccfdefdf6d1dccbc10ed01cdeafd16_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:934c224a59086c689be1839b6846a0984370a78a8adc8510fa692f5215bb6182_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:d2bfcb27baf36e569eca4f7c85f458a180d7938616413a4cf8e10cb329e6a150_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:78dabed4a5fc1eb3246778e6ee6e1a543829cf88d0b03f0ccccf101c41a7bdda_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:7c98501fee1297a24caa77d325f6bfd7f91192589f0aa22d47d9766e8219c749_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:905d45518e20ea10daa3a35ea2f2201a6f762a16f9b4829ce37b7396d493ac59_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:91e064bccc3f7320844763fc136cb4c650db40190e01edebe16135bcc00627ac_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:a48dd94d5616183843ba939146b7e4d985210cdd902038ff80ff6df3df3d74ca_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:2b18f2cf31e0914762cc6e99c9797c24a19db69ca08bc9983bc2aacc85ee7024_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:38c9b56aa9c2a5153e01ffc1edb399247ed1937b9382ac4f0fb2beae4c27f69a_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:59f85768c28401783b9475ce21088e3d8fbf6bcd64bb49e3a243c881ac6b546c_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f5b515ecaea7d542ac18ea5a056c99fe84ca2ac25fa3904bdc50a78ecf47541f_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8cdf016c4d61bce4f244415ae192fe1647ef517ba1690f2009b5b8e1104c72a7_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:a69c6f8b091d11c69b6864edc6973c6f5f4515eb3a1923bf51fdb971315c28b0_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ad5f4d1b7f712416bb62785375ce15ef1a5cb3f1a77226899abc8aba32a11623_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c9808efcb221c10d78bdf663e3b5e3d5d281bf59702be049090fc1fa0511b078_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:13f0ec3ce663f6701501e82bbb508549e149588eedb0982729a59d98c88d0ba0_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:43d9679eb3ac8d5287863137f2d698d814a2fbc2fbd6a6aacba11240cd76d40c_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:d23a4d9f0967f53d15fefda63e972e035d23aebe819dd11a6cec9beceacd8997_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:e32fc2e1c50fb1110a835e29e6e360b4127ed84fca98c6276b0b171ccd6cb223_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:1168d897f16b276ba5a6e6170e31fbe1499a980666aed493b2fe27036471ba55_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:15300e7d45a8e2093ef6f33303174f7361de7d9b648f8c9f2cf06f8ba3c56c76_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:6ccd50b0049e4ba0f9d4ea8779b17c6acc95395490579fbaa3b9e9084ac7d314_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e762a9019e4b5afd27331ad519a5b63a2bba3c7eb522533e0932e97c2879a36e_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f4c5323da09593280fc61c2df7fced0f6dc9d3ca322d27069f51334c3d18dae_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:918c66e3ea09e481c38673314021ef1aa6b46afc9dcb115b9d19b6819c5db4a7_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:cc4f2ce5926da93eaf81b0935d3171d81a310ec97e3c08bbbf6599752446810d_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f2bcd5123e4fad7aa4ad54f2819a1beb75d844302aa162e0335c1a0191fe5346_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:27b7eef1c64e432dbe15e92cf745a951aebdc9b379d9c02dbfef6df296c39cd1_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:3cfcd5f9ab8ec42cefd8fab992ecb493a9d14126bdf53ba542ffa4b51fd1684c_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:641354f1d56627f49af3e32ad963616b69aac644ac33d664e7fe29de32fe43b3_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:fa5400aecca1a46c4b98d00c749ea56d6187ced20952f02e4dd1c12e2467117e_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:15a4a74016cdb94aece0bc651edd221b72a9202e5fd414d30ae969707cb5b4c9_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:5361443dee5415dc554d79e2fa23a6b336f1d8ea89fb20a4caa72f70574b939b_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:a152f1e75dd10ba692587a4e702d59cd1c5adcde8b97390f58742270edf85d33_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:f17428eced9d6bec1eaaa1510b68250824d3ace2f66af7f31fbf7327ca11540c_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:42d8388fafeb7c188b03389c92561da4068f91a8cc2343f33d967939342e4f64_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:a86e59cedc67e9fcee3412afa157572a2ab815a3d9e18da03ada502f7313cc80_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b60b4b992b89b82620e5ea618350a97434b272d1f023200dcbeae642612e3569_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ee9d72769b916b350307df495022e04add1fbcd67c1e62757fd316e7f1dd60ae_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:53618eb41967e64660e87e5ad6ce8f5d9803aed9bb48da8898aaefb4d0a4632d_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:65176a94e684c200beef8f25016982ab212bdcd10d31b54a831310e20c026f77_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:a4ca99dc99b864ef805f3e8d997f0567168c809433f16ec23540c0b8ead96216_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:cc31b6212f77e03383e615ee30fd97419806c3841f18d2f6c950d82cdd21e872_ppc64le"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-48387"
        },
        {
          "category": "external",
          "summary": "RHBZ#2369875",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2369875"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-48387",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-48387"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-48387",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-48387"
        },
        {
          "category": "external",
          "summary": "https://github.com/mafintosh/tar-fs/commit/647447b572bc135c41035e82ca7b894f02b17f0f",
          "url": "https://github.com/mafintosh/tar-fs/commit/647447b572bc135c41035e82ca7b894f02b17f0f"
        },
        {
          "category": "external",
          "summary": "https://github.com/mafintosh/tar-fs/security/advisories/GHSA-8cj5-5rvv-wf4v",
          "url": "https://github.com/mafintosh/tar-fs/security/advisories/GHSA-8cj5-5rvv-wf4v"
        }
      ],
      "release_date": "2025-06-02T19:20:18.220000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-09-15T16:27:40+00:00",
          "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:2bfe5265856abdd8cb490bde852d4e992f1793684f003d1ef53776fe69d790d7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:32d9568317c55235f75c4d0e1c98de6d4af252cbdd116ed2355025cbaeac862f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:48b99d167a5c54a98e69bba441bb5b70db2ffe065d3f8f8d23ecfed7b813336e_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:8b2b33e91756bbd1c7ed6905e00176b9d55a4e13aee2f84862bc571a8a82f113_ppc64le"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:15847"
        },
        {
          "category": "workaround",
          "details": "Mitigation is either unavailable or does not meet Red Hat Product Security standards for usability, deployment, applicability, or stability.",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/idea-rhel9@sha256:df24ebb239a2cc0d4543309f51a7268c7d524d428a536e0b3443c51089c3f87e_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:0dc291e3dc58d285d054a35b480d14c3912777e14fd643915b8ceabd178ad6bf_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:ac5b3e78470c747377dbc9ecb6e0680d724086c331955ed5471b74d01155ece8_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:cd1ee1d15cafe77bbf8e283cee2cde88dcdfb59c9545867a047cf4b42089aa85_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:d0b17cb5f9a530ca959058fe926b3f5c42539487e23587d51948f49d7a38cf5d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:2bfe5265856abdd8cb490bde852d4e992f1793684f003d1ef53776fe69d790d7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:32d9568317c55235f75c4d0e1c98de6d4af252cbdd116ed2355025cbaeac862f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:48b99d167a5c54a98e69bba441bb5b70db2ffe065d3f8f8d23ecfed7b813336e_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:8b2b33e91756bbd1c7ed6905e00176b9d55a4e13aee2f84862bc571a8a82f113_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:43cdf063e9a6aa5f84233c8bd850a711b5d5fae8a7795803609fec07d189ca05_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:7ad9073c0a768f170cf8d4311ea35ec1caccfdefdf6d1dccbc10ed01cdeafd16_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:934c224a59086c689be1839b6846a0984370a78a8adc8510fa692f5215bb6182_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:d2bfcb27baf36e569eca4f7c85f458a180d7938616413a4cf8e10cb329e6a150_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:78dabed4a5fc1eb3246778e6ee6e1a543829cf88d0b03f0ccccf101c41a7bdda_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:7c98501fee1297a24caa77d325f6bfd7f91192589f0aa22d47d9766e8219c749_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:905d45518e20ea10daa3a35ea2f2201a6f762a16f9b4829ce37b7396d493ac59_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:91e064bccc3f7320844763fc136cb4c650db40190e01edebe16135bcc00627ac_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:a48dd94d5616183843ba939146b7e4d985210cdd902038ff80ff6df3df3d74ca_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:2b18f2cf31e0914762cc6e99c9797c24a19db69ca08bc9983bc2aacc85ee7024_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:38c9b56aa9c2a5153e01ffc1edb399247ed1937b9382ac4f0fb2beae4c27f69a_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:59f85768c28401783b9475ce21088e3d8fbf6bcd64bb49e3a243c881ac6b546c_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f5b515ecaea7d542ac18ea5a056c99fe84ca2ac25fa3904bdc50a78ecf47541f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8cdf016c4d61bce4f244415ae192fe1647ef517ba1690f2009b5b8e1104c72a7_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:a69c6f8b091d11c69b6864edc6973c6f5f4515eb3a1923bf51fdb971315c28b0_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ad5f4d1b7f712416bb62785375ce15ef1a5cb3f1a77226899abc8aba32a11623_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c9808efcb221c10d78bdf663e3b5e3d5d281bf59702be049090fc1fa0511b078_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:13f0ec3ce663f6701501e82bbb508549e149588eedb0982729a59d98c88d0ba0_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:43d9679eb3ac8d5287863137f2d698d814a2fbc2fbd6a6aacba11240cd76d40c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:d23a4d9f0967f53d15fefda63e972e035d23aebe819dd11a6cec9beceacd8997_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:e32fc2e1c50fb1110a835e29e6e360b4127ed84fca98c6276b0b171ccd6cb223_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:1168d897f16b276ba5a6e6170e31fbe1499a980666aed493b2fe27036471ba55_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:15300e7d45a8e2093ef6f33303174f7361de7d9b648f8c9f2cf06f8ba3c56c76_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:6ccd50b0049e4ba0f9d4ea8779b17c6acc95395490579fbaa3b9e9084ac7d314_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e762a9019e4b5afd27331ad519a5b63a2bba3c7eb522533e0932e97c2879a36e_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f4c5323da09593280fc61c2df7fced0f6dc9d3ca322d27069f51334c3d18dae_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:918c66e3ea09e481c38673314021ef1aa6b46afc9dcb115b9d19b6819c5db4a7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:cc4f2ce5926da93eaf81b0935d3171d81a310ec97e3c08bbbf6599752446810d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f2bcd5123e4fad7aa4ad54f2819a1beb75d844302aa162e0335c1a0191fe5346_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:27b7eef1c64e432dbe15e92cf745a951aebdc9b379d9c02dbfef6df296c39cd1_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:3cfcd5f9ab8ec42cefd8fab992ecb493a9d14126bdf53ba542ffa4b51fd1684c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:641354f1d56627f49af3e32ad963616b69aac644ac33d664e7fe29de32fe43b3_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:fa5400aecca1a46c4b98d00c749ea56d6187ced20952f02e4dd1c12e2467117e_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:15a4a74016cdb94aece0bc651edd221b72a9202e5fd414d30ae969707cb5b4c9_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:5361443dee5415dc554d79e2fa23a6b336f1d8ea89fb20a4caa72f70574b939b_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:a152f1e75dd10ba692587a4e702d59cd1c5adcde8b97390f58742270edf85d33_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:f17428eced9d6bec1eaaa1510b68250824d3ace2f66af7f31fbf7327ca11540c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:42d8388fafeb7c188b03389c92561da4068f91a8cc2343f33d967939342e4f64_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:a86e59cedc67e9fcee3412afa157572a2ab815a3d9e18da03ada502f7313cc80_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b60b4b992b89b82620e5ea618350a97434b272d1f023200dcbeae642612e3569_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ee9d72769b916b350307df495022e04add1fbcd67c1e62757fd316e7f1dd60ae_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:53618eb41967e64660e87e5ad6ce8f5d9803aed9bb48da8898aaefb4d0a4632d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:65176a94e684c200beef8f25016982ab212bdcd10d31b54a831310e20c026f77_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:a4ca99dc99b864ef805f3e8d997f0567168c809433f16ec23540c0b8ead96216_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:cc31b6212f77e03383e615ee30fd97419806c3841f18d2f6c950d82cdd21e872_ppc64le"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 7.3,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/idea-rhel9@sha256:df24ebb239a2cc0d4543309f51a7268c7d524d428a536e0b3443c51089c3f87e_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:0dc291e3dc58d285d054a35b480d14c3912777e14fd643915b8ceabd178ad6bf_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:ac5b3e78470c747377dbc9ecb6e0680d724086c331955ed5471b74d01155ece8_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:cd1ee1d15cafe77bbf8e283cee2cde88dcdfb59c9545867a047cf4b42089aa85_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:d0b17cb5f9a530ca959058fe926b3f5c42539487e23587d51948f49d7a38cf5d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:2bfe5265856abdd8cb490bde852d4e992f1793684f003d1ef53776fe69d790d7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:32d9568317c55235f75c4d0e1c98de6d4af252cbdd116ed2355025cbaeac862f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:48b99d167a5c54a98e69bba441bb5b70db2ffe065d3f8f8d23ecfed7b813336e_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:8b2b33e91756bbd1c7ed6905e00176b9d55a4e13aee2f84862bc571a8a82f113_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:43cdf063e9a6aa5f84233c8bd850a711b5d5fae8a7795803609fec07d189ca05_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:7ad9073c0a768f170cf8d4311ea35ec1caccfdefdf6d1dccbc10ed01cdeafd16_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:934c224a59086c689be1839b6846a0984370a78a8adc8510fa692f5215bb6182_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:d2bfcb27baf36e569eca4f7c85f458a180d7938616413a4cf8e10cb329e6a150_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:78dabed4a5fc1eb3246778e6ee6e1a543829cf88d0b03f0ccccf101c41a7bdda_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:7c98501fee1297a24caa77d325f6bfd7f91192589f0aa22d47d9766e8219c749_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:905d45518e20ea10daa3a35ea2f2201a6f762a16f9b4829ce37b7396d493ac59_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:91e064bccc3f7320844763fc136cb4c650db40190e01edebe16135bcc00627ac_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:a48dd94d5616183843ba939146b7e4d985210cdd902038ff80ff6df3df3d74ca_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:2b18f2cf31e0914762cc6e99c9797c24a19db69ca08bc9983bc2aacc85ee7024_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:38c9b56aa9c2a5153e01ffc1edb399247ed1937b9382ac4f0fb2beae4c27f69a_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:59f85768c28401783b9475ce21088e3d8fbf6bcd64bb49e3a243c881ac6b546c_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f5b515ecaea7d542ac18ea5a056c99fe84ca2ac25fa3904bdc50a78ecf47541f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8cdf016c4d61bce4f244415ae192fe1647ef517ba1690f2009b5b8e1104c72a7_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:a69c6f8b091d11c69b6864edc6973c6f5f4515eb3a1923bf51fdb971315c28b0_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ad5f4d1b7f712416bb62785375ce15ef1a5cb3f1a77226899abc8aba32a11623_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c9808efcb221c10d78bdf663e3b5e3d5d281bf59702be049090fc1fa0511b078_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:13f0ec3ce663f6701501e82bbb508549e149588eedb0982729a59d98c88d0ba0_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:43d9679eb3ac8d5287863137f2d698d814a2fbc2fbd6a6aacba11240cd76d40c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:d23a4d9f0967f53d15fefda63e972e035d23aebe819dd11a6cec9beceacd8997_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:e32fc2e1c50fb1110a835e29e6e360b4127ed84fca98c6276b0b171ccd6cb223_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:1168d897f16b276ba5a6e6170e31fbe1499a980666aed493b2fe27036471ba55_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:15300e7d45a8e2093ef6f33303174f7361de7d9b648f8c9f2cf06f8ba3c56c76_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:6ccd50b0049e4ba0f9d4ea8779b17c6acc95395490579fbaa3b9e9084ac7d314_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e762a9019e4b5afd27331ad519a5b63a2bba3c7eb522533e0932e97c2879a36e_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f4c5323da09593280fc61c2df7fced0f6dc9d3ca322d27069f51334c3d18dae_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:918c66e3ea09e481c38673314021ef1aa6b46afc9dcb115b9d19b6819c5db4a7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:cc4f2ce5926da93eaf81b0935d3171d81a310ec97e3c08bbbf6599752446810d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f2bcd5123e4fad7aa4ad54f2819a1beb75d844302aa162e0335c1a0191fe5346_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:27b7eef1c64e432dbe15e92cf745a951aebdc9b379d9c02dbfef6df296c39cd1_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:3cfcd5f9ab8ec42cefd8fab992ecb493a9d14126bdf53ba542ffa4b51fd1684c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:641354f1d56627f49af3e32ad963616b69aac644ac33d664e7fe29de32fe43b3_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:fa5400aecca1a46c4b98d00c749ea56d6187ced20952f02e4dd1c12e2467117e_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:15a4a74016cdb94aece0bc651edd221b72a9202e5fd414d30ae969707cb5b4c9_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:5361443dee5415dc554d79e2fa23a6b336f1d8ea89fb20a4caa72f70574b939b_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:a152f1e75dd10ba692587a4e702d59cd1c5adcde8b97390f58742270edf85d33_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:f17428eced9d6bec1eaaa1510b68250824d3ace2f66af7f31fbf7327ca11540c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:42d8388fafeb7c188b03389c92561da4068f91a8cc2343f33d967939342e4f64_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:a86e59cedc67e9fcee3412afa157572a2ab815a3d9e18da03ada502f7313cc80_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b60b4b992b89b82620e5ea618350a97434b272d1f023200dcbeae642612e3569_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ee9d72769b916b350307df495022e04add1fbcd67c1e62757fd316e7f1dd60ae_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:53618eb41967e64660e87e5ad6ce8f5d9803aed9bb48da8898aaefb4d0a4632d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:65176a94e684c200beef8f25016982ab212bdcd10d31b54a831310e20c026f77_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:a4ca99dc99b864ef805f3e8d997f0567168c809433f16ec23540c0b8ead96216_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:cc31b6212f77e03383e615ee30fd97419806c3841f18d2f6c950d82cdd21e872_ppc64le"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "tar-fs: tar-fs has issue where extract can write outside the specified dir with a specific tarball"
    },
    {
      "cve": "CVE-2025-52999",
      "cwe": {
        "id": "CWE-121",
        "name": "Stack-based Buffer Overflow"
      },
      "discovery_date": "2025-06-25T18:00:54.693716+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/idea-rhel9@sha256:df24ebb239a2cc0d4543309f51a7268c7d524d428a536e0b3443c51089c3f87e_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:0dc291e3dc58d285d054a35b480d14c3912777e14fd643915b8ceabd178ad6bf_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:ac5b3e78470c747377dbc9ecb6e0680d724086c331955ed5471b74d01155ece8_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:cd1ee1d15cafe77bbf8e283cee2cde88dcdfb59c9545867a047cf4b42089aa85_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:d0b17cb5f9a530ca959058fe926b3f5c42539487e23587d51948f49d7a38cf5d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:2bfe5265856abdd8cb490bde852d4e992f1793684f003d1ef53776fe69d790d7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:32d9568317c55235f75c4d0e1c98de6d4af252cbdd116ed2355025cbaeac862f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:48b99d167a5c54a98e69bba441bb5b70db2ffe065d3f8f8d23ecfed7b813336e_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:8b2b33e91756bbd1c7ed6905e00176b9d55a4e13aee2f84862bc571a8a82f113_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:43cdf063e9a6aa5f84233c8bd850a711b5d5fae8a7795803609fec07d189ca05_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:7ad9073c0a768f170cf8d4311ea35ec1caccfdefdf6d1dccbc10ed01cdeafd16_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:934c224a59086c689be1839b6846a0984370a78a8adc8510fa692f5215bb6182_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:d2bfcb27baf36e569eca4f7c85f458a180d7938616413a4cf8e10cb329e6a150_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:78dabed4a5fc1eb3246778e6ee6e1a543829cf88d0b03f0ccccf101c41a7bdda_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:7c98501fee1297a24caa77d325f6bfd7f91192589f0aa22d47d9766e8219c749_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:905d45518e20ea10daa3a35ea2f2201a6f762a16f9b4829ce37b7396d493ac59_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:91e064bccc3f7320844763fc136cb4c650db40190e01edebe16135bcc00627ac_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:a48dd94d5616183843ba939146b7e4d985210cdd902038ff80ff6df3df3d74ca_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:2b18f2cf31e0914762cc6e99c9797c24a19db69ca08bc9983bc2aacc85ee7024_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:38c9b56aa9c2a5153e01ffc1edb399247ed1937b9382ac4f0fb2beae4c27f69a_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:59f85768c28401783b9475ce21088e3d8fbf6bcd64bb49e3a243c881ac6b546c_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f5b515ecaea7d542ac18ea5a056c99fe84ca2ac25fa3904bdc50a78ecf47541f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8cdf016c4d61bce4f244415ae192fe1647ef517ba1690f2009b5b8e1104c72a7_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:a69c6f8b091d11c69b6864edc6973c6f5f4515eb3a1923bf51fdb971315c28b0_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ad5f4d1b7f712416bb62785375ce15ef1a5cb3f1a77226899abc8aba32a11623_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c9808efcb221c10d78bdf663e3b5e3d5d281bf59702be049090fc1fa0511b078_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:13f0ec3ce663f6701501e82bbb508549e149588eedb0982729a59d98c88d0ba0_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:43d9679eb3ac8d5287863137f2d698d814a2fbc2fbd6a6aacba11240cd76d40c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:d23a4d9f0967f53d15fefda63e972e035d23aebe819dd11a6cec9beceacd8997_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:e32fc2e1c50fb1110a835e29e6e360b4127ed84fca98c6276b0b171ccd6cb223_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:1168d897f16b276ba5a6e6170e31fbe1499a980666aed493b2fe27036471ba55_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:15300e7d45a8e2093ef6f33303174f7361de7d9b648f8c9f2cf06f8ba3c56c76_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:6ccd50b0049e4ba0f9d4ea8779b17c6acc95395490579fbaa3b9e9084ac7d314_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e762a9019e4b5afd27331ad519a5b63a2bba3c7eb522533e0932e97c2879a36e_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f4c5323da09593280fc61c2df7fced0f6dc9d3ca322d27069f51334c3d18dae_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:918c66e3ea09e481c38673314021ef1aa6b46afc9dcb115b9d19b6819c5db4a7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:cc4f2ce5926da93eaf81b0935d3171d81a310ec97e3c08bbbf6599752446810d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f2bcd5123e4fad7aa4ad54f2819a1beb75d844302aa162e0335c1a0191fe5346_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:15a4a74016cdb94aece0bc651edd221b72a9202e5fd414d30ae969707cb5b4c9_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:5361443dee5415dc554d79e2fa23a6b336f1d8ea89fb20a4caa72f70574b939b_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:a152f1e75dd10ba692587a4e702d59cd1c5adcde8b97390f58742270edf85d33_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:f17428eced9d6bec1eaaa1510b68250824d3ace2f66af7f31fbf7327ca11540c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:42d8388fafeb7c188b03389c92561da4068f91a8cc2343f33d967939342e4f64_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:a86e59cedc67e9fcee3412afa157572a2ab815a3d9e18da03ada502f7313cc80_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b60b4b992b89b82620e5ea618350a97434b272d1f023200dcbeae642612e3569_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ee9d72769b916b350307df495022e04add1fbcd67c1e62757fd316e7f1dd60ae_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:53618eb41967e64660e87e5ad6ce8f5d9803aed9bb48da8898aaefb4d0a4632d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:65176a94e684c200beef8f25016982ab212bdcd10d31b54a831310e20c026f77_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:a4ca99dc99b864ef805f3e8d997f0567168c809433f16ec23540c0b8ead96216_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:cc31b6212f77e03383e615ee30fd97419806c3841f18d2f6c950d82cdd21e872_ppc64le"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2374804"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A nested data handling flaw was found in Jackson Core. When parsing particularly deeply nested data structures, a StackoverflowError can occur.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "com.fasterxml.jackson.core/jackson-core: jackson-core Potential StackoverflowError",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:27b7eef1c64e432dbe15e92cf745a951aebdc9b379d9c02dbfef6df296c39cd1_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:3cfcd5f9ab8ec42cefd8fab992ecb493a9d14126bdf53ba542ffa4b51fd1684c_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:641354f1d56627f49af3e32ad963616b69aac644ac33d664e7fe29de32fe43b3_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:fa5400aecca1a46c4b98d00c749ea56d6187ced20952f02e4dd1c12e2467117e_ppc64le"
        ],
        "known_not_affected": [
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/idea-rhel9@sha256:df24ebb239a2cc0d4543309f51a7268c7d524d428a536e0b3443c51089c3f87e_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:0dc291e3dc58d285d054a35b480d14c3912777e14fd643915b8ceabd178ad6bf_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:ac5b3e78470c747377dbc9ecb6e0680d724086c331955ed5471b74d01155ece8_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:cd1ee1d15cafe77bbf8e283cee2cde88dcdfb59c9545867a047cf4b42089aa85_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:d0b17cb5f9a530ca959058fe926b3f5c42539487e23587d51948f49d7a38cf5d_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:2bfe5265856abdd8cb490bde852d4e992f1793684f003d1ef53776fe69d790d7_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:32d9568317c55235f75c4d0e1c98de6d4af252cbdd116ed2355025cbaeac862f_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:48b99d167a5c54a98e69bba441bb5b70db2ffe065d3f8f8d23ecfed7b813336e_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:8b2b33e91756bbd1c7ed6905e00176b9d55a4e13aee2f84862bc571a8a82f113_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:43cdf063e9a6aa5f84233c8bd850a711b5d5fae8a7795803609fec07d189ca05_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:7ad9073c0a768f170cf8d4311ea35ec1caccfdefdf6d1dccbc10ed01cdeafd16_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:934c224a59086c689be1839b6846a0984370a78a8adc8510fa692f5215bb6182_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:d2bfcb27baf36e569eca4f7c85f458a180d7938616413a4cf8e10cb329e6a150_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:78dabed4a5fc1eb3246778e6ee6e1a543829cf88d0b03f0ccccf101c41a7bdda_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:7c98501fee1297a24caa77d325f6bfd7f91192589f0aa22d47d9766e8219c749_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:905d45518e20ea10daa3a35ea2f2201a6f762a16f9b4829ce37b7396d493ac59_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:91e064bccc3f7320844763fc136cb4c650db40190e01edebe16135bcc00627ac_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:a48dd94d5616183843ba939146b7e4d985210cdd902038ff80ff6df3df3d74ca_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:2b18f2cf31e0914762cc6e99c9797c24a19db69ca08bc9983bc2aacc85ee7024_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:38c9b56aa9c2a5153e01ffc1edb399247ed1937b9382ac4f0fb2beae4c27f69a_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:59f85768c28401783b9475ce21088e3d8fbf6bcd64bb49e3a243c881ac6b546c_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f5b515ecaea7d542ac18ea5a056c99fe84ca2ac25fa3904bdc50a78ecf47541f_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8cdf016c4d61bce4f244415ae192fe1647ef517ba1690f2009b5b8e1104c72a7_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:a69c6f8b091d11c69b6864edc6973c6f5f4515eb3a1923bf51fdb971315c28b0_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ad5f4d1b7f712416bb62785375ce15ef1a5cb3f1a77226899abc8aba32a11623_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c9808efcb221c10d78bdf663e3b5e3d5d281bf59702be049090fc1fa0511b078_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:13f0ec3ce663f6701501e82bbb508549e149588eedb0982729a59d98c88d0ba0_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:43d9679eb3ac8d5287863137f2d698d814a2fbc2fbd6a6aacba11240cd76d40c_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:d23a4d9f0967f53d15fefda63e972e035d23aebe819dd11a6cec9beceacd8997_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:e32fc2e1c50fb1110a835e29e6e360b4127ed84fca98c6276b0b171ccd6cb223_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:1168d897f16b276ba5a6e6170e31fbe1499a980666aed493b2fe27036471ba55_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:15300e7d45a8e2093ef6f33303174f7361de7d9b648f8c9f2cf06f8ba3c56c76_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:6ccd50b0049e4ba0f9d4ea8779b17c6acc95395490579fbaa3b9e9084ac7d314_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e762a9019e4b5afd27331ad519a5b63a2bba3c7eb522533e0932e97c2879a36e_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f4c5323da09593280fc61c2df7fced0f6dc9d3ca322d27069f51334c3d18dae_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:918c66e3ea09e481c38673314021ef1aa6b46afc9dcb115b9d19b6819c5db4a7_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:cc4f2ce5926da93eaf81b0935d3171d81a310ec97e3c08bbbf6599752446810d_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f2bcd5123e4fad7aa4ad54f2819a1beb75d844302aa162e0335c1a0191fe5346_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:15a4a74016cdb94aece0bc651edd221b72a9202e5fd414d30ae969707cb5b4c9_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:5361443dee5415dc554d79e2fa23a6b336f1d8ea89fb20a4caa72f70574b939b_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:a152f1e75dd10ba692587a4e702d59cd1c5adcde8b97390f58742270edf85d33_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:f17428eced9d6bec1eaaa1510b68250824d3ace2f66af7f31fbf7327ca11540c_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:42d8388fafeb7c188b03389c92561da4068f91a8cc2343f33d967939342e4f64_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:a86e59cedc67e9fcee3412afa157572a2ab815a3d9e18da03ada502f7313cc80_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b60b4b992b89b82620e5ea618350a97434b272d1f023200dcbeae642612e3569_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ee9d72769b916b350307df495022e04add1fbcd67c1e62757fd316e7f1dd60ae_ppc64le",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:53618eb41967e64660e87e5ad6ce8f5d9803aed9bb48da8898aaefb4d0a4632d_arm64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:65176a94e684c200beef8f25016982ab212bdcd10d31b54a831310e20c026f77_amd64",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:a4ca99dc99b864ef805f3e8d997f0567168c809433f16ec23540c0b8ead96216_s390x",
          "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:cc31b6212f77e03383e615ee30fd97419806c3841f18d2f6c950d82cdd21e872_ppc64le"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-52999"
        },
        {
          "category": "external",
          "summary": "RHBZ#2374804",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2374804"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-52999",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-52999"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-52999",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-52999"
        },
        {
          "category": "external",
          "summary": "https://github.com/FasterXML/jackson-core/pull/943",
          "url": "https://github.com/FasterXML/jackson-core/pull/943"
        },
        {
          "category": "external",
          "summary": "https://github.com/FasterXML/jackson-core/security/advisories/GHSA-h46c-h94j-95f3",
          "url": "https://github.com/FasterXML/jackson-core/security/advisories/GHSA-h46c-h94j-95f3"
        }
      ],
      "release_date": "2025-06-25T17:02:57.428000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-09-15T16:27:40+00:00",
          "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:27b7eef1c64e432dbe15e92cf745a951aebdc9b379d9c02dbfef6df296c39cd1_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:3cfcd5f9ab8ec42cefd8fab992ecb493a9d14126bdf53ba542ffa4b51fd1684c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:641354f1d56627f49af3e32ad963616b69aac644ac33d664e7fe29de32fe43b3_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:fa5400aecca1a46c4b98d00c749ea56d6187ced20952f02e4dd1c12e2467117e_ppc64le"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:15847"
        },
        {
          "category": "workaround",
          "details": "To mitigate this vulnerability, the recommendation is to avoid parsing input files from untrusted sources that may have excessively deep nested data structures; anything with a depth over 1000.",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/idea-rhel9@sha256:df24ebb239a2cc0d4543309f51a7268c7d524d428a536e0b3443c51089c3f87e_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:0dc291e3dc58d285d054a35b480d14c3912777e14fd643915b8ceabd178ad6bf_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:ac5b3e78470c747377dbc9ecb6e0680d724086c331955ed5471b74d01155ece8_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:cd1ee1d15cafe77bbf8e283cee2cde88dcdfb59c9545867a047cf4b42089aa85_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:d0b17cb5f9a530ca959058fe926b3f5c42539487e23587d51948f49d7a38cf5d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:2bfe5265856abdd8cb490bde852d4e992f1793684f003d1ef53776fe69d790d7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:32d9568317c55235f75c4d0e1c98de6d4af252cbdd116ed2355025cbaeac862f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:48b99d167a5c54a98e69bba441bb5b70db2ffe065d3f8f8d23ecfed7b813336e_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:8b2b33e91756bbd1c7ed6905e00176b9d55a4e13aee2f84862bc571a8a82f113_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:43cdf063e9a6aa5f84233c8bd850a711b5d5fae8a7795803609fec07d189ca05_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:7ad9073c0a768f170cf8d4311ea35ec1caccfdefdf6d1dccbc10ed01cdeafd16_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:934c224a59086c689be1839b6846a0984370a78a8adc8510fa692f5215bb6182_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:d2bfcb27baf36e569eca4f7c85f458a180d7938616413a4cf8e10cb329e6a150_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:78dabed4a5fc1eb3246778e6ee6e1a543829cf88d0b03f0ccccf101c41a7bdda_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:7c98501fee1297a24caa77d325f6bfd7f91192589f0aa22d47d9766e8219c749_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:905d45518e20ea10daa3a35ea2f2201a6f762a16f9b4829ce37b7396d493ac59_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:91e064bccc3f7320844763fc136cb4c650db40190e01edebe16135bcc00627ac_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:a48dd94d5616183843ba939146b7e4d985210cdd902038ff80ff6df3df3d74ca_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:2b18f2cf31e0914762cc6e99c9797c24a19db69ca08bc9983bc2aacc85ee7024_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:38c9b56aa9c2a5153e01ffc1edb399247ed1937b9382ac4f0fb2beae4c27f69a_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:59f85768c28401783b9475ce21088e3d8fbf6bcd64bb49e3a243c881ac6b546c_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f5b515ecaea7d542ac18ea5a056c99fe84ca2ac25fa3904bdc50a78ecf47541f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8cdf016c4d61bce4f244415ae192fe1647ef517ba1690f2009b5b8e1104c72a7_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:a69c6f8b091d11c69b6864edc6973c6f5f4515eb3a1923bf51fdb971315c28b0_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ad5f4d1b7f712416bb62785375ce15ef1a5cb3f1a77226899abc8aba32a11623_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c9808efcb221c10d78bdf663e3b5e3d5d281bf59702be049090fc1fa0511b078_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:13f0ec3ce663f6701501e82bbb508549e149588eedb0982729a59d98c88d0ba0_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:43d9679eb3ac8d5287863137f2d698d814a2fbc2fbd6a6aacba11240cd76d40c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:d23a4d9f0967f53d15fefda63e972e035d23aebe819dd11a6cec9beceacd8997_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:e32fc2e1c50fb1110a835e29e6e360b4127ed84fca98c6276b0b171ccd6cb223_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:1168d897f16b276ba5a6e6170e31fbe1499a980666aed493b2fe27036471ba55_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:15300e7d45a8e2093ef6f33303174f7361de7d9b648f8c9f2cf06f8ba3c56c76_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:6ccd50b0049e4ba0f9d4ea8779b17c6acc95395490579fbaa3b9e9084ac7d314_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e762a9019e4b5afd27331ad519a5b63a2bba3c7eb522533e0932e97c2879a36e_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f4c5323da09593280fc61c2df7fced0f6dc9d3ca322d27069f51334c3d18dae_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:918c66e3ea09e481c38673314021ef1aa6b46afc9dcb115b9d19b6819c5db4a7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:cc4f2ce5926da93eaf81b0935d3171d81a310ec97e3c08bbbf6599752446810d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f2bcd5123e4fad7aa4ad54f2819a1beb75d844302aa162e0335c1a0191fe5346_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:27b7eef1c64e432dbe15e92cf745a951aebdc9b379d9c02dbfef6df296c39cd1_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:3cfcd5f9ab8ec42cefd8fab992ecb493a9d14126bdf53ba542ffa4b51fd1684c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:641354f1d56627f49af3e32ad963616b69aac644ac33d664e7fe29de32fe43b3_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:fa5400aecca1a46c4b98d00c749ea56d6187ced20952f02e4dd1c12e2467117e_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:15a4a74016cdb94aece0bc651edd221b72a9202e5fd414d30ae969707cb5b4c9_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:5361443dee5415dc554d79e2fa23a6b336f1d8ea89fb20a4caa72f70574b939b_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:a152f1e75dd10ba692587a4e702d59cd1c5adcde8b97390f58742270edf85d33_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:f17428eced9d6bec1eaaa1510b68250824d3ace2f66af7f31fbf7327ca11540c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:42d8388fafeb7c188b03389c92561da4068f91a8cc2343f33d967939342e4f64_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:a86e59cedc67e9fcee3412afa157572a2ab815a3d9e18da03ada502f7313cc80_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b60b4b992b89b82620e5ea618350a97434b272d1f023200dcbeae642612e3569_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ee9d72769b916b350307df495022e04add1fbcd67c1e62757fd316e7f1dd60ae_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:53618eb41967e64660e87e5ad6ce8f5d9803aed9bb48da8898aaefb4d0a4632d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:65176a94e684c200beef8f25016982ab212bdcd10d31b54a831310e20c026f77_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:a4ca99dc99b864ef805f3e8d997f0567168c809433f16ec23540c0b8ead96216_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:cc31b6212f77e03383e615ee30fd97419806c3841f18d2f6c950d82cdd21e872_ppc64le"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/idea-rhel9@sha256:df24ebb239a2cc0d4543309f51a7268c7d524d428a536e0b3443c51089c3f87e_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:0dc291e3dc58d285d054a35b480d14c3912777e14fd643915b8ceabd178ad6bf_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:ac5b3e78470c747377dbc9ecb6e0680d724086c331955ed5471b74d01155ece8_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:cd1ee1d15cafe77bbf8e283cee2cde88dcdfb59c9545867a047cf4b42089aa85_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9@sha256:d0b17cb5f9a530ca959058fe926b3f5c42539487e23587d51948f49d7a38cf5d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:2bfe5265856abdd8cb490bde852d4e992f1793684f003d1ef53776fe69d790d7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:32d9568317c55235f75c4d0e1c98de6d4af252cbdd116ed2355025cbaeac862f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:48b99d167a5c54a98e69bba441bb5b70db2ffe065d3f8f8d23ecfed7b813336e_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/code-rhel9@sha256:8b2b33e91756bbd1c7ed6905e00176b9d55a4e13aee2f84862bc571a8a82f113_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:43cdf063e9a6aa5f84233c8bd850a711b5d5fae8a7795803609fec07d189ca05_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:7ad9073c0a768f170cf8d4311ea35ec1caccfdefdf6d1dccbc10ed01cdeafd16_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:934c224a59086c689be1839b6846a0984370a78a8adc8510fa692f5215bb6182_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/configbump-rhel9@sha256:d2bfcb27baf36e569eca4f7c85f458a180d7938616413a4cf8e10cb329e6a150_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:78dabed4a5fc1eb3246778e6ee6e1a543829cf88d0b03f0ccccf101c41a7bdda_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:7c98501fee1297a24caa77d325f6bfd7f91192589f0aa22d47d9766e8219c749_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:905d45518e20ea10daa3a35ea2f2201a6f762a16f9b4829ce37b7396d493ac59_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/dashboard-rhel9@sha256:91e064bccc3f7320844763fc136cb4c650db40190e01edebe16135bcc00627ac_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:a48dd94d5616183843ba939146b7e4d985210cdd902038ff80ff6df3df3d74ca_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:2b18f2cf31e0914762cc6e99c9797c24a19db69ca08bc9983bc2aacc85ee7024_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:38c9b56aa9c2a5153e01ffc1edb399247ed1937b9382ac4f0fb2beae4c27f69a_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:59f85768c28401783b9475ce21088e3d8fbf6bcd64bb49e3a243c881ac6b546c_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f5b515ecaea7d542ac18ea5a056c99fe84ca2ac25fa3904bdc50a78ecf47541f_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:8cdf016c4d61bce4f244415ae192fe1647ef517ba1690f2009b5b8e1104c72a7_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:a69c6f8b091d11c69b6864edc6973c6f5f4515eb3a1923bf51fdb971315c28b0_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ad5f4d1b7f712416bb62785375ce15ef1a5cb3f1a77226899abc8aba32a11623_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c9808efcb221c10d78bdf663e3b5e3d5d281bf59702be049090fc1fa0511b078_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:13f0ec3ce663f6701501e82bbb508549e149588eedb0982729a59d98c88d0ba0_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:43d9679eb3ac8d5287863137f2d698d814a2fbc2fbd6a6aacba11240cd76d40c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:d23a4d9f0967f53d15fefda63e972e035d23aebe819dd11a6cec9beceacd8997_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/machineexec-rhel9@sha256:e32fc2e1c50fb1110a835e29e6e360b4127ed84fca98c6276b0b171ccd6cb223_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:1168d897f16b276ba5a6e6170e31fbe1499a980666aed493b2fe27036471ba55_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:15300e7d45a8e2093ef6f33303174f7361de7d9b648f8c9f2cf06f8ba3c56c76_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:6ccd50b0049e4ba0f9d4ea8779b17c6acc95395490579fbaa3b9e9084ac7d314_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e762a9019e4b5afd27331ad519a5b63a2bba3c7eb522533e0932e97c2879a36e_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f4c5323da09593280fc61c2df7fced0f6dc9d3ca322d27069f51334c3d18dae_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:918c66e3ea09e481c38673314021ef1aa6b46afc9dcb115b9d19b6819c5db4a7_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:cc4f2ce5926da93eaf81b0935d3171d81a310ec97e3c08bbbf6599752446810d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f2bcd5123e4fad7aa4ad54f2819a1beb75d844302aa162e0335c1a0191fe5346_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:27b7eef1c64e432dbe15e92cf745a951aebdc9b379d9c02dbfef6df296c39cd1_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:3cfcd5f9ab8ec42cefd8fab992ecb493a9d14126bdf53ba542ffa4b51fd1684c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:641354f1d56627f49af3e32ad963616b69aac644ac33d664e7fe29de32fe43b3_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/server-rhel9@sha256:fa5400aecca1a46c4b98d00c749ea56d6187ced20952f02e4dd1c12e2467117e_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:15a4a74016cdb94aece0bc651edd221b72a9202e5fd414d30ae969707cb5b4c9_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:5361443dee5415dc554d79e2fa23a6b336f1d8ea89fb20a4caa72f70574b939b_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:a152f1e75dd10ba692587a4e702d59cd1c5adcde8b97390f58742270edf85d33_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/traefik-rhel9@sha256:f17428eced9d6bec1eaaa1510b68250824d3ace2f66af7f31fbf7327ca11540c_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:42d8388fafeb7c188b03389c92561da4068f91a8cc2343f33d967939342e4f64_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:a86e59cedc67e9fcee3412afa157572a2ab815a3d9e18da03ada502f7313cc80_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b60b4b992b89b82620e5ea618350a97434b272d1f023200dcbeae642612e3569_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ee9d72769b916b350307df495022e04add1fbcd67c1e62757fd316e7f1dd60ae_ppc64le",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:53618eb41967e64660e87e5ad6ce8f5d9803aed9bb48da8898aaefb4d0a4632d_arm64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:65176a94e684c200beef8f25016982ab212bdcd10d31b54a831310e20c026f77_amd64",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:a4ca99dc99b864ef805f3e8d997f0567168c809433f16ec23540c0b8ead96216_s390x",
            "Red Hat OpenShift Dev Spaces (RHOSDS) 3.23:registry.redhat.io/devspaces/udi-rhel9@sha256:cc31b6212f77e03383e615ee30fd97419806c3841f18d2f6c950d82cdd21e872_ppc64le"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "com.fasterxml.jackson.core/jackson-core: jackson-core Potential StackoverflowError"
    }
  ]
}

RHSA-2025:17189

Vulnerability from csaf_redhat - Published: 2025-10-01 18:01 - Updated: 2026-05-10 14:27

Summary

Red Hat Security Advisory: Logging for Red Hat OpenShift - 5.8.22

Severity

Important

Notes

Topic: Logging for Red Hat OpenShift - 5.8.22

Details: Red Hat OpenShift Logging 5.8.22 is a cluster-wide logging solution for OpenShift that collects and manages applications, infrastructure, and audit logs.

CVE-2025-52999

A nested data handling flaw was found in Jackson Core. When parsing particularly deeply nested data structures, a StackoverflowError can occur.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-121 - Stack-based Buffer Overflow

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch6-rhel9@sha256:128a6711150854305d7042e827d191cb5f136fa9591c2410279d9dc0f2b85a75_s390x	—	Vendor Fix fix Workaround
Unresolved product id: Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch6-rhel9@sha256:3dad38dd50e960647ea212947b27d8d6026690c61e5828013d4bcc5114216706_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch6-rhel9@sha256:686e8e4c47246efa99c3284f1742cc948bdb2cb1ce0115721389a19242c8d27b_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch6-rhel9@sha256:9d271868ac0a01e0fb80829141456333d38308d3723d7c79e9319c7bb802a9cd_ppc64le	—	Vendor Fix fix Workaround

Known not affected 55 products

Product	Version	Remediation
Unresolved product id: Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:10a834de128292c966d88931ffaed3a61138d7c370540aa56091ad809233b964_amd64	—	Workaround
Unresolved product id: Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:3159517ba1f092c4730b955e9ca19adb9f265c58efcc7c3287c59acdffcf2ff6_s390x	—	Workaround
Unresolved product id: Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:451e4a31954c189b3eef8bb9717d9c914b79b358db43db0bff0eb301d9d2cd58_arm64	—	Workaround
Unresolved product id: Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:5c52006c3c3aa0f30a9305aeacfdc056a79f1047e0f3f3b0ac45cb9563643b16_amd64	—	Workaround
Unresolved product id: Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:e497f4bf649b9a2fa948dee1667b063b93a73050617faf42b80bf660f7552275_ppc64le	—	Workaround
Unresolved product id: Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch-operator-bundle@sha256:5acbff74e14d6701f35ab8a6d47cf08c1921e6fa91e1cd71aff50316b94f42d5_amd64	—	Workaround
Unresolved product id: Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch-proxy-rhel9@sha256:5d50a98eaef00ad8fa611531722f0def17548b746d3623db565a9137a29f5303_s390x	—	Workaround
Unresolved product id: Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch-proxy-rhel9@sha256:7e68e42bb57424e64b1637f9ae579fd63a34c250fd4d35960124a0786d977737_arm64	—	Workaround
Unresolved product id: Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch-proxy-rhel9@sha256:bf4c3348b34042c159c931b6b5e61c7dd3f70113840d90fcf62d2f301162b544_amd64	—	Workaround
Unresolved product id: Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch-proxy-rhel9@sha256:f76533b4c85fc4d53c544b50f542d4a0b5d1f27c8be8cf662a0a1174d93a398a_ppc64le	—	Workaround
Unresolved product id: Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch-rhel9-operator@sha256:22bc15f1672a91599f46df3800621cdd8e0aca3f9bf7ffc93ae822057a0513e8_amd64	—	Workaround
Unresolved product id: Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch-rhel9-operator@sha256:7d20fd3f48a1d566ad0407acefd783030eb975a5d8552190456096ec8794c76e_s390x	—	Workaround
Unresolved product id: Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch-rhel9-operator@sha256:8cdcc1e7d115945f36b7ece850ba2aa4b8c666aca1e18281f55ac129876d656c_arm64	—	Workaround
Unresolved product id: Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch-rhel9-operator@sha256:b8cbb17dcbb6c731df2199be08b04064fb7f828f5186b144ff2ad9d54af3bccd_ppc64le	—	Workaround
Unresolved product id: Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:21949e68be95fe0767632ab00d23db3c3ff03ab11f5316bf0be0dc6325add56c_amd64	—	Workaround
Unresolved product id: Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:2934b2ad2561de2781bcea3574309f66fd8c95dc9651f75e85ad2eac08b7b814_arm64	—	Workaround
Unresolved product id: Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:6d2c42b8ee388964f14733030ecb821e9066e5ae157eca20fdc9b68a5953bbb2_ppc64le	—	Workaround
Unresolved product id: Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:bba408215e00bfe6fbc6d160aa2630ec038ff8239bdba1076e1da25d11880c21_s390x	—	Workaround
Unresolved product id: Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/fluentd-rhel9@sha256:08a3ff9da5debce7644f6e07d41fa816186ef9505212c09b06501a04049c61b5_arm64	—	Workaround
Unresolved product id: Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/fluentd-rhel9@sha256:3fcf3b22cf68e55c7ed13f9db9dc8408c5bca9a75ec763278e8a3e118e5c1410_ppc64le	—	Workaround
Unresolved product id: Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/fluentd-rhel9@sha256:7057594fd0d2b0ea1f7998d8c601c3c3c719a9a4fddbb0dfe8749422169a6d99_amd64	—	Workaround
Unresolved product id: Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/fluentd-rhel9@sha256:e3bfdeab36bcad90e60ad94c6b20ea0102198c7117e67ee31e52d2a41e377e0a_s390x	—	Workaround
Unresolved product id: Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:6d76394fa839d86b3973ad722decdf236fd46216d776fa8c39ff6a17a41b4a56_amd64	—	Workaround
Unresolved product id: Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:a474aa7df86477327b0b4d13fbfb0303723d81fc7de019a15e207238864aad13_ppc64le	—	Workaround
Unresolved product id: Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:b5ed6509786f8bb3173aecfdcd56553d0126a9034725d06fecc3c9d190f4b6f9_s390x	—	Workaround
Unresolved product id: Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:da617e0d22d0d8871e1f6c82e819d2f0baa5cc1da7735facf95a69af839e53dd_arm64	—	Workaround
Unresolved product id: Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-curator5-rhel9@sha256:13e0b33a16fcd8d21a0aa9edb22629cd2efdcfbb0dc588382862766614ee7369_amd64	—	Workaround
Unresolved product id: Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-curator5-rhel9@sha256:7145d597de3c4974831ca94ee180d333902fe47ec58aebd4917ecd4f0f68b51b_s390x	—	Workaround
Unresolved product id: Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-curator5-rhel9@sha256:8f971d2b38f62671744185382fad7877b14c4496703b1f6b6249b090774c890c_ppc64le	—	Workaround
Unresolved product id: Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-curator5-rhel9@sha256:b4daad7d081075f6043986ba8473fea92858a8ba6c81269733a4471973dcb1d3_arm64	—	Workaround
Unresolved product id: Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:0ebfec4c761f2e008c1bb9ff782352a30ea087828ae6f87b41bce614e6e3808d_ppc64le	—	Workaround
Unresolved product id: Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:1ae6b377c9d1f1fcf7fb1ca0b5d5d04b6343e0224f0ab5105829ef3d0e7da837_arm64	—	Workaround
Unresolved product id: Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:593f83a2b0ac764e7399da9494857675a3b84bb61175acb3f6355d4f40aa6841_s390x	—	Workaround
Unresolved product id: Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:5d71aef6c8659da46892224a848461dcb4484babd4bed816e6e8a9adea97c681_amd64	—	Workaround
Unresolved product id: Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-view-plugin-rhel9@sha256:9e6ec3a8ebeced1d9673a6fca997f961524a505c42edf2a9fe2cf227a1e1446c_amd64	—	Workaround
Unresolved product id: Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-view-plugin-rhel9@sha256:a49fbcde560e1f47718971793314d8bc7beb5c60b553235292d3b3c2f5d60fbd_s390x	—	Workaround
Unresolved product id: Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-view-plugin-rhel9@sha256:b169d6a3c9dfa04b95499a32fbc9d3321068e965e103425eca9b409e65f73a16_ppc64le	—	Workaround
Unresolved product id: Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-view-plugin-rhel9@sha256:ba602bc1bdc386e0041ec60f59d10eacee9831191407546f72809f41a56d3c5e_arm64	—	Workaround
Unresolved product id: Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:df31607f5081ef5c4c9ecd48ad7f9ec521c82bb84930bf92c8df9e920b2bbabd_amd64	—	Workaround
Unresolved product id: Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:107511201756a080e346348a545752bb2307ecf972b9d2512f8d107193beb3ac_s390x	—	Workaround
Unresolved product id: Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:39097f98b2277c1ccb22674d4afa9232b8ac06f80019c22b3bf7bec0ab917314_arm64	—	Workaround
Unresolved product id: Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:7772b7908ff4176fd1f508c432f2ff140437e3d8a7093d30c8abc137dcd2da91_amd64	—	Workaround
Unresolved product id: Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:c3f7f9ac3d3282aa6e316b7f514e8ba86d7de32e59b4104871294a46c639e4ea_ppc64le	—	Workaround
Unresolved product id: Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:2978a477faf98f048c043e6f46e3831015f9af4b4c67fc04d5c29bff93284445_amd64	—	Workaround
Unresolved product id: Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:5a49302e675db6062a4a9995f017ec5c99c5c57bb26f725bc9b3e7d114ea8923_ppc64le	—	Workaround
Unresolved product id: Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:a856f7991481073f2b141b3df387f63b872154f538d6d7097672835e27178633_arm64	—	Workaround
Unresolved product id: Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:b7c02439519f9ae36cd5ee1ae673eccb2e4a2c8b587a8b7a3bcd46324b981aea_s390x	—	Workaround
Unresolved product id: Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:719892b24322beec1f2f04d959c967956e8dcab1db7a9425004c7774b696a27d_arm64	—	Workaround
Unresolved product id: Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:90e5728e6ff575ad46ac891e4b381e4d30acef1acd40ddc4c394184a61f86751_ppc64le	—	Workaround
Unresolved product id: Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:cec19f8bdab09437dc5b4b65dfa22083bc3a3c3fcd4b1e04e1da745689ec6485_amd64	—	Workaround
Unresolved product id: Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:eed9da780a958c10da9f26bf9ebeed19f19dcfc8470dd2da8d62e54fd0cc0f45_s390x	—	Workaround
Unresolved product id: Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/vector-rhel9@sha256:38544593d67cf6df21c0b162661e966ee02b151c7a8378c8e7b55a4afab8fa02_s390x	—	Workaround
Unresolved product id: Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/vector-rhel9@sha256:3fa6a10b3b46d68dadf6a48955378a737c7387f7e5cbf5c4c444c2badeabdc29_arm64	—	Workaround
Unresolved product id: Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/vector-rhel9@sha256:ce751c82c0a5a269b8bacfb6aca521d3e1a42e44e6124157dbfe60a86c3b3559_ppc64le	—	Workaround
Unresolved product id: Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/vector-rhel9@sha256:f5ba8e4b3f58ee60a44c631551fe420b46b459532b5f7c8afec1cad57f092295_amd64	—	Workaround

Threats

Impact Important

References

10 references

URL	Category
https://access.redhat.com/errata/RHSA-2025:17189	self
https://access.redhat.com/security/cve/CVE-2025-52999	external
https://access.redhat.com/security/updates/classi…	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2025-52999	self
https://bugzilla.redhat.com/show_bug.cgi?id=2374804	external
https://www.cve.org/CVERecord?id=CVE-2025-52999	external
https://nvd.nist.gov/vuln/detail/CVE-2025-52999	external
https://github.com/FasterXML/jackson-core/pull/943	external
https://github.com/FasterXML/jackson-core/securit…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Logging for Red Hat OpenShift - 5.8.22",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Red Hat OpenShift Logging 5.8.22 is a cluster-wide logging solution for OpenShift that collects and manages applications, infrastructure, and audit logs.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2025:17189",
        "url": "https://access.redhat.com/errata/RHSA-2025:17189"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2025-52999",
        "url": "https://access.redhat.com/security/cve/CVE-2025-52999"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/",
        "url": "https://access.redhat.com/security/updates/classification/"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_17189.json"
      }
    ],
    "title": "Red Hat Security Advisory: Logging for Red Hat OpenShift - 5.8.22",
    "tracking": {
      "current_release_date": "2026-05-10T14:27:11+00:00",
      "generator": {
        "date": "2026-05-10T14:27:11+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.7.9"
        }
      },
      "id": "RHSA-2025:17189",
      "initial_release_date": "2025-10-01T18:01:13+00:00",
      "revision_history": [
        {
          "date": "2025-10-01T18:01:13+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2025-10-01T18:01:22+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-05-10T14:27:11+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Logging for Red Hat OpenShift 5.8",
                "product": {
                  "name": "Logging for Red Hat OpenShift 5.8",
                  "product_id": "Logging for Red Hat OpenShift 5.8",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:logging:5.8::el9"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Logging for Red Hat OpenShift"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:10a834de128292c966d88931ffaed3a61138d7c370540aa56091ad809233b964_amd64",
                "product": {
                  "name": "registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:10a834de128292c966d88931ffaed3a61138d7c370540aa56091ad809233b964_amd64",
                  "product_id": "registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:10a834de128292c966d88931ffaed3a61138d7c370540aa56091ad809233b964_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/cluster-logging-operator-bundle@sha256%3A10a834de128292c966d88931ffaed3a61138d7c370540aa56091ad809233b964?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:5c52006c3c3aa0f30a9305aeacfdc056a79f1047e0f3f3b0ac45cb9563643b16_amd64",
                "product": {
                  "name": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:5c52006c3c3aa0f30a9305aeacfdc056a79f1047e0f3f3b0ac45cb9563643b16_amd64",
                  "product_id": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:5c52006c3c3aa0f30a9305aeacfdc056a79f1047e0f3f3b0ac45cb9563643b16_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/cluster-logging-rhel9-operator@sha256%3A5c52006c3c3aa0f30a9305aeacfdc056a79f1047e0f3f3b0ac45cb9563643b16?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/openshift-logging/elasticsearch-operator-bundle@sha256:5acbff74e14d6701f35ab8a6d47cf08c1921e6fa91e1cd71aff50316b94f42d5_amd64",
                "product": {
                  "name": "registry.redhat.io/openshift-logging/elasticsearch-operator-bundle@sha256:5acbff74e14d6701f35ab8a6d47cf08c1921e6fa91e1cd71aff50316b94f42d5_amd64",
                  "product_id": "registry.redhat.io/openshift-logging/elasticsearch-operator-bundle@sha256:5acbff74e14d6701f35ab8a6d47cf08c1921e6fa91e1cd71aff50316b94f42d5_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/elasticsearch-operator-bundle@sha256%3A5acbff74e14d6701f35ab8a6d47cf08c1921e6fa91e1cd71aff50316b94f42d5?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/openshift-logging/elasticsearch-rhel9-operator@sha256:22bc15f1672a91599f46df3800621cdd8e0aca3f9bf7ffc93ae822057a0513e8_amd64",
                "product": {
                  "name": "registry.redhat.io/openshift-logging/elasticsearch-rhel9-operator@sha256:22bc15f1672a91599f46df3800621cdd8e0aca3f9bf7ffc93ae822057a0513e8_amd64",
                  "product_id": "registry.redhat.io/openshift-logging/elasticsearch-rhel9-operator@sha256:22bc15f1672a91599f46df3800621cdd8e0aca3f9bf7ffc93ae822057a0513e8_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/elasticsearch-rhel9-operator@sha256%3A22bc15f1672a91599f46df3800621cdd8e0aca3f9bf7ffc93ae822057a0513e8?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/openshift-logging/elasticsearch-proxy-rhel9@sha256:bf4c3348b34042c159c931b6b5e61c7dd3f70113840d90fcf62d2f301162b544_amd64",
                "product": {
                  "name": "registry.redhat.io/openshift-logging/elasticsearch-proxy-rhel9@sha256:bf4c3348b34042c159c931b6b5e61c7dd3f70113840d90fcf62d2f301162b544_amd64",
                  "product_id": "registry.redhat.io/openshift-logging/elasticsearch-proxy-rhel9@sha256:bf4c3348b34042c159c931b6b5e61c7dd3f70113840d90fcf62d2f301162b544_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/elasticsearch-proxy-rhel9@sha256%3Abf4c3348b34042c159c931b6b5e61c7dd3f70113840d90fcf62d2f301162b544?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:6d76394fa839d86b3973ad722decdf236fd46216d776fa8c39ff6a17a41b4a56_amd64",
                "product": {
                  "name": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:6d76394fa839d86b3973ad722decdf236fd46216d776fa8c39ff6a17a41b4a56_amd64",
                  "product_id": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:6d76394fa839d86b3973ad722decdf236fd46216d776fa8c39ff6a17a41b4a56_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/log-file-metric-exporter-rhel9@sha256%3A6d76394fa839d86b3973ad722decdf236fd46216d776fa8c39ff6a17a41b4a56?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/openshift-logging/logging-curator5-rhel9@sha256:13e0b33a16fcd8d21a0aa9edb22629cd2efdcfbb0dc588382862766614ee7369_amd64",
                "product": {
                  "name": "registry.redhat.io/openshift-logging/logging-curator5-rhel9@sha256:13e0b33a16fcd8d21a0aa9edb22629cd2efdcfbb0dc588382862766614ee7369_amd64",
                  "product_id": "registry.redhat.io/openshift-logging/logging-curator5-rhel9@sha256:13e0b33a16fcd8d21a0aa9edb22629cd2efdcfbb0dc588382862766614ee7369_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/logging-curator5-rhel9@sha256%3A13e0b33a16fcd8d21a0aa9edb22629cd2efdcfbb0dc588382862766614ee7369?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/openshift-logging/elasticsearch6-rhel9@sha256:686e8e4c47246efa99c3284f1742cc948bdb2cb1ce0115721389a19242c8d27b_amd64",
                "product": {
                  "name": "registry.redhat.io/openshift-logging/elasticsearch6-rhel9@sha256:686e8e4c47246efa99c3284f1742cc948bdb2cb1ce0115721389a19242c8d27b_amd64",
                  "product_id": "registry.redhat.io/openshift-logging/elasticsearch6-rhel9@sha256:686e8e4c47246efa99c3284f1742cc948bdb2cb1ce0115721389a19242c8d27b_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/elasticsearch6-rhel9@sha256%3A686e8e4c47246efa99c3284f1742cc948bdb2cb1ce0115721389a19242c8d27b?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:21949e68be95fe0767632ab00d23db3c3ff03ab11f5316bf0be0dc6325add56c_amd64",
                "product": {
                  "name": "registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:21949e68be95fe0767632ab00d23db3c3ff03ab11f5316bf0be0dc6325add56c_amd64",
                  "product_id": "registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:21949e68be95fe0767632ab00d23db3c3ff03ab11f5316bf0be0dc6325add56c_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/eventrouter-rhel9@sha256%3A21949e68be95fe0767632ab00d23db3c3ff03ab11f5316bf0be0dc6325add56c?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/openshift-logging/fluentd-rhel9@sha256:7057594fd0d2b0ea1f7998d8c601c3c3c719a9a4fddbb0dfe8749422169a6d99_amd64",
                "product": {
                  "name": "registry.redhat.io/openshift-logging/fluentd-rhel9@sha256:7057594fd0d2b0ea1f7998d8c601c3c3c719a9a4fddbb0dfe8749422169a6d99_amd64",
                  "product_id": "registry.redhat.io/openshift-logging/fluentd-rhel9@sha256:7057594fd0d2b0ea1f7998d8c601c3c3c719a9a4fddbb0dfe8749422169a6d99_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/fluentd-rhel9@sha256%3A7057594fd0d2b0ea1f7998d8c601c3c3c719a9a4fddbb0dfe8749422169a6d99?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:5d71aef6c8659da46892224a848461dcb4484babd4bed816e6e8a9adea97c681_amd64",
                "product": {
                  "name": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:5d71aef6c8659da46892224a848461dcb4484babd4bed816e6e8a9adea97c681_amd64",
                  "product_id": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:5d71aef6c8659da46892224a848461dcb4484babd4bed816e6e8a9adea97c681_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/logging-loki-rhel9@sha256%3A5d71aef6c8659da46892224a848461dcb4484babd4bed816e6e8a9adea97c681?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:f5ba8e4b3f58ee60a44c631551fe420b46b459532b5f7c8afec1cad57f092295_amd64",
                "product": {
                  "name": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:f5ba8e4b3f58ee60a44c631551fe420b46b459532b5f7c8afec1cad57f092295_amd64",
                  "product_id": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:f5ba8e4b3f58ee60a44c631551fe420b46b459532b5f7c8afec1cad57f092295_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/vector-rhel9@sha256%3Af5ba8e4b3f58ee60a44c631551fe420b46b459532b5f7c8afec1cad57f092295?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/openshift-logging/logging-view-plugin-rhel9@sha256:9e6ec3a8ebeced1d9673a6fca997f961524a505c42edf2a9fe2cf227a1e1446c_amd64",
                "product": {
                  "name": "registry.redhat.io/openshift-logging/logging-view-plugin-rhel9@sha256:9e6ec3a8ebeced1d9673a6fca997f961524a505c42edf2a9fe2cf227a1e1446c_amd64",
                  "product_id": "registry.redhat.io/openshift-logging/logging-view-plugin-rhel9@sha256:9e6ec3a8ebeced1d9673a6fca997f961524a505c42edf2a9fe2cf227a1e1446c_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/logging-view-plugin-rhel9@sha256%3A9e6ec3a8ebeced1d9673a6fca997f961524a505c42edf2a9fe2cf227a1e1446c?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:df31607f5081ef5c4c9ecd48ad7f9ec521c82bb84930bf92c8df9e920b2bbabd_amd64",
                "product": {
                  "name": "registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:df31607f5081ef5c4c9ecd48ad7f9ec521c82bb84930bf92c8df9e920b2bbabd_amd64",
                  "product_id": "registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:df31607f5081ef5c4c9ecd48ad7f9ec521c82bb84930bf92c8df9e920b2bbabd_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/loki-operator-bundle@sha256%3Adf31607f5081ef5c4c9ecd48ad7f9ec521c82bb84930bf92c8df9e920b2bbabd?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:7772b7908ff4176fd1f508c432f2ff140437e3d8a7093d30c8abc137dcd2da91_amd64",
                "product": {
                  "name": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:7772b7908ff4176fd1f508c432f2ff140437e3d8a7093d30c8abc137dcd2da91_amd64",
                  "product_id": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:7772b7908ff4176fd1f508c432f2ff140437e3d8a7093d30c8abc137dcd2da91_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/loki-rhel9-operator@sha256%3A7772b7908ff4176fd1f508c432f2ff140437e3d8a7093d30c8abc137dcd2da91?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:2978a477faf98f048c043e6f46e3831015f9af4b4c67fc04d5c29bff93284445_amd64",
                "product": {
                  "name": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:2978a477faf98f048c043e6f46e3831015f9af4b4c67fc04d5c29bff93284445_amd64",
                  "product_id": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:2978a477faf98f048c043e6f46e3831015f9af4b4c67fc04d5c29bff93284445_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/lokistack-gateway-rhel9@sha256%3A2978a477faf98f048c043e6f46e3831015f9af4b4c67fc04d5c29bff93284445?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:cec19f8bdab09437dc5b4b65dfa22083bc3a3c3fcd4b1e04e1da745689ec6485_amd64",
                "product": {
                  "name": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:cec19f8bdab09437dc5b4b65dfa22083bc3a3c3fcd4b1e04e1da745689ec6485_amd64",
                  "product_id": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:cec19f8bdab09437dc5b4b65dfa22083bc3a3c3fcd4b1e04e1da745689ec6485_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/opa-openshift-rhel9@sha256%3Acec19f8bdab09437dc5b4b65dfa22083bc3a3c3fcd4b1e04e1da745689ec6485?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "amd64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:451e4a31954c189b3eef8bb9717d9c914b79b358db43db0bff0eb301d9d2cd58_arm64",
                "product": {
                  "name": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:451e4a31954c189b3eef8bb9717d9c914b79b358db43db0bff0eb301d9d2cd58_arm64",
                  "product_id": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:451e4a31954c189b3eef8bb9717d9c914b79b358db43db0bff0eb301d9d2cd58_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/cluster-logging-rhel9-operator@sha256%3A451e4a31954c189b3eef8bb9717d9c914b79b358db43db0bff0eb301d9d2cd58?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/openshift-logging/elasticsearch-rhel9-operator@sha256:8cdcc1e7d115945f36b7ece850ba2aa4b8c666aca1e18281f55ac129876d656c_arm64",
                "product": {
                  "name": "registry.redhat.io/openshift-logging/elasticsearch-rhel9-operator@sha256:8cdcc1e7d115945f36b7ece850ba2aa4b8c666aca1e18281f55ac129876d656c_arm64",
                  "product_id": "registry.redhat.io/openshift-logging/elasticsearch-rhel9-operator@sha256:8cdcc1e7d115945f36b7ece850ba2aa4b8c666aca1e18281f55ac129876d656c_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/elasticsearch-rhel9-operator@sha256%3A8cdcc1e7d115945f36b7ece850ba2aa4b8c666aca1e18281f55ac129876d656c?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/openshift-logging/elasticsearch-proxy-rhel9@sha256:7e68e42bb57424e64b1637f9ae579fd63a34c250fd4d35960124a0786d977737_arm64",
                "product": {
                  "name": "registry.redhat.io/openshift-logging/elasticsearch-proxy-rhel9@sha256:7e68e42bb57424e64b1637f9ae579fd63a34c250fd4d35960124a0786d977737_arm64",
                  "product_id": "registry.redhat.io/openshift-logging/elasticsearch-proxy-rhel9@sha256:7e68e42bb57424e64b1637f9ae579fd63a34c250fd4d35960124a0786d977737_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/elasticsearch-proxy-rhel9@sha256%3A7e68e42bb57424e64b1637f9ae579fd63a34c250fd4d35960124a0786d977737?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:da617e0d22d0d8871e1f6c82e819d2f0baa5cc1da7735facf95a69af839e53dd_arm64",
                "product": {
                  "name": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:da617e0d22d0d8871e1f6c82e819d2f0baa5cc1da7735facf95a69af839e53dd_arm64",
                  "product_id": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:da617e0d22d0d8871e1f6c82e819d2f0baa5cc1da7735facf95a69af839e53dd_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/log-file-metric-exporter-rhel9@sha256%3Ada617e0d22d0d8871e1f6c82e819d2f0baa5cc1da7735facf95a69af839e53dd?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/openshift-logging/logging-curator5-rhel9@sha256:b4daad7d081075f6043986ba8473fea92858a8ba6c81269733a4471973dcb1d3_arm64",
                "product": {
                  "name": "registry.redhat.io/openshift-logging/logging-curator5-rhel9@sha256:b4daad7d081075f6043986ba8473fea92858a8ba6c81269733a4471973dcb1d3_arm64",
                  "product_id": "registry.redhat.io/openshift-logging/logging-curator5-rhel9@sha256:b4daad7d081075f6043986ba8473fea92858a8ba6c81269733a4471973dcb1d3_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/logging-curator5-rhel9@sha256%3Ab4daad7d081075f6043986ba8473fea92858a8ba6c81269733a4471973dcb1d3?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/openshift-logging/elasticsearch6-rhel9@sha256:3dad38dd50e960647ea212947b27d8d6026690c61e5828013d4bcc5114216706_arm64",
                "product": {
                  "name": "registry.redhat.io/openshift-logging/elasticsearch6-rhel9@sha256:3dad38dd50e960647ea212947b27d8d6026690c61e5828013d4bcc5114216706_arm64",
                  "product_id": "registry.redhat.io/openshift-logging/elasticsearch6-rhel9@sha256:3dad38dd50e960647ea212947b27d8d6026690c61e5828013d4bcc5114216706_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/elasticsearch6-rhel9@sha256%3A3dad38dd50e960647ea212947b27d8d6026690c61e5828013d4bcc5114216706?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:2934b2ad2561de2781bcea3574309f66fd8c95dc9651f75e85ad2eac08b7b814_arm64",
                "product": {
                  "name": "registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:2934b2ad2561de2781bcea3574309f66fd8c95dc9651f75e85ad2eac08b7b814_arm64",
                  "product_id": "registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:2934b2ad2561de2781bcea3574309f66fd8c95dc9651f75e85ad2eac08b7b814_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/eventrouter-rhel9@sha256%3A2934b2ad2561de2781bcea3574309f66fd8c95dc9651f75e85ad2eac08b7b814?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/openshift-logging/fluentd-rhel9@sha256:08a3ff9da5debce7644f6e07d41fa816186ef9505212c09b06501a04049c61b5_arm64",
                "product": {
                  "name": "registry.redhat.io/openshift-logging/fluentd-rhel9@sha256:08a3ff9da5debce7644f6e07d41fa816186ef9505212c09b06501a04049c61b5_arm64",
                  "product_id": "registry.redhat.io/openshift-logging/fluentd-rhel9@sha256:08a3ff9da5debce7644f6e07d41fa816186ef9505212c09b06501a04049c61b5_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/fluentd-rhel9@sha256%3A08a3ff9da5debce7644f6e07d41fa816186ef9505212c09b06501a04049c61b5?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:1ae6b377c9d1f1fcf7fb1ca0b5d5d04b6343e0224f0ab5105829ef3d0e7da837_arm64",
                "product": {
                  "name": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:1ae6b377c9d1f1fcf7fb1ca0b5d5d04b6343e0224f0ab5105829ef3d0e7da837_arm64",
                  "product_id": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:1ae6b377c9d1f1fcf7fb1ca0b5d5d04b6343e0224f0ab5105829ef3d0e7da837_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/logging-loki-rhel9@sha256%3A1ae6b377c9d1f1fcf7fb1ca0b5d5d04b6343e0224f0ab5105829ef3d0e7da837?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:3fa6a10b3b46d68dadf6a48955378a737c7387f7e5cbf5c4c444c2badeabdc29_arm64",
                "product": {
                  "name": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:3fa6a10b3b46d68dadf6a48955378a737c7387f7e5cbf5c4c444c2badeabdc29_arm64",
                  "product_id": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:3fa6a10b3b46d68dadf6a48955378a737c7387f7e5cbf5c4c444c2badeabdc29_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/vector-rhel9@sha256%3A3fa6a10b3b46d68dadf6a48955378a737c7387f7e5cbf5c4c444c2badeabdc29?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/openshift-logging/logging-view-plugin-rhel9@sha256:ba602bc1bdc386e0041ec60f59d10eacee9831191407546f72809f41a56d3c5e_arm64",
                "product": {
                  "name": "registry.redhat.io/openshift-logging/logging-view-plugin-rhel9@sha256:ba602bc1bdc386e0041ec60f59d10eacee9831191407546f72809f41a56d3c5e_arm64",
                  "product_id": "registry.redhat.io/openshift-logging/logging-view-plugin-rhel9@sha256:ba602bc1bdc386e0041ec60f59d10eacee9831191407546f72809f41a56d3c5e_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/logging-view-plugin-rhel9@sha256%3Aba602bc1bdc386e0041ec60f59d10eacee9831191407546f72809f41a56d3c5e?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:39097f98b2277c1ccb22674d4afa9232b8ac06f80019c22b3bf7bec0ab917314_arm64",
                "product": {
                  "name": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:39097f98b2277c1ccb22674d4afa9232b8ac06f80019c22b3bf7bec0ab917314_arm64",
                  "product_id": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:39097f98b2277c1ccb22674d4afa9232b8ac06f80019c22b3bf7bec0ab917314_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/loki-rhel9-operator@sha256%3A39097f98b2277c1ccb22674d4afa9232b8ac06f80019c22b3bf7bec0ab917314?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:a856f7991481073f2b141b3df387f63b872154f538d6d7097672835e27178633_arm64",
                "product": {
                  "name": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:a856f7991481073f2b141b3df387f63b872154f538d6d7097672835e27178633_arm64",
                  "product_id": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:a856f7991481073f2b141b3df387f63b872154f538d6d7097672835e27178633_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/lokistack-gateway-rhel9@sha256%3Aa856f7991481073f2b141b3df387f63b872154f538d6d7097672835e27178633?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:719892b24322beec1f2f04d959c967956e8dcab1db7a9425004c7774b696a27d_arm64",
                "product": {
                  "name": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:719892b24322beec1f2f04d959c967956e8dcab1db7a9425004c7774b696a27d_arm64",
                  "product_id": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:719892b24322beec1f2f04d959c967956e8dcab1db7a9425004c7774b696a27d_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/opa-openshift-rhel9@sha256%3A719892b24322beec1f2f04d959c967956e8dcab1db7a9425004c7774b696a27d?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "arm64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:e497f4bf649b9a2fa948dee1667b063b93a73050617faf42b80bf660f7552275_ppc64le",
                "product": {
                  "name": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:e497f4bf649b9a2fa948dee1667b063b93a73050617faf42b80bf660f7552275_ppc64le",
                  "product_id": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:e497f4bf649b9a2fa948dee1667b063b93a73050617faf42b80bf660f7552275_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/cluster-logging-rhel9-operator@sha256%3Ae497f4bf649b9a2fa948dee1667b063b93a73050617faf42b80bf660f7552275?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/openshift-logging/elasticsearch-rhel9-operator@sha256:b8cbb17dcbb6c731df2199be08b04064fb7f828f5186b144ff2ad9d54af3bccd_ppc64le",
                "product": {
                  "name": "registry.redhat.io/openshift-logging/elasticsearch-rhel9-operator@sha256:b8cbb17dcbb6c731df2199be08b04064fb7f828f5186b144ff2ad9d54af3bccd_ppc64le",
                  "product_id": "registry.redhat.io/openshift-logging/elasticsearch-rhel9-operator@sha256:b8cbb17dcbb6c731df2199be08b04064fb7f828f5186b144ff2ad9d54af3bccd_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/elasticsearch-rhel9-operator@sha256%3Ab8cbb17dcbb6c731df2199be08b04064fb7f828f5186b144ff2ad9d54af3bccd?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/openshift-logging/elasticsearch-proxy-rhel9@sha256:f76533b4c85fc4d53c544b50f542d4a0b5d1f27c8be8cf662a0a1174d93a398a_ppc64le",
                "product": {
                  "name": "registry.redhat.io/openshift-logging/elasticsearch-proxy-rhel9@sha256:f76533b4c85fc4d53c544b50f542d4a0b5d1f27c8be8cf662a0a1174d93a398a_ppc64le",
                  "product_id": "registry.redhat.io/openshift-logging/elasticsearch-proxy-rhel9@sha256:f76533b4c85fc4d53c544b50f542d4a0b5d1f27c8be8cf662a0a1174d93a398a_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/elasticsearch-proxy-rhel9@sha256%3Af76533b4c85fc4d53c544b50f542d4a0b5d1f27c8be8cf662a0a1174d93a398a?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:a474aa7df86477327b0b4d13fbfb0303723d81fc7de019a15e207238864aad13_ppc64le",
                "product": {
                  "name": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:a474aa7df86477327b0b4d13fbfb0303723d81fc7de019a15e207238864aad13_ppc64le",
                  "product_id": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:a474aa7df86477327b0b4d13fbfb0303723d81fc7de019a15e207238864aad13_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/log-file-metric-exporter-rhel9@sha256%3Aa474aa7df86477327b0b4d13fbfb0303723d81fc7de019a15e207238864aad13?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/openshift-logging/logging-curator5-rhel9@sha256:8f971d2b38f62671744185382fad7877b14c4496703b1f6b6249b090774c890c_ppc64le",
                "product": {
                  "name": "registry.redhat.io/openshift-logging/logging-curator5-rhel9@sha256:8f971d2b38f62671744185382fad7877b14c4496703b1f6b6249b090774c890c_ppc64le",
                  "product_id": "registry.redhat.io/openshift-logging/logging-curator5-rhel9@sha256:8f971d2b38f62671744185382fad7877b14c4496703b1f6b6249b090774c890c_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/logging-curator5-rhel9@sha256%3A8f971d2b38f62671744185382fad7877b14c4496703b1f6b6249b090774c890c?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/openshift-logging/elasticsearch6-rhel9@sha256:9d271868ac0a01e0fb80829141456333d38308d3723d7c79e9319c7bb802a9cd_ppc64le",
                "product": {
                  "name": "registry.redhat.io/openshift-logging/elasticsearch6-rhel9@sha256:9d271868ac0a01e0fb80829141456333d38308d3723d7c79e9319c7bb802a9cd_ppc64le",
                  "product_id": "registry.redhat.io/openshift-logging/elasticsearch6-rhel9@sha256:9d271868ac0a01e0fb80829141456333d38308d3723d7c79e9319c7bb802a9cd_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/elasticsearch6-rhel9@sha256%3A9d271868ac0a01e0fb80829141456333d38308d3723d7c79e9319c7bb802a9cd?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:6d2c42b8ee388964f14733030ecb821e9066e5ae157eca20fdc9b68a5953bbb2_ppc64le",
                "product": {
                  "name": "registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:6d2c42b8ee388964f14733030ecb821e9066e5ae157eca20fdc9b68a5953bbb2_ppc64le",
                  "product_id": "registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:6d2c42b8ee388964f14733030ecb821e9066e5ae157eca20fdc9b68a5953bbb2_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/eventrouter-rhel9@sha256%3A6d2c42b8ee388964f14733030ecb821e9066e5ae157eca20fdc9b68a5953bbb2?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/openshift-logging/fluentd-rhel9@sha256:3fcf3b22cf68e55c7ed13f9db9dc8408c5bca9a75ec763278e8a3e118e5c1410_ppc64le",
                "product": {
                  "name": "registry.redhat.io/openshift-logging/fluentd-rhel9@sha256:3fcf3b22cf68e55c7ed13f9db9dc8408c5bca9a75ec763278e8a3e118e5c1410_ppc64le",
                  "product_id": "registry.redhat.io/openshift-logging/fluentd-rhel9@sha256:3fcf3b22cf68e55c7ed13f9db9dc8408c5bca9a75ec763278e8a3e118e5c1410_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/fluentd-rhel9@sha256%3A3fcf3b22cf68e55c7ed13f9db9dc8408c5bca9a75ec763278e8a3e118e5c1410?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:0ebfec4c761f2e008c1bb9ff782352a30ea087828ae6f87b41bce614e6e3808d_ppc64le",
                "product": {
                  "name": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:0ebfec4c761f2e008c1bb9ff782352a30ea087828ae6f87b41bce614e6e3808d_ppc64le",
                  "product_id": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:0ebfec4c761f2e008c1bb9ff782352a30ea087828ae6f87b41bce614e6e3808d_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/logging-loki-rhel9@sha256%3A0ebfec4c761f2e008c1bb9ff782352a30ea087828ae6f87b41bce614e6e3808d?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:ce751c82c0a5a269b8bacfb6aca521d3e1a42e44e6124157dbfe60a86c3b3559_ppc64le",
                "product": {
                  "name": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:ce751c82c0a5a269b8bacfb6aca521d3e1a42e44e6124157dbfe60a86c3b3559_ppc64le",
                  "product_id": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:ce751c82c0a5a269b8bacfb6aca521d3e1a42e44e6124157dbfe60a86c3b3559_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/vector-rhel9@sha256%3Ace751c82c0a5a269b8bacfb6aca521d3e1a42e44e6124157dbfe60a86c3b3559?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/openshift-logging/logging-view-plugin-rhel9@sha256:b169d6a3c9dfa04b95499a32fbc9d3321068e965e103425eca9b409e65f73a16_ppc64le",
                "product": {
                  "name": "registry.redhat.io/openshift-logging/logging-view-plugin-rhel9@sha256:b169d6a3c9dfa04b95499a32fbc9d3321068e965e103425eca9b409e65f73a16_ppc64le",
                  "product_id": "registry.redhat.io/openshift-logging/logging-view-plugin-rhel9@sha256:b169d6a3c9dfa04b95499a32fbc9d3321068e965e103425eca9b409e65f73a16_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/logging-view-plugin-rhel9@sha256%3Ab169d6a3c9dfa04b95499a32fbc9d3321068e965e103425eca9b409e65f73a16?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:c3f7f9ac3d3282aa6e316b7f514e8ba86d7de32e59b4104871294a46c639e4ea_ppc64le",
                "product": {
                  "name": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:c3f7f9ac3d3282aa6e316b7f514e8ba86d7de32e59b4104871294a46c639e4ea_ppc64le",
                  "product_id": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:c3f7f9ac3d3282aa6e316b7f514e8ba86d7de32e59b4104871294a46c639e4ea_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/loki-rhel9-operator@sha256%3Ac3f7f9ac3d3282aa6e316b7f514e8ba86d7de32e59b4104871294a46c639e4ea?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:5a49302e675db6062a4a9995f017ec5c99c5c57bb26f725bc9b3e7d114ea8923_ppc64le",
                "product": {
                  "name": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:5a49302e675db6062a4a9995f017ec5c99c5c57bb26f725bc9b3e7d114ea8923_ppc64le",
                  "product_id": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:5a49302e675db6062a4a9995f017ec5c99c5c57bb26f725bc9b3e7d114ea8923_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/lokistack-gateway-rhel9@sha256%3A5a49302e675db6062a4a9995f017ec5c99c5c57bb26f725bc9b3e7d114ea8923?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:90e5728e6ff575ad46ac891e4b381e4d30acef1acd40ddc4c394184a61f86751_ppc64le",
                "product": {
                  "name": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:90e5728e6ff575ad46ac891e4b381e4d30acef1acd40ddc4c394184a61f86751_ppc64le",
                  "product_id": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:90e5728e6ff575ad46ac891e4b381e4d30acef1acd40ddc4c394184a61f86751_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/opa-openshift-rhel9@sha256%3A90e5728e6ff575ad46ac891e4b381e4d30acef1acd40ddc4c394184a61f86751?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:3159517ba1f092c4730b955e9ca19adb9f265c58efcc7c3287c59acdffcf2ff6_s390x",
                "product": {
                  "name": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:3159517ba1f092c4730b955e9ca19adb9f265c58efcc7c3287c59acdffcf2ff6_s390x",
                  "product_id": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:3159517ba1f092c4730b955e9ca19adb9f265c58efcc7c3287c59acdffcf2ff6_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/cluster-logging-rhel9-operator@sha256%3A3159517ba1f092c4730b955e9ca19adb9f265c58efcc7c3287c59acdffcf2ff6?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/openshift-logging/elasticsearch-rhel9-operator@sha256:7d20fd3f48a1d566ad0407acefd783030eb975a5d8552190456096ec8794c76e_s390x",
                "product": {
                  "name": "registry.redhat.io/openshift-logging/elasticsearch-rhel9-operator@sha256:7d20fd3f48a1d566ad0407acefd783030eb975a5d8552190456096ec8794c76e_s390x",
                  "product_id": "registry.redhat.io/openshift-logging/elasticsearch-rhel9-operator@sha256:7d20fd3f48a1d566ad0407acefd783030eb975a5d8552190456096ec8794c76e_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/elasticsearch-rhel9-operator@sha256%3A7d20fd3f48a1d566ad0407acefd783030eb975a5d8552190456096ec8794c76e?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/openshift-logging/elasticsearch-proxy-rhel9@sha256:5d50a98eaef00ad8fa611531722f0def17548b746d3623db565a9137a29f5303_s390x",
                "product": {
                  "name": "registry.redhat.io/openshift-logging/elasticsearch-proxy-rhel9@sha256:5d50a98eaef00ad8fa611531722f0def17548b746d3623db565a9137a29f5303_s390x",
                  "product_id": "registry.redhat.io/openshift-logging/elasticsearch-proxy-rhel9@sha256:5d50a98eaef00ad8fa611531722f0def17548b746d3623db565a9137a29f5303_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/elasticsearch-proxy-rhel9@sha256%3A5d50a98eaef00ad8fa611531722f0def17548b746d3623db565a9137a29f5303?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:b5ed6509786f8bb3173aecfdcd56553d0126a9034725d06fecc3c9d190f4b6f9_s390x",
                "product": {
                  "name": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:b5ed6509786f8bb3173aecfdcd56553d0126a9034725d06fecc3c9d190f4b6f9_s390x",
                  "product_id": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:b5ed6509786f8bb3173aecfdcd56553d0126a9034725d06fecc3c9d190f4b6f9_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/log-file-metric-exporter-rhel9@sha256%3Ab5ed6509786f8bb3173aecfdcd56553d0126a9034725d06fecc3c9d190f4b6f9?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/openshift-logging/logging-curator5-rhel9@sha256:7145d597de3c4974831ca94ee180d333902fe47ec58aebd4917ecd4f0f68b51b_s390x",
                "product": {
                  "name": "registry.redhat.io/openshift-logging/logging-curator5-rhel9@sha256:7145d597de3c4974831ca94ee180d333902fe47ec58aebd4917ecd4f0f68b51b_s390x",
                  "product_id": "registry.redhat.io/openshift-logging/logging-curator5-rhel9@sha256:7145d597de3c4974831ca94ee180d333902fe47ec58aebd4917ecd4f0f68b51b_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/logging-curator5-rhel9@sha256%3A7145d597de3c4974831ca94ee180d333902fe47ec58aebd4917ecd4f0f68b51b?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/openshift-logging/elasticsearch6-rhel9@sha256:128a6711150854305d7042e827d191cb5f136fa9591c2410279d9dc0f2b85a75_s390x",
                "product": {
                  "name": "registry.redhat.io/openshift-logging/elasticsearch6-rhel9@sha256:128a6711150854305d7042e827d191cb5f136fa9591c2410279d9dc0f2b85a75_s390x",
                  "product_id": "registry.redhat.io/openshift-logging/elasticsearch6-rhel9@sha256:128a6711150854305d7042e827d191cb5f136fa9591c2410279d9dc0f2b85a75_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/elasticsearch6-rhel9@sha256%3A128a6711150854305d7042e827d191cb5f136fa9591c2410279d9dc0f2b85a75?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:bba408215e00bfe6fbc6d160aa2630ec038ff8239bdba1076e1da25d11880c21_s390x",
                "product": {
                  "name": "registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:bba408215e00bfe6fbc6d160aa2630ec038ff8239bdba1076e1da25d11880c21_s390x",
                  "product_id": "registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:bba408215e00bfe6fbc6d160aa2630ec038ff8239bdba1076e1da25d11880c21_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/eventrouter-rhel9@sha256%3Abba408215e00bfe6fbc6d160aa2630ec038ff8239bdba1076e1da25d11880c21?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/openshift-logging/fluentd-rhel9@sha256:e3bfdeab36bcad90e60ad94c6b20ea0102198c7117e67ee31e52d2a41e377e0a_s390x",
                "product": {
                  "name": "registry.redhat.io/openshift-logging/fluentd-rhel9@sha256:e3bfdeab36bcad90e60ad94c6b20ea0102198c7117e67ee31e52d2a41e377e0a_s390x",
                  "product_id": "registry.redhat.io/openshift-logging/fluentd-rhel9@sha256:e3bfdeab36bcad90e60ad94c6b20ea0102198c7117e67ee31e52d2a41e377e0a_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/fluentd-rhel9@sha256%3Ae3bfdeab36bcad90e60ad94c6b20ea0102198c7117e67ee31e52d2a41e377e0a?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:593f83a2b0ac764e7399da9494857675a3b84bb61175acb3f6355d4f40aa6841_s390x",
                "product": {
                  "name": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:593f83a2b0ac764e7399da9494857675a3b84bb61175acb3f6355d4f40aa6841_s390x",
                  "product_id": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:593f83a2b0ac764e7399da9494857675a3b84bb61175acb3f6355d4f40aa6841_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/logging-loki-rhel9@sha256%3A593f83a2b0ac764e7399da9494857675a3b84bb61175acb3f6355d4f40aa6841?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:38544593d67cf6df21c0b162661e966ee02b151c7a8378c8e7b55a4afab8fa02_s390x",
                "product": {
                  "name": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:38544593d67cf6df21c0b162661e966ee02b151c7a8378c8e7b55a4afab8fa02_s390x",
                  "product_id": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:38544593d67cf6df21c0b162661e966ee02b151c7a8378c8e7b55a4afab8fa02_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/vector-rhel9@sha256%3A38544593d67cf6df21c0b162661e966ee02b151c7a8378c8e7b55a4afab8fa02?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/openshift-logging/logging-view-plugin-rhel9@sha256:a49fbcde560e1f47718971793314d8bc7beb5c60b553235292d3b3c2f5d60fbd_s390x",
                "product": {
                  "name": "registry.redhat.io/openshift-logging/logging-view-plugin-rhel9@sha256:a49fbcde560e1f47718971793314d8bc7beb5c60b553235292d3b3c2f5d60fbd_s390x",
                  "product_id": "registry.redhat.io/openshift-logging/logging-view-plugin-rhel9@sha256:a49fbcde560e1f47718971793314d8bc7beb5c60b553235292d3b3c2f5d60fbd_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/logging-view-plugin-rhel9@sha256%3Aa49fbcde560e1f47718971793314d8bc7beb5c60b553235292d3b3c2f5d60fbd?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:107511201756a080e346348a545752bb2307ecf972b9d2512f8d107193beb3ac_s390x",
                "product": {
                  "name": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:107511201756a080e346348a545752bb2307ecf972b9d2512f8d107193beb3ac_s390x",
                  "product_id": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:107511201756a080e346348a545752bb2307ecf972b9d2512f8d107193beb3ac_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/loki-rhel9-operator@sha256%3A107511201756a080e346348a545752bb2307ecf972b9d2512f8d107193beb3ac?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:b7c02439519f9ae36cd5ee1ae673eccb2e4a2c8b587a8b7a3bcd46324b981aea_s390x",
                "product": {
                  "name": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:b7c02439519f9ae36cd5ee1ae673eccb2e4a2c8b587a8b7a3bcd46324b981aea_s390x",
                  "product_id": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:b7c02439519f9ae36cd5ee1ae673eccb2e4a2c8b587a8b7a3bcd46324b981aea_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/lokistack-gateway-rhel9@sha256%3Ab7c02439519f9ae36cd5ee1ae673eccb2e4a2c8b587a8b7a3bcd46324b981aea?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:eed9da780a958c10da9f26bf9ebeed19f19dcfc8470dd2da8d62e54fd0cc0f45_s390x",
                "product": {
                  "name": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:eed9da780a958c10da9f26bf9ebeed19f19dcfc8470dd2da8d62e54fd0cc0f45_s390x",
                  "product_id": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:eed9da780a958c10da9f26bf9ebeed19f19dcfc8470dd2da8d62e54fd0cc0f45_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/opa-openshift-rhel9@sha256%3Aeed9da780a958c10da9f26bf9ebeed19f19dcfc8470dd2da8d62e54fd0cc0f45?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:10a834de128292c966d88931ffaed3a61138d7c370540aa56091ad809233b964_amd64 as a component of Logging for Red Hat OpenShift 5.8",
          "product_id": "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:10a834de128292c966d88931ffaed3a61138d7c370540aa56091ad809233b964_amd64"
        },
        "product_reference": "registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:10a834de128292c966d88931ffaed3a61138d7c370540aa56091ad809233b964_amd64",
        "relates_to_product_reference": "Logging for Red Hat OpenShift 5.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:3159517ba1f092c4730b955e9ca19adb9f265c58efcc7c3287c59acdffcf2ff6_s390x as a component of Logging for Red Hat OpenShift 5.8",
          "product_id": "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:3159517ba1f092c4730b955e9ca19adb9f265c58efcc7c3287c59acdffcf2ff6_s390x"
        },
        "product_reference": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:3159517ba1f092c4730b955e9ca19adb9f265c58efcc7c3287c59acdffcf2ff6_s390x",
        "relates_to_product_reference": "Logging for Red Hat OpenShift 5.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:451e4a31954c189b3eef8bb9717d9c914b79b358db43db0bff0eb301d9d2cd58_arm64 as a component of Logging for Red Hat OpenShift 5.8",
          "product_id": "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:451e4a31954c189b3eef8bb9717d9c914b79b358db43db0bff0eb301d9d2cd58_arm64"
        },
        "product_reference": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:451e4a31954c189b3eef8bb9717d9c914b79b358db43db0bff0eb301d9d2cd58_arm64",
        "relates_to_product_reference": "Logging for Red Hat OpenShift 5.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:5c52006c3c3aa0f30a9305aeacfdc056a79f1047e0f3f3b0ac45cb9563643b16_amd64 as a component of Logging for Red Hat OpenShift 5.8",
          "product_id": "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:5c52006c3c3aa0f30a9305aeacfdc056a79f1047e0f3f3b0ac45cb9563643b16_amd64"
        },
        "product_reference": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:5c52006c3c3aa0f30a9305aeacfdc056a79f1047e0f3f3b0ac45cb9563643b16_amd64",
        "relates_to_product_reference": "Logging for Red Hat OpenShift 5.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:e497f4bf649b9a2fa948dee1667b063b93a73050617faf42b80bf660f7552275_ppc64le as a component of Logging for Red Hat OpenShift 5.8",
          "product_id": "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:e497f4bf649b9a2fa948dee1667b063b93a73050617faf42b80bf660f7552275_ppc64le"
        },
        "product_reference": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:e497f4bf649b9a2fa948dee1667b063b93a73050617faf42b80bf660f7552275_ppc64le",
        "relates_to_product_reference": "Logging for Red Hat OpenShift 5.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/openshift-logging/elasticsearch-operator-bundle@sha256:5acbff74e14d6701f35ab8a6d47cf08c1921e6fa91e1cd71aff50316b94f42d5_amd64 as a component of Logging for Red Hat OpenShift 5.8",
          "product_id": "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch-operator-bundle@sha256:5acbff74e14d6701f35ab8a6d47cf08c1921e6fa91e1cd71aff50316b94f42d5_amd64"
        },
        "product_reference": "registry.redhat.io/openshift-logging/elasticsearch-operator-bundle@sha256:5acbff74e14d6701f35ab8a6d47cf08c1921e6fa91e1cd71aff50316b94f42d5_amd64",
        "relates_to_product_reference": "Logging for Red Hat OpenShift 5.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/openshift-logging/elasticsearch-proxy-rhel9@sha256:5d50a98eaef00ad8fa611531722f0def17548b746d3623db565a9137a29f5303_s390x as a component of Logging for Red Hat OpenShift 5.8",
          "product_id": "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch-proxy-rhel9@sha256:5d50a98eaef00ad8fa611531722f0def17548b746d3623db565a9137a29f5303_s390x"
        },
        "product_reference": "registry.redhat.io/openshift-logging/elasticsearch-proxy-rhel9@sha256:5d50a98eaef00ad8fa611531722f0def17548b746d3623db565a9137a29f5303_s390x",
        "relates_to_product_reference": "Logging for Red Hat OpenShift 5.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/openshift-logging/elasticsearch-proxy-rhel9@sha256:7e68e42bb57424e64b1637f9ae579fd63a34c250fd4d35960124a0786d977737_arm64 as a component of Logging for Red Hat OpenShift 5.8",
          "product_id": "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch-proxy-rhel9@sha256:7e68e42bb57424e64b1637f9ae579fd63a34c250fd4d35960124a0786d977737_arm64"
        },
        "product_reference": "registry.redhat.io/openshift-logging/elasticsearch-proxy-rhel9@sha256:7e68e42bb57424e64b1637f9ae579fd63a34c250fd4d35960124a0786d977737_arm64",
        "relates_to_product_reference": "Logging for Red Hat OpenShift 5.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/openshift-logging/elasticsearch-proxy-rhel9@sha256:bf4c3348b34042c159c931b6b5e61c7dd3f70113840d90fcf62d2f301162b544_amd64 as a component of Logging for Red Hat OpenShift 5.8",
          "product_id": "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch-proxy-rhel9@sha256:bf4c3348b34042c159c931b6b5e61c7dd3f70113840d90fcf62d2f301162b544_amd64"
        },
        "product_reference": "registry.redhat.io/openshift-logging/elasticsearch-proxy-rhel9@sha256:bf4c3348b34042c159c931b6b5e61c7dd3f70113840d90fcf62d2f301162b544_amd64",
        "relates_to_product_reference": "Logging for Red Hat OpenShift 5.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/openshift-logging/elasticsearch-proxy-rhel9@sha256:f76533b4c85fc4d53c544b50f542d4a0b5d1f27c8be8cf662a0a1174d93a398a_ppc64le as a component of Logging for Red Hat OpenShift 5.8",
          "product_id": "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch-proxy-rhel9@sha256:f76533b4c85fc4d53c544b50f542d4a0b5d1f27c8be8cf662a0a1174d93a398a_ppc64le"
        },
        "product_reference": "registry.redhat.io/openshift-logging/elasticsearch-proxy-rhel9@sha256:f76533b4c85fc4d53c544b50f542d4a0b5d1f27c8be8cf662a0a1174d93a398a_ppc64le",
        "relates_to_product_reference": "Logging for Red Hat OpenShift 5.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/openshift-logging/elasticsearch-rhel9-operator@sha256:22bc15f1672a91599f46df3800621cdd8e0aca3f9bf7ffc93ae822057a0513e8_amd64 as a component of Logging for Red Hat OpenShift 5.8",
          "product_id": "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch-rhel9-operator@sha256:22bc15f1672a91599f46df3800621cdd8e0aca3f9bf7ffc93ae822057a0513e8_amd64"
        },
        "product_reference": "registry.redhat.io/openshift-logging/elasticsearch-rhel9-operator@sha256:22bc15f1672a91599f46df3800621cdd8e0aca3f9bf7ffc93ae822057a0513e8_amd64",
        "relates_to_product_reference": "Logging for Red Hat OpenShift 5.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/openshift-logging/elasticsearch-rhel9-operator@sha256:7d20fd3f48a1d566ad0407acefd783030eb975a5d8552190456096ec8794c76e_s390x as a component of Logging for Red Hat OpenShift 5.8",
          "product_id": "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch-rhel9-operator@sha256:7d20fd3f48a1d566ad0407acefd783030eb975a5d8552190456096ec8794c76e_s390x"
        },
        "product_reference": "registry.redhat.io/openshift-logging/elasticsearch-rhel9-operator@sha256:7d20fd3f48a1d566ad0407acefd783030eb975a5d8552190456096ec8794c76e_s390x",
        "relates_to_product_reference": "Logging for Red Hat OpenShift 5.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/openshift-logging/elasticsearch-rhel9-operator@sha256:8cdcc1e7d115945f36b7ece850ba2aa4b8c666aca1e18281f55ac129876d656c_arm64 as a component of Logging for Red Hat OpenShift 5.8",
          "product_id": "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch-rhel9-operator@sha256:8cdcc1e7d115945f36b7ece850ba2aa4b8c666aca1e18281f55ac129876d656c_arm64"
        },
        "product_reference": "registry.redhat.io/openshift-logging/elasticsearch-rhel9-operator@sha256:8cdcc1e7d115945f36b7ece850ba2aa4b8c666aca1e18281f55ac129876d656c_arm64",
        "relates_to_product_reference": "Logging for Red Hat OpenShift 5.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/openshift-logging/elasticsearch-rhel9-operator@sha256:b8cbb17dcbb6c731df2199be08b04064fb7f828f5186b144ff2ad9d54af3bccd_ppc64le as a component of Logging for Red Hat OpenShift 5.8",
          "product_id": "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch-rhel9-operator@sha256:b8cbb17dcbb6c731df2199be08b04064fb7f828f5186b144ff2ad9d54af3bccd_ppc64le"
        },
        "product_reference": "registry.redhat.io/openshift-logging/elasticsearch-rhel9-operator@sha256:b8cbb17dcbb6c731df2199be08b04064fb7f828f5186b144ff2ad9d54af3bccd_ppc64le",
        "relates_to_product_reference": "Logging for Red Hat OpenShift 5.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/openshift-logging/elasticsearch6-rhel9@sha256:128a6711150854305d7042e827d191cb5f136fa9591c2410279d9dc0f2b85a75_s390x as a component of Logging for Red Hat OpenShift 5.8",
          "product_id": "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch6-rhel9@sha256:128a6711150854305d7042e827d191cb5f136fa9591c2410279d9dc0f2b85a75_s390x"
        },
        "product_reference": "registry.redhat.io/openshift-logging/elasticsearch6-rhel9@sha256:128a6711150854305d7042e827d191cb5f136fa9591c2410279d9dc0f2b85a75_s390x",
        "relates_to_product_reference": "Logging for Red Hat OpenShift 5.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/openshift-logging/elasticsearch6-rhel9@sha256:3dad38dd50e960647ea212947b27d8d6026690c61e5828013d4bcc5114216706_arm64 as a component of Logging for Red Hat OpenShift 5.8",
          "product_id": "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch6-rhel9@sha256:3dad38dd50e960647ea212947b27d8d6026690c61e5828013d4bcc5114216706_arm64"
        },
        "product_reference": "registry.redhat.io/openshift-logging/elasticsearch6-rhel9@sha256:3dad38dd50e960647ea212947b27d8d6026690c61e5828013d4bcc5114216706_arm64",
        "relates_to_product_reference": "Logging for Red Hat OpenShift 5.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/openshift-logging/elasticsearch6-rhel9@sha256:686e8e4c47246efa99c3284f1742cc948bdb2cb1ce0115721389a19242c8d27b_amd64 as a component of Logging for Red Hat OpenShift 5.8",
          "product_id": "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch6-rhel9@sha256:686e8e4c47246efa99c3284f1742cc948bdb2cb1ce0115721389a19242c8d27b_amd64"
        },
        "product_reference": "registry.redhat.io/openshift-logging/elasticsearch6-rhel9@sha256:686e8e4c47246efa99c3284f1742cc948bdb2cb1ce0115721389a19242c8d27b_amd64",
        "relates_to_product_reference": "Logging for Red Hat OpenShift 5.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/openshift-logging/elasticsearch6-rhel9@sha256:9d271868ac0a01e0fb80829141456333d38308d3723d7c79e9319c7bb802a9cd_ppc64le as a component of Logging for Red Hat OpenShift 5.8",
          "product_id": "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch6-rhel9@sha256:9d271868ac0a01e0fb80829141456333d38308d3723d7c79e9319c7bb802a9cd_ppc64le"
        },
        "product_reference": "registry.redhat.io/openshift-logging/elasticsearch6-rhel9@sha256:9d271868ac0a01e0fb80829141456333d38308d3723d7c79e9319c7bb802a9cd_ppc64le",
        "relates_to_product_reference": "Logging for Red Hat OpenShift 5.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:21949e68be95fe0767632ab00d23db3c3ff03ab11f5316bf0be0dc6325add56c_amd64 as a component of Logging for Red Hat OpenShift 5.8",
          "product_id": "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:21949e68be95fe0767632ab00d23db3c3ff03ab11f5316bf0be0dc6325add56c_amd64"
        },
        "product_reference": "registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:21949e68be95fe0767632ab00d23db3c3ff03ab11f5316bf0be0dc6325add56c_amd64",
        "relates_to_product_reference": "Logging for Red Hat OpenShift 5.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:2934b2ad2561de2781bcea3574309f66fd8c95dc9651f75e85ad2eac08b7b814_arm64 as a component of Logging for Red Hat OpenShift 5.8",
          "product_id": "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:2934b2ad2561de2781bcea3574309f66fd8c95dc9651f75e85ad2eac08b7b814_arm64"
        },
        "product_reference": "registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:2934b2ad2561de2781bcea3574309f66fd8c95dc9651f75e85ad2eac08b7b814_arm64",
        "relates_to_product_reference": "Logging for Red Hat OpenShift 5.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:6d2c42b8ee388964f14733030ecb821e9066e5ae157eca20fdc9b68a5953bbb2_ppc64le as a component of Logging for Red Hat OpenShift 5.8",
          "product_id": "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:6d2c42b8ee388964f14733030ecb821e9066e5ae157eca20fdc9b68a5953bbb2_ppc64le"
        },
        "product_reference": "registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:6d2c42b8ee388964f14733030ecb821e9066e5ae157eca20fdc9b68a5953bbb2_ppc64le",
        "relates_to_product_reference": "Logging for Red Hat OpenShift 5.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:bba408215e00bfe6fbc6d160aa2630ec038ff8239bdba1076e1da25d11880c21_s390x as a component of Logging for Red Hat OpenShift 5.8",
          "product_id": "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:bba408215e00bfe6fbc6d160aa2630ec038ff8239bdba1076e1da25d11880c21_s390x"
        },
        "product_reference": "registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:bba408215e00bfe6fbc6d160aa2630ec038ff8239bdba1076e1da25d11880c21_s390x",
        "relates_to_product_reference": "Logging for Red Hat OpenShift 5.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/openshift-logging/fluentd-rhel9@sha256:08a3ff9da5debce7644f6e07d41fa816186ef9505212c09b06501a04049c61b5_arm64 as a component of Logging for Red Hat OpenShift 5.8",
          "product_id": "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/fluentd-rhel9@sha256:08a3ff9da5debce7644f6e07d41fa816186ef9505212c09b06501a04049c61b5_arm64"
        },
        "product_reference": "registry.redhat.io/openshift-logging/fluentd-rhel9@sha256:08a3ff9da5debce7644f6e07d41fa816186ef9505212c09b06501a04049c61b5_arm64",
        "relates_to_product_reference": "Logging for Red Hat OpenShift 5.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/openshift-logging/fluentd-rhel9@sha256:3fcf3b22cf68e55c7ed13f9db9dc8408c5bca9a75ec763278e8a3e118e5c1410_ppc64le as a component of Logging for Red Hat OpenShift 5.8",
          "product_id": "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/fluentd-rhel9@sha256:3fcf3b22cf68e55c7ed13f9db9dc8408c5bca9a75ec763278e8a3e118e5c1410_ppc64le"
        },
        "product_reference": "registry.redhat.io/openshift-logging/fluentd-rhel9@sha256:3fcf3b22cf68e55c7ed13f9db9dc8408c5bca9a75ec763278e8a3e118e5c1410_ppc64le",
        "relates_to_product_reference": "Logging for Red Hat OpenShift 5.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/openshift-logging/fluentd-rhel9@sha256:7057594fd0d2b0ea1f7998d8c601c3c3c719a9a4fddbb0dfe8749422169a6d99_amd64 as a component of Logging for Red Hat OpenShift 5.8",
          "product_id": "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/fluentd-rhel9@sha256:7057594fd0d2b0ea1f7998d8c601c3c3c719a9a4fddbb0dfe8749422169a6d99_amd64"
        },
        "product_reference": "registry.redhat.io/openshift-logging/fluentd-rhel9@sha256:7057594fd0d2b0ea1f7998d8c601c3c3c719a9a4fddbb0dfe8749422169a6d99_amd64",
        "relates_to_product_reference": "Logging for Red Hat OpenShift 5.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/openshift-logging/fluentd-rhel9@sha256:e3bfdeab36bcad90e60ad94c6b20ea0102198c7117e67ee31e52d2a41e377e0a_s390x as a component of Logging for Red Hat OpenShift 5.8",
          "product_id": "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/fluentd-rhel9@sha256:e3bfdeab36bcad90e60ad94c6b20ea0102198c7117e67ee31e52d2a41e377e0a_s390x"
        },
        "product_reference": "registry.redhat.io/openshift-logging/fluentd-rhel9@sha256:e3bfdeab36bcad90e60ad94c6b20ea0102198c7117e67ee31e52d2a41e377e0a_s390x",
        "relates_to_product_reference": "Logging for Red Hat OpenShift 5.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:6d76394fa839d86b3973ad722decdf236fd46216d776fa8c39ff6a17a41b4a56_amd64 as a component of Logging for Red Hat OpenShift 5.8",
          "product_id": "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:6d76394fa839d86b3973ad722decdf236fd46216d776fa8c39ff6a17a41b4a56_amd64"
        },
        "product_reference": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:6d76394fa839d86b3973ad722decdf236fd46216d776fa8c39ff6a17a41b4a56_amd64",
        "relates_to_product_reference": "Logging for Red Hat OpenShift 5.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:a474aa7df86477327b0b4d13fbfb0303723d81fc7de019a15e207238864aad13_ppc64le as a component of Logging for Red Hat OpenShift 5.8",
          "product_id": "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:a474aa7df86477327b0b4d13fbfb0303723d81fc7de019a15e207238864aad13_ppc64le"
        },
        "product_reference": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:a474aa7df86477327b0b4d13fbfb0303723d81fc7de019a15e207238864aad13_ppc64le",
        "relates_to_product_reference": "Logging for Red Hat OpenShift 5.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:b5ed6509786f8bb3173aecfdcd56553d0126a9034725d06fecc3c9d190f4b6f9_s390x as a component of Logging for Red Hat OpenShift 5.8",
          "product_id": "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:b5ed6509786f8bb3173aecfdcd56553d0126a9034725d06fecc3c9d190f4b6f9_s390x"
        },
        "product_reference": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:b5ed6509786f8bb3173aecfdcd56553d0126a9034725d06fecc3c9d190f4b6f9_s390x",
        "relates_to_product_reference": "Logging for Red Hat OpenShift 5.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:da617e0d22d0d8871e1f6c82e819d2f0baa5cc1da7735facf95a69af839e53dd_arm64 as a component of Logging for Red Hat OpenShift 5.8",
          "product_id": "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:da617e0d22d0d8871e1f6c82e819d2f0baa5cc1da7735facf95a69af839e53dd_arm64"
        },
        "product_reference": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:da617e0d22d0d8871e1f6c82e819d2f0baa5cc1da7735facf95a69af839e53dd_arm64",
        "relates_to_product_reference": "Logging for Red Hat OpenShift 5.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/openshift-logging/logging-curator5-rhel9@sha256:13e0b33a16fcd8d21a0aa9edb22629cd2efdcfbb0dc588382862766614ee7369_amd64 as a component of Logging for Red Hat OpenShift 5.8",
          "product_id": "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-curator5-rhel9@sha256:13e0b33a16fcd8d21a0aa9edb22629cd2efdcfbb0dc588382862766614ee7369_amd64"
        },
        "product_reference": "registry.redhat.io/openshift-logging/logging-curator5-rhel9@sha256:13e0b33a16fcd8d21a0aa9edb22629cd2efdcfbb0dc588382862766614ee7369_amd64",
        "relates_to_product_reference": "Logging for Red Hat OpenShift 5.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/openshift-logging/logging-curator5-rhel9@sha256:7145d597de3c4974831ca94ee180d333902fe47ec58aebd4917ecd4f0f68b51b_s390x as a component of Logging for Red Hat OpenShift 5.8",
          "product_id": "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-curator5-rhel9@sha256:7145d597de3c4974831ca94ee180d333902fe47ec58aebd4917ecd4f0f68b51b_s390x"
        },
        "product_reference": "registry.redhat.io/openshift-logging/logging-curator5-rhel9@sha256:7145d597de3c4974831ca94ee180d333902fe47ec58aebd4917ecd4f0f68b51b_s390x",
        "relates_to_product_reference": "Logging for Red Hat OpenShift 5.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/openshift-logging/logging-curator5-rhel9@sha256:8f971d2b38f62671744185382fad7877b14c4496703b1f6b6249b090774c890c_ppc64le as a component of Logging for Red Hat OpenShift 5.8",
          "product_id": "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-curator5-rhel9@sha256:8f971d2b38f62671744185382fad7877b14c4496703b1f6b6249b090774c890c_ppc64le"
        },
        "product_reference": "registry.redhat.io/openshift-logging/logging-curator5-rhel9@sha256:8f971d2b38f62671744185382fad7877b14c4496703b1f6b6249b090774c890c_ppc64le",
        "relates_to_product_reference": "Logging for Red Hat OpenShift 5.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/openshift-logging/logging-curator5-rhel9@sha256:b4daad7d081075f6043986ba8473fea92858a8ba6c81269733a4471973dcb1d3_arm64 as a component of Logging for Red Hat OpenShift 5.8",
          "product_id": "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-curator5-rhel9@sha256:b4daad7d081075f6043986ba8473fea92858a8ba6c81269733a4471973dcb1d3_arm64"
        },
        "product_reference": "registry.redhat.io/openshift-logging/logging-curator5-rhel9@sha256:b4daad7d081075f6043986ba8473fea92858a8ba6c81269733a4471973dcb1d3_arm64",
        "relates_to_product_reference": "Logging for Red Hat OpenShift 5.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:0ebfec4c761f2e008c1bb9ff782352a30ea087828ae6f87b41bce614e6e3808d_ppc64le as a component of Logging for Red Hat OpenShift 5.8",
          "product_id": "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:0ebfec4c761f2e008c1bb9ff782352a30ea087828ae6f87b41bce614e6e3808d_ppc64le"
        },
        "product_reference": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:0ebfec4c761f2e008c1bb9ff782352a30ea087828ae6f87b41bce614e6e3808d_ppc64le",
        "relates_to_product_reference": "Logging for Red Hat OpenShift 5.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:1ae6b377c9d1f1fcf7fb1ca0b5d5d04b6343e0224f0ab5105829ef3d0e7da837_arm64 as a component of Logging for Red Hat OpenShift 5.8",
          "product_id": "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:1ae6b377c9d1f1fcf7fb1ca0b5d5d04b6343e0224f0ab5105829ef3d0e7da837_arm64"
        },
        "product_reference": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:1ae6b377c9d1f1fcf7fb1ca0b5d5d04b6343e0224f0ab5105829ef3d0e7da837_arm64",
        "relates_to_product_reference": "Logging for Red Hat OpenShift 5.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:593f83a2b0ac764e7399da9494857675a3b84bb61175acb3f6355d4f40aa6841_s390x as a component of Logging for Red Hat OpenShift 5.8",
          "product_id": "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:593f83a2b0ac764e7399da9494857675a3b84bb61175acb3f6355d4f40aa6841_s390x"
        },
        "product_reference": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:593f83a2b0ac764e7399da9494857675a3b84bb61175acb3f6355d4f40aa6841_s390x",
        "relates_to_product_reference": "Logging for Red Hat OpenShift 5.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:5d71aef6c8659da46892224a848461dcb4484babd4bed816e6e8a9adea97c681_amd64 as a component of Logging for Red Hat OpenShift 5.8",
          "product_id": "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:5d71aef6c8659da46892224a848461dcb4484babd4bed816e6e8a9adea97c681_amd64"
        },
        "product_reference": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:5d71aef6c8659da46892224a848461dcb4484babd4bed816e6e8a9adea97c681_amd64",
        "relates_to_product_reference": "Logging for Red Hat OpenShift 5.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/openshift-logging/logging-view-plugin-rhel9@sha256:9e6ec3a8ebeced1d9673a6fca997f961524a505c42edf2a9fe2cf227a1e1446c_amd64 as a component of Logging for Red Hat OpenShift 5.8",
          "product_id": "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-view-plugin-rhel9@sha256:9e6ec3a8ebeced1d9673a6fca997f961524a505c42edf2a9fe2cf227a1e1446c_amd64"
        },
        "product_reference": "registry.redhat.io/openshift-logging/logging-view-plugin-rhel9@sha256:9e6ec3a8ebeced1d9673a6fca997f961524a505c42edf2a9fe2cf227a1e1446c_amd64",
        "relates_to_product_reference": "Logging for Red Hat OpenShift 5.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/openshift-logging/logging-view-plugin-rhel9@sha256:a49fbcde560e1f47718971793314d8bc7beb5c60b553235292d3b3c2f5d60fbd_s390x as a component of Logging for Red Hat OpenShift 5.8",
          "product_id": "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-view-plugin-rhel9@sha256:a49fbcde560e1f47718971793314d8bc7beb5c60b553235292d3b3c2f5d60fbd_s390x"
        },
        "product_reference": "registry.redhat.io/openshift-logging/logging-view-plugin-rhel9@sha256:a49fbcde560e1f47718971793314d8bc7beb5c60b553235292d3b3c2f5d60fbd_s390x",
        "relates_to_product_reference": "Logging for Red Hat OpenShift 5.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/openshift-logging/logging-view-plugin-rhel9@sha256:b169d6a3c9dfa04b95499a32fbc9d3321068e965e103425eca9b409e65f73a16_ppc64le as a component of Logging for Red Hat OpenShift 5.8",
          "product_id": "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-view-plugin-rhel9@sha256:b169d6a3c9dfa04b95499a32fbc9d3321068e965e103425eca9b409e65f73a16_ppc64le"
        },
        "product_reference": "registry.redhat.io/openshift-logging/logging-view-plugin-rhel9@sha256:b169d6a3c9dfa04b95499a32fbc9d3321068e965e103425eca9b409e65f73a16_ppc64le",
        "relates_to_product_reference": "Logging for Red Hat OpenShift 5.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/openshift-logging/logging-view-plugin-rhel9@sha256:ba602bc1bdc386e0041ec60f59d10eacee9831191407546f72809f41a56d3c5e_arm64 as a component of Logging for Red Hat OpenShift 5.8",
          "product_id": "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-view-plugin-rhel9@sha256:ba602bc1bdc386e0041ec60f59d10eacee9831191407546f72809f41a56d3c5e_arm64"
        },
        "product_reference": "registry.redhat.io/openshift-logging/logging-view-plugin-rhel9@sha256:ba602bc1bdc386e0041ec60f59d10eacee9831191407546f72809f41a56d3c5e_arm64",
        "relates_to_product_reference": "Logging for Red Hat OpenShift 5.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:df31607f5081ef5c4c9ecd48ad7f9ec521c82bb84930bf92c8df9e920b2bbabd_amd64 as a component of Logging for Red Hat OpenShift 5.8",
          "product_id": "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:df31607f5081ef5c4c9ecd48ad7f9ec521c82bb84930bf92c8df9e920b2bbabd_amd64"
        },
        "product_reference": "registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:df31607f5081ef5c4c9ecd48ad7f9ec521c82bb84930bf92c8df9e920b2bbabd_amd64",
        "relates_to_product_reference": "Logging for Red Hat OpenShift 5.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:107511201756a080e346348a545752bb2307ecf972b9d2512f8d107193beb3ac_s390x as a component of Logging for Red Hat OpenShift 5.8",
          "product_id": "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:107511201756a080e346348a545752bb2307ecf972b9d2512f8d107193beb3ac_s390x"
        },
        "product_reference": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:107511201756a080e346348a545752bb2307ecf972b9d2512f8d107193beb3ac_s390x",
        "relates_to_product_reference": "Logging for Red Hat OpenShift 5.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:39097f98b2277c1ccb22674d4afa9232b8ac06f80019c22b3bf7bec0ab917314_arm64 as a component of Logging for Red Hat OpenShift 5.8",
          "product_id": "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:39097f98b2277c1ccb22674d4afa9232b8ac06f80019c22b3bf7bec0ab917314_arm64"
        },
        "product_reference": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:39097f98b2277c1ccb22674d4afa9232b8ac06f80019c22b3bf7bec0ab917314_arm64",
        "relates_to_product_reference": "Logging for Red Hat OpenShift 5.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:7772b7908ff4176fd1f508c432f2ff140437e3d8a7093d30c8abc137dcd2da91_amd64 as a component of Logging for Red Hat OpenShift 5.8",
          "product_id": "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:7772b7908ff4176fd1f508c432f2ff140437e3d8a7093d30c8abc137dcd2da91_amd64"
        },
        "product_reference": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:7772b7908ff4176fd1f508c432f2ff140437e3d8a7093d30c8abc137dcd2da91_amd64",
        "relates_to_product_reference": "Logging for Red Hat OpenShift 5.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:c3f7f9ac3d3282aa6e316b7f514e8ba86d7de32e59b4104871294a46c639e4ea_ppc64le as a component of Logging for Red Hat OpenShift 5.8",
          "product_id": "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:c3f7f9ac3d3282aa6e316b7f514e8ba86d7de32e59b4104871294a46c639e4ea_ppc64le"
        },
        "product_reference": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:c3f7f9ac3d3282aa6e316b7f514e8ba86d7de32e59b4104871294a46c639e4ea_ppc64le",
        "relates_to_product_reference": "Logging for Red Hat OpenShift 5.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:2978a477faf98f048c043e6f46e3831015f9af4b4c67fc04d5c29bff93284445_amd64 as a component of Logging for Red Hat OpenShift 5.8",
          "product_id": "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:2978a477faf98f048c043e6f46e3831015f9af4b4c67fc04d5c29bff93284445_amd64"
        },
        "product_reference": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:2978a477faf98f048c043e6f46e3831015f9af4b4c67fc04d5c29bff93284445_amd64",
        "relates_to_product_reference": "Logging for Red Hat OpenShift 5.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:5a49302e675db6062a4a9995f017ec5c99c5c57bb26f725bc9b3e7d114ea8923_ppc64le as a component of Logging for Red Hat OpenShift 5.8",
          "product_id": "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:5a49302e675db6062a4a9995f017ec5c99c5c57bb26f725bc9b3e7d114ea8923_ppc64le"
        },
        "product_reference": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:5a49302e675db6062a4a9995f017ec5c99c5c57bb26f725bc9b3e7d114ea8923_ppc64le",
        "relates_to_product_reference": "Logging for Red Hat OpenShift 5.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:a856f7991481073f2b141b3df387f63b872154f538d6d7097672835e27178633_arm64 as a component of Logging for Red Hat OpenShift 5.8",
          "product_id": "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:a856f7991481073f2b141b3df387f63b872154f538d6d7097672835e27178633_arm64"
        },
        "product_reference": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:a856f7991481073f2b141b3df387f63b872154f538d6d7097672835e27178633_arm64",
        "relates_to_product_reference": "Logging for Red Hat OpenShift 5.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:b7c02439519f9ae36cd5ee1ae673eccb2e4a2c8b587a8b7a3bcd46324b981aea_s390x as a component of Logging for Red Hat OpenShift 5.8",
          "product_id": "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:b7c02439519f9ae36cd5ee1ae673eccb2e4a2c8b587a8b7a3bcd46324b981aea_s390x"
        },
        "product_reference": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:b7c02439519f9ae36cd5ee1ae673eccb2e4a2c8b587a8b7a3bcd46324b981aea_s390x",
        "relates_to_product_reference": "Logging for Red Hat OpenShift 5.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:719892b24322beec1f2f04d959c967956e8dcab1db7a9425004c7774b696a27d_arm64 as a component of Logging for Red Hat OpenShift 5.8",
          "product_id": "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:719892b24322beec1f2f04d959c967956e8dcab1db7a9425004c7774b696a27d_arm64"
        },
        "product_reference": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:719892b24322beec1f2f04d959c967956e8dcab1db7a9425004c7774b696a27d_arm64",
        "relates_to_product_reference": "Logging for Red Hat OpenShift 5.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:90e5728e6ff575ad46ac891e4b381e4d30acef1acd40ddc4c394184a61f86751_ppc64le as a component of Logging for Red Hat OpenShift 5.8",
          "product_id": "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:90e5728e6ff575ad46ac891e4b381e4d30acef1acd40ddc4c394184a61f86751_ppc64le"
        },
        "product_reference": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:90e5728e6ff575ad46ac891e4b381e4d30acef1acd40ddc4c394184a61f86751_ppc64le",
        "relates_to_product_reference": "Logging for Red Hat OpenShift 5.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:cec19f8bdab09437dc5b4b65dfa22083bc3a3c3fcd4b1e04e1da745689ec6485_amd64 as a component of Logging for Red Hat OpenShift 5.8",
          "product_id": "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:cec19f8bdab09437dc5b4b65dfa22083bc3a3c3fcd4b1e04e1da745689ec6485_amd64"
        },
        "product_reference": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:cec19f8bdab09437dc5b4b65dfa22083bc3a3c3fcd4b1e04e1da745689ec6485_amd64",
        "relates_to_product_reference": "Logging for Red Hat OpenShift 5.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:eed9da780a958c10da9f26bf9ebeed19f19dcfc8470dd2da8d62e54fd0cc0f45_s390x as a component of Logging for Red Hat OpenShift 5.8",
          "product_id": "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:eed9da780a958c10da9f26bf9ebeed19f19dcfc8470dd2da8d62e54fd0cc0f45_s390x"
        },
        "product_reference": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:eed9da780a958c10da9f26bf9ebeed19f19dcfc8470dd2da8d62e54fd0cc0f45_s390x",
        "relates_to_product_reference": "Logging for Red Hat OpenShift 5.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:38544593d67cf6df21c0b162661e966ee02b151c7a8378c8e7b55a4afab8fa02_s390x as a component of Logging for Red Hat OpenShift 5.8",
          "product_id": "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/vector-rhel9@sha256:38544593d67cf6df21c0b162661e966ee02b151c7a8378c8e7b55a4afab8fa02_s390x"
        },
        "product_reference": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:38544593d67cf6df21c0b162661e966ee02b151c7a8378c8e7b55a4afab8fa02_s390x",
        "relates_to_product_reference": "Logging for Red Hat OpenShift 5.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:3fa6a10b3b46d68dadf6a48955378a737c7387f7e5cbf5c4c444c2badeabdc29_arm64 as a component of Logging for Red Hat OpenShift 5.8",
          "product_id": "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/vector-rhel9@sha256:3fa6a10b3b46d68dadf6a48955378a737c7387f7e5cbf5c4c444c2badeabdc29_arm64"
        },
        "product_reference": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:3fa6a10b3b46d68dadf6a48955378a737c7387f7e5cbf5c4c444c2badeabdc29_arm64",
        "relates_to_product_reference": "Logging for Red Hat OpenShift 5.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:ce751c82c0a5a269b8bacfb6aca521d3e1a42e44e6124157dbfe60a86c3b3559_ppc64le as a component of Logging for Red Hat OpenShift 5.8",
          "product_id": "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/vector-rhel9@sha256:ce751c82c0a5a269b8bacfb6aca521d3e1a42e44e6124157dbfe60a86c3b3559_ppc64le"
        },
        "product_reference": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:ce751c82c0a5a269b8bacfb6aca521d3e1a42e44e6124157dbfe60a86c3b3559_ppc64le",
        "relates_to_product_reference": "Logging for Red Hat OpenShift 5.8"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:f5ba8e4b3f58ee60a44c631551fe420b46b459532b5f7c8afec1cad57f092295_amd64 as a component of Logging for Red Hat OpenShift 5.8",
          "product_id": "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/vector-rhel9@sha256:f5ba8e4b3f58ee60a44c631551fe420b46b459532b5f7c8afec1cad57f092295_amd64"
        },
        "product_reference": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:f5ba8e4b3f58ee60a44c631551fe420b46b459532b5f7c8afec1cad57f092295_amd64",
        "relates_to_product_reference": "Logging for Red Hat OpenShift 5.8"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2025-52999",
      "cwe": {
        "id": "CWE-121",
        "name": "Stack-based Buffer Overflow"
      },
      "discovery_date": "2025-06-25T18:00:54.693716+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:10a834de128292c966d88931ffaed3a61138d7c370540aa56091ad809233b964_amd64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:3159517ba1f092c4730b955e9ca19adb9f265c58efcc7c3287c59acdffcf2ff6_s390x",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:451e4a31954c189b3eef8bb9717d9c914b79b358db43db0bff0eb301d9d2cd58_arm64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:5c52006c3c3aa0f30a9305aeacfdc056a79f1047e0f3f3b0ac45cb9563643b16_amd64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:e497f4bf649b9a2fa948dee1667b063b93a73050617faf42b80bf660f7552275_ppc64le",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch-operator-bundle@sha256:5acbff74e14d6701f35ab8a6d47cf08c1921e6fa91e1cd71aff50316b94f42d5_amd64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch-proxy-rhel9@sha256:5d50a98eaef00ad8fa611531722f0def17548b746d3623db565a9137a29f5303_s390x",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch-proxy-rhel9@sha256:7e68e42bb57424e64b1637f9ae579fd63a34c250fd4d35960124a0786d977737_arm64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch-proxy-rhel9@sha256:bf4c3348b34042c159c931b6b5e61c7dd3f70113840d90fcf62d2f301162b544_amd64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch-proxy-rhel9@sha256:f76533b4c85fc4d53c544b50f542d4a0b5d1f27c8be8cf662a0a1174d93a398a_ppc64le",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch-rhel9-operator@sha256:22bc15f1672a91599f46df3800621cdd8e0aca3f9bf7ffc93ae822057a0513e8_amd64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch-rhel9-operator@sha256:7d20fd3f48a1d566ad0407acefd783030eb975a5d8552190456096ec8794c76e_s390x",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch-rhel9-operator@sha256:8cdcc1e7d115945f36b7ece850ba2aa4b8c666aca1e18281f55ac129876d656c_arm64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch-rhel9-operator@sha256:b8cbb17dcbb6c731df2199be08b04064fb7f828f5186b144ff2ad9d54af3bccd_ppc64le",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:21949e68be95fe0767632ab00d23db3c3ff03ab11f5316bf0be0dc6325add56c_amd64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:2934b2ad2561de2781bcea3574309f66fd8c95dc9651f75e85ad2eac08b7b814_arm64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:6d2c42b8ee388964f14733030ecb821e9066e5ae157eca20fdc9b68a5953bbb2_ppc64le",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:bba408215e00bfe6fbc6d160aa2630ec038ff8239bdba1076e1da25d11880c21_s390x",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/fluentd-rhel9@sha256:08a3ff9da5debce7644f6e07d41fa816186ef9505212c09b06501a04049c61b5_arm64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/fluentd-rhel9@sha256:3fcf3b22cf68e55c7ed13f9db9dc8408c5bca9a75ec763278e8a3e118e5c1410_ppc64le",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/fluentd-rhel9@sha256:7057594fd0d2b0ea1f7998d8c601c3c3c719a9a4fddbb0dfe8749422169a6d99_amd64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/fluentd-rhel9@sha256:e3bfdeab36bcad90e60ad94c6b20ea0102198c7117e67ee31e52d2a41e377e0a_s390x",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:6d76394fa839d86b3973ad722decdf236fd46216d776fa8c39ff6a17a41b4a56_amd64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:a474aa7df86477327b0b4d13fbfb0303723d81fc7de019a15e207238864aad13_ppc64le",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:b5ed6509786f8bb3173aecfdcd56553d0126a9034725d06fecc3c9d190f4b6f9_s390x",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:da617e0d22d0d8871e1f6c82e819d2f0baa5cc1da7735facf95a69af839e53dd_arm64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-curator5-rhel9@sha256:13e0b33a16fcd8d21a0aa9edb22629cd2efdcfbb0dc588382862766614ee7369_amd64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-curator5-rhel9@sha256:7145d597de3c4974831ca94ee180d333902fe47ec58aebd4917ecd4f0f68b51b_s390x",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-curator5-rhel9@sha256:8f971d2b38f62671744185382fad7877b14c4496703b1f6b6249b090774c890c_ppc64le",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-curator5-rhel9@sha256:b4daad7d081075f6043986ba8473fea92858a8ba6c81269733a4471973dcb1d3_arm64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:0ebfec4c761f2e008c1bb9ff782352a30ea087828ae6f87b41bce614e6e3808d_ppc64le",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:1ae6b377c9d1f1fcf7fb1ca0b5d5d04b6343e0224f0ab5105829ef3d0e7da837_arm64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:593f83a2b0ac764e7399da9494857675a3b84bb61175acb3f6355d4f40aa6841_s390x",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:5d71aef6c8659da46892224a848461dcb4484babd4bed816e6e8a9adea97c681_amd64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-view-plugin-rhel9@sha256:9e6ec3a8ebeced1d9673a6fca997f961524a505c42edf2a9fe2cf227a1e1446c_amd64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-view-plugin-rhel9@sha256:a49fbcde560e1f47718971793314d8bc7beb5c60b553235292d3b3c2f5d60fbd_s390x",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-view-plugin-rhel9@sha256:b169d6a3c9dfa04b95499a32fbc9d3321068e965e103425eca9b409e65f73a16_ppc64le",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-view-plugin-rhel9@sha256:ba602bc1bdc386e0041ec60f59d10eacee9831191407546f72809f41a56d3c5e_arm64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:df31607f5081ef5c4c9ecd48ad7f9ec521c82bb84930bf92c8df9e920b2bbabd_amd64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:107511201756a080e346348a545752bb2307ecf972b9d2512f8d107193beb3ac_s390x",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:39097f98b2277c1ccb22674d4afa9232b8ac06f80019c22b3bf7bec0ab917314_arm64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:7772b7908ff4176fd1f508c432f2ff140437e3d8a7093d30c8abc137dcd2da91_amd64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:c3f7f9ac3d3282aa6e316b7f514e8ba86d7de32e59b4104871294a46c639e4ea_ppc64le",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:2978a477faf98f048c043e6f46e3831015f9af4b4c67fc04d5c29bff93284445_amd64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:5a49302e675db6062a4a9995f017ec5c99c5c57bb26f725bc9b3e7d114ea8923_ppc64le",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:a856f7991481073f2b141b3df387f63b872154f538d6d7097672835e27178633_arm64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:b7c02439519f9ae36cd5ee1ae673eccb2e4a2c8b587a8b7a3bcd46324b981aea_s390x",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:719892b24322beec1f2f04d959c967956e8dcab1db7a9425004c7774b696a27d_arm64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:90e5728e6ff575ad46ac891e4b381e4d30acef1acd40ddc4c394184a61f86751_ppc64le",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:cec19f8bdab09437dc5b4b65dfa22083bc3a3c3fcd4b1e04e1da745689ec6485_amd64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:eed9da780a958c10da9f26bf9ebeed19f19dcfc8470dd2da8d62e54fd0cc0f45_s390x",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/vector-rhel9@sha256:38544593d67cf6df21c0b162661e966ee02b151c7a8378c8e7b55a4afab8fa02_s390x",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/vector-rhel9@sha256:3fa6a10b3b46d68dadf6a48955378a737c7387f7e5cbf5c4c444c2badeabdc29_arm64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/vector-rhel9@sha256:ce751c82c0a5a269b8bacfb6aca521d3e1a42e44e6124157dbfe60a86c3b3559_ppc64le",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/vector-rhel9@sha256:f5ba8e4b3f58ee60a44c631551fe420b46b459532b5f7c8afec1cad57f092295_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2374804"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A nested data handling flaw was found in Jackson Core. When parsing particularly deeply nested data structures, a StackoverflowError can occur.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "com.fasterxml.jackson.core/jackson-core: jackson-core Potential StackoverflowError",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch6-rhel9@sha256:128a6711150854305d7042e827d191cb5f136fa9591c2410279d9dc0f2b85a75_s390x",
          "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch6-rhel9@sha256:3dad38dd50e960647ea212947b27d8d6026690c61e5828013d4bcc5114216706_arm64",
          "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch6-rhel9@sha256:686e8e4c47246efa99c3284f1742cc948bdb2cb1ce0115721389a19242c8d27b_amd64",
          "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch6-rhel9@sha256:9d271868ac0a01e0fb80829141456333d38308d3723d7c79e9319c7bb802a9cd_ppc64le"
        ],
        "known_not_affected": [
          "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:10a834de128292c966d88931ffaed3a61138d7c370540aa56091ad809233b964_amd64",
          "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:3159517ba1f092c4730b955e9ca19adb9f265c58efcc7c3287c59acdffcf2ff6_s390x",
          "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:451e4a31954c189b3eef8bb9717d9c914b79b358db43db0bff0eb301d9d2cd58_arm64",
          "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:5c52006c3c3aa0f30a9305aeacfdc056a79f1047e0f3f3b0ac45cb9563643b16_amd64",
          "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:e497f4bf649b9a2fa948dee1667b063b93a73050617faf42b80bf660f7552275_ppc64le",
          "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch-operator-bundle@sha256:5acbff74e14d6701f35ab8a6d47cf08c1921e6fa91e1cd71aff50316b94f42d5_amd64",
          "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch-proxy-rhel9@sha256:5d50a98eaef00ad8fa611531722f0def17548b746d3623db565a9137a29f5303_s390x",
          "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch-proxy-rhel9@sha256:7e68e42bb57424e64b1637f9ae579fd63a34c250fd4d35960124a0786d977737_arm64",
          "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch-proxy-rhel9@sha256:bf4c3348b34042c159c931b6b5e61c7dd3f70113840d90fcf62d2f301162b544_amd64",
          "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch-proxy-rhel9@sha256:f76533b4c85fc4d53c544b50f542d4a0b5d1f27c8be8cf662a0a1174d93a398a_ppc64le",
          "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch-rhel9-operator@sha256:22bc15f1672a91599f46df3800621cdd8e0aca3f9bf7ffc93ae822057a0513e8_amd64",
          "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch-rhel9-operator@sha256:7d20fd3f48a1d566ad0407acefd783030eb975a5d8552190456096ec8794c76e_s390x",
          "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch-rhel9-operator@sha256:8cdcc1e7d115945f36b7ece850ba2aa4b8c666aca1e18281f55ac129876d656c_arm64",
          "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch-rhel9-operator@sha256:b8cbb17dcbb6c731df2199be08b04064fb7f828f5186b144ff2ad9d54af3bccd_ppc64le",
          "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:21949e68be95fe0767632ab00d23db3c3ff03ab11f5316bf0be0dc6325add56c_amd64",
          "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:2934b2ad2561de2781bcea3574309f66fd8c95dc9651f75e85ad2eac08b7b814_arm64",
          "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:6d2c42b8ee388964f14733030ecb821e9066e5ae157eca20fdc9b68a5953bbb2_ppc64le",
          "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:bba408215e00bfe6fbc6d160aa2630ec038ff8239bdba1076e1da25d11880c21_s390x",
          "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/fluentd-rhel9@sha256:08a3ff9da5debce7644f6e07d41fa816186ef9505212c09b06501a04049c61b5_arm64",
          "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/fluentd-rhel9@sha256:3fcf3b22cf68e55c7ed13f9db9dc8408c5bca9a75ec763278e8a3e118e5c1410_ppc64le",
          "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/fluentd-rhel9@sha256:7057594fd0d2b0ea1f7998d8c601c3c3c719a9a4fddbb0dfe8749422169a6d99_amd64",
          "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/fluentd-rhel9@sha256:e3bfdeab36bcad90e60ad94c6b20ea0102198c7117e67ee31e52d2a41e377e0a_s390x",
          "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:6d76394fa839d86b3973ad722decdf236fd46216d776fa8c39ff6a17a41b4a56_amd64",
          "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:a474aa7df86477327b0b4d13fbfb0303723d81fc7de019a15e207238864aad13_ppc64le",
          "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:b5ed6509786f8bb3173aecfdcd56553d0126a9034725d06fecc3c9d190f4b6f9_s390x",
          "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:da617e0d22d0d8871e1f6c82e819d2f0baa5cc1da7735facf95a69af839e53dd_arm64",
          "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-curator5-rhel9@sha256:13e0b33a16fcd8d21a0aa9edb22629cd2efdcfbb0dc588382862766614ee7369_amd64",
          "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-curator5-rhel9@sha256:7145d597de3c4974831ca94ee180d333902fe47ec58aebd4917ecd4f0f68b51b_s390x",
          "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-curator5-rhel9@sha256:8f971d2b38f62671744185382fad7877b14c4496703b1f6b6249b090774c890c_ppc64le",
          "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-curator5-rhel9@sha256:b4daad7d081075f6043986ba8473fea92858a8ba6c81269733a4471973dcb1d3_arm64",
          "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:0ebfec4c761f2e008c1bb9ff782352a30ea087828ae6f87b41bce614e6e3808d_ppc64le",
          "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:1ae6b377c9d1f1fcf7fb1ca0b5d5d04b6343e0224f0ab5105829ef3d0e7da837_arm64",
          "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:593f83a2b0ac764e7399da9494857675a3b84bb61175acb3f6355d4f40aa6841_s390x",
          "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:5d71aef6c8659da46892224a848461dcb4484babd4bed816e6e8a9adea97c681_amd64",
          "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-view-plugin-rhel9@sha256:9e6ec3a8ebeced1d9673a6fca997f961524a505c42edf2a9fe2cf227a1e1446c_amd64",
          "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-view-plugin-rhel9@sha256:a49fbcde560e1f47718971793314d8bc7beb5c60b553235292d3b3c2f5d60fbd_s390x",
          "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-view-plugin-rhel9@sha256:b169d6a3c9dfa04b95499a32fbc9d3321068e965e103425eca9b409e65f73a16_ppc64le",
          "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-view-plugin-rhel9@sha256:ba602bc1bdc386e0041ec60f59d10eacee9831191407546f72809f41a56d3c5e_arm64",
          "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:df31607f5081ef5c4c9ecd48ad7f9ec521c82bb84930bf92c8df9e920b2bbabd_amd64",
          "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:107511201756a080e346348a545752bb2307ecf972b9d2512f8d107193beb3ac_s390x",
          "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:39097f98b2277c1ccb22674d4afa9232b8ac06f80019c22b3bf7bec0ab917314_arm64",
          "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:7772b7908ff4176fd1f508c432f2ff140437e3d8a7093d30c8abc137dcd2da91_amd64",
          "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:c3f7f9ac3d3282aa6e316b7f514e8ba86d7de32e59b4104871294a46c639e4ea_ppc64le",
          "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:2978a477faf98f048c043e6f46e3831015f9af4b4c67fc04d5c29bff93284445_amd64",
          "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:5a49302e675db6062a4a9995f017ec5c99c5c57bb26f725bc9b3e7d114ea8923_ppc64le",
          "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:a856f7991481073f2b141b3df387f63b872154f538d6d7097672835e27178633_arm64",
          "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:b7c02439519f9ae36cd5ee1ae673eccb2e4a2c8b587a8b7a3bcd46324b981aea_s390x",
          "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:719892b24322beec1f2f04d959c967956e8dcab1db7a9425004c7774b696a27d_arm64",
          "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:90e5728e6ff575ad46ac891e4b381e4d30acef1acd40ddc4c394184a61f86751_ppc64le",
          "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:cec19f8bdab09437dc5b4b65dfa22083bc3a3c3fcd4b1e04e1da745689ec6485_amd64",
          "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:eed9da780a958c10da9f26bf9ebeed19f19dcfc8470dd2da8d62e54fd0cc0f45_s390x",
          "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/vector-rhel9@sha256:38544593d67cf6df21c0b162661e966ee02b151c7a8378c8e7b55a4afab8fa02_s390x",
          "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/vector-rhel9@sha256:3fa6a10b3b46d68dadf6a48955378a737c7387f7e5cbf5c4c444c2badeabdc29_arm64",
          "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/vector-rhel9@sha256:ce751c82c0a5a269b8bacfb6aca521d3e1a42e44e6124157dbfe60a86c3b3559_ppc64le",
          "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/vector-rhel9@sha256:f5ba8e4b3f58ee60a44c631551fe420b46b459532b5f7c8afec1cad57f092295_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-52999"
        },
        {
          "category": "external",
          "summary": "RHBZ#2374804",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2374804"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-52999",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-52999"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-52999",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-52999"
        },
        {
          "category": "external",
          "summary": "https://github.com/FasterXML/jackson-core/pull/943",
          "url": "https://github.com/FasterXML/jackson-core/pull/943"
        },
        {
          "category": "external",
          "summary": "https://github.com/FasterXML/jackson-core/security/advisories/GHSA-h46c-h94j-95f3",
          "url": "https://github.com/FasterXML/jackson-core/security/advisories/GHSA-h46c-h94j-95f3"
        }
      ],
      "release_date": "2025-06-25T17:02:57.428000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-10-01T18:01:13+00:00",
          "details": "For OpenShift Container Platform 4.14 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this errata update:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.14/html/release_notes/ocp-4-14-release-notes\n\nFor Red Hat OpenShift Logging 5.8, see the following instructions to apply this update:\n\nhttps://docs.openshift.com/container-platform/4.14/logging/cluster-logging-upgrading.html",
          "product_ids": [
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch6-rhel9@sha256:128a6711150854305d7042e827d191cb5f136fa9591c2410279d9dc0f2b85a75_s390x",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch6-rhel9@sha256:3dad38dd50e960647ea212947b27d8d6026690c61e5828013d4bcc5114216706_arm64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch6-rhel9@sha256:686e8e4c47246efa99c3284f1742cc948bdb2cb1ce0115721389a19242c8d27b_amd64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch6-rhel9@sha256:9d271868ac0a01e0fb80829141456333d38308d3723d7c79e9319c7bb802a9cd_ppc64le"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:17189"
        },
        {
          "category": "workaround",
          "details": "To mitigate this vulnerability, the recommendation is to avoid parsing input files from untrusted sources that may have excessively deep nested data structures; anything with a depth over 1000.",
          "product_ids": [
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:10a834de128292c966d88931ffaed3a61138d7c370540aa56091ad809233b964_amd64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:3159517ba1f092c4730b955e9ca19adb9f265c58efcc7c3287c59acdffcf2ff6_s390x",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:451e4a31954c189b3eef8bb9717d9c914b79b358db43db0bff0eb301d9d2cd58_arm64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:5c52006c3c3aa0f30a9305aeacfdc056a79f1047e0f3f3b0ac45cb9563643b16_amd64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:e497f4bf649b9a2fa948dee1667b063b93a73050617faf42b80bf660f7552275_ppc64le",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch-operator-bundle@sha256:5acbff74e14d6701f35ab8a6d47cf08c1921e6fa91e1cd71aff50316b94f42d5_amd64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch-proxy-rhel9@sha256:5d50a98eaef00ad8fa611531722f0def17548b746d3623db565a9137a29f5303_s390x",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch-proxy-rhel9@sha256:7e68e42bb57424e64b1637f9ae579fd63a34c250fd4d35960124a0786d977737_arm64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch-proxy-rhel9@sha256:bf4c3348b34042c159c931b6b5e61c7dd3f70113840d90fcf62d2f301162b544_amd64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch-proxy-rhel9@sha256:f76533b4c85fc4d53c544b50f542d4a0b5d1f27c8be8cf662a0a1174d93a398a_ppc64le",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch-rhel9-operator@sha256:22bc15f1672a91599f46df3800621cdd8e0aca3f9bf7ffc93ae822057a0513e8_amd64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch-rhel9-operator@sha256:7d20fd3f48a1d566ad0407acefd783030eb975a5d8552190456096ec8794c76e_s390x",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch-rhel9-operator@sha256:8cdcc1e7d115945f36b7ece850ba2aa4b8c666aca1e18281f55ac129876d656c_arm64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch-rhel9-operator@sha256:b8cbb17dcbb6c731df2199be08b04064fb7f828f5186b144ff2ad9d54af3bccd_ppc64le",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch6-rhel9@sha256:128a6711150854305d7042e827d191cb5f136fa9591c2410279d9dc0f2b85a75_s390x",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch6-rhel9@sha256:3dad38dd50e960647ea212947b27d8d6026690c61e5828013d4bcc5114216706_arm64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch6-rhel9@sha256:686e8e4c47246efa99c3284f1742cc948bdb2cb1ce0115721389a19242c8d27b_amd64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch6-rhel9@sha256:9d271868ac0a01e0fb80829141456333d38308d3723d7c79e9319c7bb802a9cd_ppc64le",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:21949e68be95fe0767632ab00d23db3c3ff03ab11f5316bf0be0dc6325add56c_amd64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:2934b2ad2561de2781bcea3574309f66fd8c95dc9651f75e85ad2eac08b7b814_arm64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:6d2c42b8ee388964f14733030ecb821e9066e5ae157eca20fdc9b68a5953bbb2_ppc64le",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:bba408215e00bfe6fbc6d160aa2630ec038ff8239bdba1076e1da25d11880c21_s390x",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/fluentd-rhel9@sha256:08a3ff9da5debce7644f6e07d41fa816186ef9505212c09b06501a04049c61b5_arm64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/fluentd-rhel9@sha256:3fcf3b22cf68e55c7ed13f9db9dc8408c5bca9a75ec763278e8a3e118e5c1410_ppc64le",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/fluentd-rhel9@sha256:7057594fd0d2b0ea1f7998d8c601c3c3c719a9a4fddbb0dfe8749422169a6d99_amd64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/fluentd-rhel9@sha256:e3bfdeab36bcad90e60ad94c6b20ea0102198c7117e67ee31e52d2a41e377e0a_s390x",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:6d76394fa839d86b3973ad722decdf236fd46216d776fa8c39ff6a17a41b4a56_amd64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:a474aa7df86477327b0b4d13fbfb0303723d81fc7de019a15e207238864aad13_ppc64le",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:b5ed6509786f8bb3173aecfdcd56553d0126a9034725d06fecc3c9d190f4b6f9_s390x",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:da617e0d22d0d8871e1f6c82e819d2f0baa5cc1da7735facf95a69af839e53dd_arm64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-curator5-rhel9@sha256:13e0b33a16fcd8d21a0aa9edb22629cd2efdcfbb0dc588382862766614ee7369_amd64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-curator5-rhel9@sha256:7145d597de3c4974831ca94ee180d333902fe47ec58aebd4917ecd4f0f68b51b_s390x",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-curator5-rhel9@sha256:8f971d2b38f62671744185382fad7877b14c4496703b1f6b6249b090774c890c_ppc64le",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-curator5-rhel9@sha256:b4daad7d081075f6043986ba8473fea92858a8ba6c81269733a4471973dcb1d3_arm64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:0ebfec4c761f2e008c1bb9ff782352a30ea087828ae6f87b41bce614e6e3808d_ppc64le",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:1ae6b377c9d1f1fcf7fb1ca0b5d5d04b6343e0224f0ab5105829ef3d0e7da837_arm64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:593f83a2b0ac764e7399da9494857675a3b84bb61175acb3f6355d4f40aa6841_s390x",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:5d71aef6c8659da46892224a848461dcb4484babd4bed816e6e8a9adea97c681_amd64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-view-plugin-rhel9@sha256:9e6ec3a8ebeced1d9673a6fca997f961524a505c42edf2a9fe2cf227a1e1446c_amd64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-view-plugin-rhel9@sha256:a49fbcde560e1f47718971793314d8bc7beb5c60b553235292d3b3c2f5d60fbd_s390x",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-view-plugin-rhel9@sha256:b169d6a3c9dfa04b95499a32fbc9d3321068e965e103425eca9b409e65f73a16_ppc64le",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-view-plugin-rhel9@sha256:ba602bc1bdc386e0041ec60f59d10eacee9831191407546f72809f41a56d3c5e_arm64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:df31607f5081ef5c4c9ecd48ad7f9ec521c82bb84930bf92c8df9e920b2bbabd_amd64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:107511201756a080e346348a545752bb2307ecf972b9d2512f8d107193beb3ac_s390x",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:39097f98b2277c1ccb22674d4afa9232b8ac06f80019c22b3bf7bec0ab917314_arm64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:7772b7908ff4176fd1f508c432f2ff140437e3d8a7093d30c8abc137dcd2da91_amd64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:c3f7f9ac3d3282aa6e316b7f514e8ba86d7de32e59b4104871294a46c639e4ea_ppc64le",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:2978a477faf98f048c043e6f46e3831015f9af4b4c67fc04d5c29bff93284445_amd64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:5a49302e675db6062a4a9995f017ec5c99c5c57bb26f725bc9b3e7d114ea8923_ppc64le",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:a856f7991481073f2b141b3df387f63b872154f538d6d7097672835e27178633_arm64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:b7c02439519f9ae36cd5ee1ae673eccb2e4a2c8b587a8b7a3bcd46324b981aea_s390x",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:719892b24322beec1f2f04d959c967956e8dcab1db7a9425004c7774b696a27d_arm64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:90e5728e6ff575ad46ac891e4b381e4d30acef1acd40ddc4c394184a61f86751_ppc64le",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:cec19f8bdab09437dc5b4b65dfa22083bc3a3c3fcd4b1e04e1da745689ec6485_amd64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:eed9da780a958c10da9f26bf9ebeed19f19dcfc8470dd2da8d62e54fd0cc0f45_s390x",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/vector-rhel9@sha256:38544593d67cf6df21c0b162661e966ee02b151c7a8378c8e7b55a4afab8fa02_s390x",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/vector-rhel9@sha256:3fa6a10b3b46d68dadf6a48955378a737c7387f7e5cbf5c4c444c2badeabdc29_arm64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/vector-rhel9@sha256:ce751c82c0a5a269b8bacfb6aca521d3e1a42e44e6124157dbfe60a86c3b3559_ppc64le",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/vector-rhel9@sha256:f5ba8e4b3f58ee60a44c631551fe420b46b459532b5f7c8afec1cad57f092295_amd64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:10a834de128292c966d88931ffaed3a61138d7c370540aa56091ad809233b964_amd64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:3159517ba1f092c4730b955e9ca19adb9f265c58efcc7c3287c59acdffcf2ff6_s390x",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:451e4a31954c189b3eef8bb9717d9c914b79b358db43db0bff0eb301d9d2cd58_arm64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:5c52006c3c3aa0f30a9305aeacfdc056a79f1047e0f3f3b0ac45cb9563643b16_amd64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:e497f4bf649b9a2fa948dee1667b063b93a73050617faf42b80bf660f7552275_ppc64le",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch-operator-bundle@sha256:5acbff74e14d6701f35ab8a6d47cf08c1921e6fa91e1cd71aff50316b94f42d5_amd64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch-proxy-rhel9@sha256:5d50a98eaef00ad8fa611531722f0def17548b746d3623db565a9137a29f5303_s390x",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch-proxy-rhel9@sha256:7e68e42bb57424e64b1637f9ae579fd63a34c250fd4d35960124a0786d977737_arm64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch-proxy-rhel9@sha256:bf4c3348b34042c159c931b6b5e61c7dd3f70113840d90fcf62d2f301162b544_amd64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch-proxy-rhel9@sha256:f76533b4c85fc4d53c544b50f542d4a0b5d1f27c8be8cf662a0a1174d93a398a_ppc64le",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch-rhel9-operator@sha256:22bc15f1672a91599f46df3800621cdd8e0aca3f9bf7ffc93ae822057a0513e8_amd64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch-rhel9-operator@sha256:7d20fd3f48a1d566ad0407acefd783030eb975a5d8552190456096ec8794c76e_s390x",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch-rhel9-operator@sha256:8cdcc1e7d115945f36b7ece850ba2aa4b8c666aca1e18281f55ac129876d656c_arm64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch-rhel9-operator@sha256:b8cbb17dcbb6c731df2199be08b04064fb7f828f5186b144ff2ad9d54af3bccd_ppc64le",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch6-rhel9@sha256:128a6711150854305d7042e827d191cb5f136fa9591c2410279d9dc0f2b85a75_s390x",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch6-rhel9@sha256:3dad38dd50e960647ea212947b27d8d6026690c61e5828013d4bcc5114216706_arm64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch6-rhel9@sha256:686e8e4c47246efa99c3284f1742cc948bdb2cb1ce0115721389a19242c8d27b_amd64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/elasticsearch6-rhel9@sha256:9d271868ac0a01e0fb80829141456333d38308d3723d7c79e9319c7bb802a9cd_ppc64le",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:21949e68be95fe0767632ab00d23db3c3ff03ab11f5316bf0be0dc6325add56c_amd64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:2934b2ad2561de2781bcea3574309f66fd8c95dc9651f75e85ad2eac08b7b814_arm64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:6d2c42b8ee388964f14733030ecb821e9066e5ae157eca20fdc9b68a5953bbb2_ppc64le",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:bba408215e00bfe6fbc6d160aa2630ec038ff8239bdba1076e1da25d11880c21_s390x",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/fluentd-rhel9@sha256:08a3ff9da5debce7644f6e07d41fa816186ef9505212c09b06501a04049c61b5_arm64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/fluentd-rhel9@sha256:3fcf3b22cf68e55c7ed13f9db9dc8408c5bca9a75ec763278e8a3e118e5c1410_ppc64le",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/fluentd-rhel9@sha256:7057594fd0d2b0ea1f7998d8c601c3c3c719a9a4fddbb0dfe8749422169a6d99_amd64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/fluentd-rhel9@sha256:e3bfdeab36bcad90e60ad94c6b20ea0102198c7117e67ee31e52d2a41e377e0a_s390x",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:6d76394fa839d86b3973ad722decdf236fd46216d776fa8c39ff6a17a41b4a56_amd64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:a474aa7df86477327b0b4d13fbfb0303723d81fc7de019a15e207238864aad13_ppc64le",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:b5ed6509786f8bb3173aecfdcd56553d0126a9034725d06fecc3c9d190f4b6f9_s390x",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:da617e0d22d0d8871e1f6c82e819d2f0baa5cc1da7735facf95a69af839e53dd_arm64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-curator5-rhel9@sha256:13e0b33a16fcd8d21a0aa9edb22629cd2efdcfbb0dc588382862766614ee7369_amd64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-curator5-rhel9@sha256:7145d597de3c4974831ca94ee180d333902fe47ec58aebd4917ecd4f0f68b51b_s390x",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-curator5-rhel9@sha256:8f971d2b38f62671744185382fad7877b14c4496703b1f6b6249b090774c890c_ppc64le",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-curator5-rhel9@sha256:b4daad7d081075f6043986ba8473fea92858a8ba6c81269733a4471973dcb1d3_arm64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:0ebfec4c761f2e008c1bb9ff782352a30ea087828ae6f87b41bce614e6e3808d_ppc64le",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:1ae6b377c9d1f1fcf7fb1ca0b5d5d04b6343e0224f0ab5105829ef3d0e7da837_arm64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:593f83a2b0ac764e7399da9494857675a3b84bb61175acb3f6355d4f40aa6841_s390x",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:5d71aef6c8659da46892224a848461dcb4484babd4bed816e6e8a9adea97c681_amd64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-view-plugin-rhel9@sha256:9e6ec3a8ebeced1d9673a6fca997f961524a505c42edf2a9fe2cf227a1e1446c_amd64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-view-plugin-rhel9@sha256:a49fbcde560e1f47718971793314d8bc7beb5c60b553235292d3b3c2f5d60fbd_s390x",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-view-plugin-rhel9@sha256:b169d6a3c9dfa04b95499a32fbc9d3321068e965e103425eca9b409e65f73a16_ppc64le",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/logging-view-plugin-rhel9@sha256:ba602bc1bdc386e0041ec60f59d10eacee9831191407546f72809f41a56d3c5e_arm64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:df31607f5081ef5c4c9ecd48ad7f9ec521c82bb84930bf92c8df9e920b2bbabd_amd64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:107511201756a080e346348a545752bb2307ecf972b9d2512f8d107193beb3ac_s390x",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:39097f98b2277c1ccb22674d4afa9232b8ac06f80019c22b3bf7bec0ab917314_arm64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:7772b7908ff4176fd1f508c432f2ff140437e3d8a7093d30c8abc137dcd2da91_amd64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:c3f7f9ac3d3282aa6e316b7f514e8ba86d7de32e59b4104871294a46c639e4ea_ppc64le",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:2978a477faf98f048c043e6f46e3831015f9af4b4c67fc04d5c29bff93284445_amd64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:5a49302e675db6062a4a9995f017ec5c99c5c57bb26f725bc9b3e7d114ea8923_ppc64le",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:a856f7991481073f2b141b3df387f63b872154f538d6d7097672835e27178633_arm64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:b7c02439519f9ae36cd5ee1ae673eccb2e4a2c8b587a8b7a3bcd46324b981aea_s390x",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:719892b24322beec1f2f04d959c967956e8dcab1db7a9425004c7774b696a27d_arm64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:90e5728e6ff575ad46ac891e4b381e4d30acef1acd40ddc4c394184a61f86751_ppc64le",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:cec19f8bdab09437dc5b4b65dfa22083bc3a3c3fcd4b1e04e1da745689ec6485_amd64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:eed9da780a958c10da9f26bf9ebeed19f19dcfc8470dd2da8d62e54fd0cc0f45_s390x",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/vector-rhel9@sha256:38544593d67cf6df21c0b162661e966ee02b151c7a8378c8e7b55a4afab8fa02_s390x",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/vector-rhel9@sha256:3fa6a10b3b46d68dadf6a48955378a737c7387f7e5cbf5c4c444c2badeabdc29_arm64",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/vector-rhel9@sha256:ce751c82c0a5a269b8bacfb6aca521d3e1a42e44e6124157dbfe60a86c3b3559_ppc64le",
            "Logging for Red Hat OpenShift 5.8:registry.redhat.io/openshift-logging/vector-rhel9@sha256:f5ba8e4b3f58ee60a44c631551fe420b46b459532b5f7c8afec1cad57f092295_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "com.fasterxml.jackson.core/jackson-core: jackson-core Potential StackoverflowError"
    }
  ]
}

RHSA-2025:3465

Vulnerability from csaf_redhat - Published: 2025-04-01 13:12 - Updated: 2026-05-10 14:27

Summary

Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4.21 security update

Severity

Important

Notes

Topic: A security update is now available for Red Hat JBoss Enterprise Application Platform 7.4. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Details: Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime. This asynchronous patch is a security update for Red Hat JBoss Enterprise Application Platform 7.4. Security Fix(es): * io.netty/netty: Denial of Service attack on windows app using Netty (CVE-2024-47535) * netty-common: Denial of Service attack on windows app using Netty (CVE-2025-25193) * io.netty/netty-handler: SslHandler doesn't correctly validate packets which can lead to native crash when using native SSLEngine (CVE-2025-24970) * org.wildfly.core/wildfly-server: Wildfly improper RBAC permission (CVE-2025-23367) A Red Hat Security Bulletin which addresses further details about this flaw is available in the References section. For more details about the security issue(s), including the impact, a CVSS score, acknowledgements, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2024-47535

A flaw was found in Netty. An unsafe reading of the environment file could potentially cause a denial of service. When loaded on a Windows application, Netty attempts to load a file that does not exist. If an attacker creates a large file, the Netty application crashes.

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE-400 - Uncontrolled Resource Consumption

Affected products

Fixed 109 products

Product	Version	Remediation
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.src	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.src	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.src	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.src	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.src	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.src	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2024-51127

A flaw was found in the createTempFile method of hornetq. Affected version of hornetq allows attackers to arbitrarily overwrite files or access sensitive information.

7.1 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Affected products

Fixed 109 products

Product	Version	Remediation
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2025-23367

A flaw was found in the Wildfly Server Role Based Access Control (RBAC) provider. When authorization to control management operations is secured using the Role Based Access Control provider, a user without the required privileges can suspend or resume the server. A user with a Monitor or Auditor role is supposed to have only read access permissions and should not be able to suspend the server. The vulnerability is caused by the Suspend and Resume handlers not performing authorization checks to validate whether the current user has the required permissions to proceed with the action.

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE-284 - Improper Access Control

Affected products

Fixed 109 products

Product	Version	Remediation
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2025-24970

A flaw was found in Netty's SslHandler. This vulnerability allows a native crash via a specially crafted packet that bypasses proper validation.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-20 - Improper Input Validation

Affected products

Fixed 109 products

Product	Version	Remediation
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2025-25193

A flaw was found in Netty. An unsafe reading of the environment file could cause a denial of service. When loaded on a Windows application, Netty attempts to load a file that does not exist. If an attacker creates a large file, the Netty application crash.

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE-400 - Uncontrolled Resource Consumption

Affected products

Fixed 109 products

Product	Version	Remediation
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2025-48734

A flaw was found in Apache Commons BeanUtils. This vulnerability allows remote attackers to execute arbitrary code via uncontrolled access to the declaredClass property on Java enum objects, which can expose the class loader when property paths are passed from external sources to methods like getProperty() or getNestedProperty().

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE-284 - Improper Access Control

Affected products

Fixed 109 products

Product	Version	Remediation
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.src	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.src	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.src	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.src	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.src	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.src	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix

Threats

Impact Important

CVE-2025-52999

A nested data handling flaw was found in Jackson Core. When parsing particularly deeply nested data structures, a StackoverflowError can occur.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-121 - Stack-based Buffer Overflow

Affected products

Fixed 109 products

Product	Version	Remediation
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround

Threats

Impact Important

References

48 references

URL	Category
https://access.redhat.com/errata/RHSA-2025:3465	self
https://access.redhat.com/security/updates/classi…	external
https://docs.redhat.com/en/documentation/red_hat_…	external
https://docs.redhat.com/en/documentation/red_hat_…	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2024-47535	self
https://bugzilla.redhat.com/show_bug.cgi?id=2325538	external
https://www.cve.org/CVERecord?id=CVE-2024-47535	external
https://nvd.nist.gov/vuln/detail/CVE-2024-47535	external
https://github.com/netty/netty/commit/fbf7a704a82…	external
https://github.com/netty/netty/security/advisorie…	external
https://access.redhat.com/security/cve/CVE-2024-51127	self
https://bugzilla.redhat.com/show_bug.cgi?id=2323697	external
https://www.cve.org/CVERecord?id=CVE-2024-51127	external
https://nvd.nist.gov/vuln/detail/CVE-2024-51127	external
http://hornetq.com	external
https://github.com/JAckLosingHeart/CWE-378/blob/m…	external
https://access.redhat.com/security/cve/CVE-2025-23367	self
https://bugzilla.redhat.com/show_bug.cgi?id=2337620	external
https://www.cve.org/CVERecord?id=CVE-2025-23367	external
https://nvd.nist.gov/vuln/detail/CVE-2025-23367	external
https://github.com/advisories/GHSA-qr6x-62gq-4ccp	external
https://access.redhat.com/security/cve/CVE-2025-24970	self
https://bugzilla.redhat.com/show_bug.cgi?id=2344787	external
https://www.cve.org/CVERecord?id=CVE-2025-24970	external
https://nvd.nist.gov/vuln/detail/CVE-2025-24970	external
https://github.com/netty/netty/commit/87f40725155…	external
https://github.com/netty/netty/security/advisorie…	external
https://access.redhat.com/security/cve/CVE-2025-25193	self
https://bugzilla.redhat.com/show_bug.cgi?id=2344788	external
https://www.cve.org/CVERecord?id=CVE-2025-25193	external
https://nvd.nist.gov/vuln/detail/CVE-2025-25193	external
https://github.com/netty/netty/commit/d1fbda62d3a…	external
https://github.com/netty/netty/security/advisorie…	external
https://access.redhat.com/security/cve/CVE-2025-48734	self
https://bugzilla.redhat.com/show_bug.cgi?id=2368956	external
https://www.cve.org/CVERecord?id=CVE-2025-48734	external
https://nvd.nist.gov/vuln/detail/CVE-2025-48734	external
https://github.com/advisories/GHSA-wxr5-93ph-8wr9	external
https://github.com/apache/commons-beanutils/commi…	external
https://lists.apache.org/thread/s0hb3jkfj5f3ryx6c…	external
https://www.openwall.com/lists/oss-security/2025/…	external
https://access.redhat.com/security/cve/CVE-2025-52999	self
https://bugzilla.redhat.com/show_bug.cgi?id=2374804	external
https://www.cve.org/CVERecord?id=CVE-2025-52999	external
https://nvd.nist.gov/vuln/detail/CVE-2025-52999	external
https://github.com/FasterXML/jackson-core/pull/943	external
https://github.com/FasterXML/jackson-core/securit…	external

Acknowledgments

TIM S.p.A Claudia Bartolini Marco Ventura Massimiliano Brolli

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "A security update is now available for Red Hat JBoss Enterprise Application Platform 7.4.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime.\n\nThis asynchronous patch is a security update for Red Hat JBoss Enterprise Application Platform 7.4.\n\nSecurity Fix(es):\n\n* io.netty/netty: Denial of Service attack on windows app using Netty (CVE-2024-47535)\n\n* netty-common: Denial of Service attack on windows app using Netty (CVE-2025-25193)\n\n* io.netty/netty-handler: SslHandler doesn\u0027t correctly validate packets which can lead to native crash when using native SSLEngine (CVE-2025-24970)\n\n* org.wildfly.core/wildfly-server: Wildfly improper RBAC permission (CVE-2025-23367)\n\nA Red Hat Security Bulletin which addresses further details about this flaw is available in the References section.\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgements, and other related information, refer to the CVE page(s) listed in the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2025:3465",
        "url": "https://access.redhat.com/errata/RHSA-2025:3465"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "https://docs.redhat.com/en/documentation/red_hat_jboss_enterprise_application_platform/7.4",
        "url": "https://docs.redhat.com/en/documentation/red_hat_jboss_enterprise_application_platform/7.4"
      },
      {
        "category": "external",
        "summary": "https://docs.redhat.com/en/documentation/red_hat_jboss_enterprise_application_platform/7.4/html-single/installation_guide/index",
        "url": "https://docs.redhat.com/en/documentation/red_hat_jboss_enterprise_application_platform/7.4/html-single/installation_guide/index"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_3465.json"
      }
    ],
    "title": "Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4.21 security update",
    "tracking": {
      "current_release_date": "2026-05-10T14:27:15+00:00",
      "generator": {
        "date": "2026-05-10T14:27:15+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.7.9"
        }
      },
      "id": "RHSA-2025:3465",
      "initial_release_date": "2025-04-01T13:12:18+00:00",
      "revision_history": [
        {
          "date": "2025-04-01T13:12:18+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2025-04-01T13:12:18+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-05-10T14:27:15+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat JBoss EAP 7.4 for RHEL 7 Server",
                "product": {
                  "name": "Red Hat JBoss EAP 7.4 for RHEL 7 Server",
                  "product_id": "7Server-JBEAP-7.4",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el7"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat JBoss EAP 7.4 for RHEL 8",
                "product": {
                  "name": "Red Hat JBoss EAP 7.4 for RHEL 8",
                  "product_id": "8Base-JBEAP-7.4",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el8"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat JBoss EAP 7.4 for RHEL 9",
                "product": {
                  "name": "Red Hat JBoss EAP 7.4 for RHEL 9",
                  "product_id": "9Base-JBEAP-7.4",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el9"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat JBoss Enterprise Application Platform"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.src",
                "product": {
                  "name": "eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.src",
                  "product_id": "eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-transport-native-epoll@4.1.119-1.Final_redhat_00004.1.el7eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.src",
                "product": {
                  "name": "eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.src",
                  "product_id": "eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty@4.1.119-1.Final_redhat_00004.1.el7eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.src",
                "product": {
                  "name": "eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.src",
                  "product_id": "eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly@7.4.21-3.GA_29548_redhat_00001.1.el7eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.src",
                "product": {
                  "name": "eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.src",
                  "product_id": "eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-transport-native-epoll@4.1.119-1.Final_redhat_00004.1.el8eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.src",
                "product": {
                  "name": "eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.src",
                  "product_id": "eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty@4.1.119-1.Final_redhat_00004.1.el8eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.src",
                "product": {
                  "name": "eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.src",
                  "product_id": "eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly@7.4.21-3.GA_29548_redhat_00001.1.el8eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.src",
                "product": {
                  "name": "eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.src",
                  "product_id": "eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-transport-native-epoll@4.1.119-1.Final_redhat_00004.1.el9eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.src",
                "product": {
                  "name": "eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.src",
                  "product_id": "eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty@4.1.119-1.Final_redhat_00004.1.el9eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.src",
                "product": {
                  "name": "eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.src",
                  "product_id": "eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly@7.4.21-3.GA_29548_redhat_00001.1.el9eap?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64",
                "product": {
                  "name": "eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64",
                  "product_id": "eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-transport-native-epoll@4.1.119-1.Final_redhat_00004.1.el7eap?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64",
                "product": {
                  "name": "eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64",
                  "product_id": "eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-transport-native-epoll-debuginfo@4.1.119-1.Final_redhat_00004.1.el7eap?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64",
                "product": {
                  "name": "eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64",
                  "product_id": "eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-transport-native-epoll@4.1.119-1.Final_redhat_00004.1.el8eap?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64",
                "product": {
                  "name": "eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64",
                  "product_id": "eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-transport-native-epoll-debuginfo@4.1.119-1.Final_redhat_00004.1.el8eap?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64",
                "product": {
                  "name": "eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64",
                  "product_id": "eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-transport-native-epoll@4.1.119-1.Final_redhat_00004.1.el9eap?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64",
                "product": {
                  "name": "eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64",
                  "product_id": "eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-transport-native-epoll-debuginfo@4.1.119-1.Final_redhat_00004.1.el9eap?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                "product": {
                  "name": "eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                  "product_id": "eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty@4.1.119-1.Final_redhat_00004.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                "product": {
                  "name": "eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                  "product_id": "eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-all@4.1.119-1.Final_redhat_00004.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                "product": {
                  "name": "eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                  "product_id": "eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-buffer@4.1.119-1.Final_redhat_00004.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                  "product_id": "eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec@4.1.119-1.Final_redhat_00004.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                  "product_id": "eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-dns@4.1.119-1.Final_redhat_00004.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                  "product_id": "eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-haproxy@4.1.119-1.Final_redhat_00004.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                  "product_id": "eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-http@4.1.119-1.Final_redhat_00004.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                  "product_id": "eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-http2@4.1.119-1.Final_redhat_00004.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                  "product_id": "eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-memcache@4.1.119-1.Final_redhat_00004.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                  "product_id": "eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-mqtt@4.1.119-1.Final_redhat_00004.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                  "product_id": "eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-redis@4.1.119-1.Final_redhat_00004.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                  "product_id": "eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-smtp@4.1.119-1.Final_redhat_00004.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                  "product_id": "eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-socks@4.1.119-1.Final_redhat_00004.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                  "product_id": "eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-stomp@4.1.119-1.Final_redhat_00004.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                  "product_id": "eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-xml@4.1.119-1.Final_redhat_00004.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                "product": {
                  "name": "eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                  "product_id": "eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-common@4.1.119-1.Final_redhat_00004.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                "product": {
                  "name": "eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                  "product_id": "eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-handler@4.1.119-1.Final_redhat_00004.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                "product": {
                  "name": "eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                  "product_id": "eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-handler-proxy@4.1.119-1.Final_redhat_00004.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                "product": {
                  "name": "eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                  "product_id": "eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-resolver@4.1.119-1.Final_redhat_00004.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                "product": {
                  "name": "eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                  "product_id": "eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-resolver-dns@4.1.119-1.Final_redhat_00004.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                "product": {
                  "name": "eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                  "product_id": "eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-resolver-dns-classes-macos@4.1.119-1.Final_redhat_00004.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                "product": {
                  "name": "eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                  "product_id": "eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-transport@4.1.119-1.Final_redhat_00004.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                "product": {
                  "name": "eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                  "product_id": "eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-transport-classes-epoll@4.1.119-1.Final_redhat_00004.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                "product": {
                  "name": "eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                  "product_id": "eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-transport-classes-kqueue@4.1.119-1.Final_redhat_00004.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                "product": {
                  "name": "eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                  "product_id": "eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-transport-native-unix-common@4.1.119-1.Final_redhat_00004.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                "product": {
                  "name": "eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                  "product_id": "eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-transport-sctp@4.1.119-1.Final_redhat_00004.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly@7.4.21-3.GA_29548_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly-java-jdk11@7.4.21-3.GA_29548_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly-java-jdk8@7.4.21-3.GA_29548_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly-javadocs@7.4.21-3.GA_29548_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly-modules@7.4.21-3.GA_29548_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                "product": {
                  "name": "eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                  "product_id": "eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty@4.1.119-1.Final_redhat_00004.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                "product": {
                  "name": "eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                  "product_id": "eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-all@4.1.119-1.Final_redhat_00004.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                "product": {
                  "name": "eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                  "product_id": "eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-buffer@4.1.119-1.Final_redhat_00004.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                  "product_id": "eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec@4.1.119-1.Final_redhat_00004.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                  "product_id": "eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-dns@4.1.119-1.Final_redhat_00004.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                  "product_id": "eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-haproxy@4.1.119-1.Final_redhat_00004.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                  "product_id": "eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-http@4.1.119-1.Final_redhat_00004.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                  "product_id": "eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-http2@4.1.119-1.Final_redhat_00004.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                  "product_id": "eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-memcache@4.1.119-1.Final_redhat_00004.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                  "product_id": "eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-mqtt@4.1.119-1.Final_redhat_00004.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                  "product_id": "eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-redis@4.1.119-1.Final_redhat_00004.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                  "product_id": "eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-smtp@4.1.119-1.Final_redhat_00004.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                  "product_id": "eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-socks@4.1.119-1.Final_redhat_00004.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                  "product_id": "eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-stomp@4.1.119-1.Final_redhat_00004.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                  "product_id": "eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-xml@4.1.119-1.Final_redhat_00004.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                "product": {
                  "name": "eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                  "product_id": "eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-common@4.1.119-1.Final_redhat_00004.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                "product": {
                  "name": "eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                  "product_id": "eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-handler@4.1.119-1.Final_redhat_00004.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                "product": {
                  "name": "eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                  "product_id": "eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-handler-proxy@4.1.119-1.Final_redhat_00004.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                "product": {
                  "name": "eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                  "product_id": "eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-resolver@4.1.119-1.Final_redhat_00004.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                "product": {
                  "name": "eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                  "product_id": "eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-resolver-dns@4.1.119-1.Final_redhat_00004.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                "product": {
                  "name": "eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                  "product_id": "eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-resolver-dns-classes-macos@4.1.119-1.Final_redhat_00004.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                "product": {
                  "name": "eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                  "product_id": "eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-transport@4.1.119-1.Final_redhat_00004.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                "product": {
                  "name": "eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                  "product_id": "eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-transport-classes-epoll@4.1.119-1.Final_redhat_00004.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                "product": {
                  "name": "eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                  "product_id": "eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-transport-classes-kqueue@4.1.119-1.Final_redhat_00004.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                "product": {
                  "name": "eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                  "product_id": "eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-transport-native-unix-common@4.1.119-1.Final_redhat_00004.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                "product": {
                  "name": "eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                  "product_id": "eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-transport-sctp@4.1.119-1.Final_redhat_00004.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly@7.4.21-3.GA_29548_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly-java-jdk11@7.4.21-3.GA_29548_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly-java-jdk17@7.4.21-3.GA_29548_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly-java-jdk8@7.4.21-3.GA_29548_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly-javadocs@7.4.21-3.GA_29548_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly-modules@7.4.21-3.GA_29548_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                "product": {
                  "name": "eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                  "product_id": "eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty@4.1.119-1.Final_redhat_00004.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                "product": {
                  "name": "eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                  "product_id": "eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-buffer@4.1.119-1.Final_redhat_00004.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                  "product_id": "eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec@4.1.119-1.Final_redhat_00004.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                  "product_id": "eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-dns@4.1.119-1.Final_redhat_00004.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                  "product_id": "eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-haproxy@4.1.119-1.Final_redhat_00004.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                  "product_id": "eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-http@4.1.119-1.Final_redhat_00004.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                  "product_id": "eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-http2@4.1.119-1.Final_redhat_00004.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                  "product_id": "eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-memcache@4.1.119-1.Final_redhat_00004.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                  "product_id": "eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-mqtt@4.1.119-1.Final_redhat_00004.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                  "product_id": "eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-redis@4.1.119-1.Final_redhat_00004.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                  "product_id": "eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-smtp@4.1.119-1.Final_redhat_00004.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                  "product_id": "eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-socks@4.1.119-1.Final_redhat_00004.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                  "product_id": "eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-stomp@4.1.119-1.Final_redhat_00004.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                  "product_id": "eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-xml@4.1.119-1.Final_redhat_00004.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                "product": {
                  "name": "eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                  "product_id": "eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-common@4.1.119-1.Final_redhat_00004.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                "product": {
                  "name": "eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                  "product_id": "eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-handler@4.1.119-1.Final_redhat_00004.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                "product": {
                  "name": "eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                  "product_id": "eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-handler-proxy@4.1.119-1.Final_redhat_00004.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                "product": {
                  "name": "eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                  "product_id": "eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-resolver@4.1.119-1.Final_redhat_00004.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                "product": {
                  "name": "eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                  "product_id": "eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-resolver-dns@4.1.119-1.Final_redhat_00004.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                "product": {
                  "name": "eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                  "product_id": "eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-resolver-dns-classes-macos@4.1.119-1.Final_redhat_00004.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                "product": {
                  "name": "eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                  "product_id": "eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-transport@4.1.119-1.Final_redhat_00004.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                "product": {
                  "name": "eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                  "product_id": "eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-transport-classes-epoll@4.1.119-1.Final_redhat_00004.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                "product": {
                  "name": "eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                  "product_id": "eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-transport-classes-kqueue@4.1.119-1.Final_redhat_00004.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                "product": {
                  "name": "eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                  "product_id": "eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-transport-native-unix-common@4.1.119-1.Final_redhat_00004.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                "product": {
                  "name": "eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                  "product_id": "eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-transport-sctp@4.1.119-1.Final_redhat_00004.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly@7.4.21-3.GA_29548_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly-java-jdk11@7.4.21-3.GA_29548_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly-java-jdk17@7.4.21-3.GA_29548_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly-java-jdk8@7.4.21-3.GA_29548_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly-javadocs@7.4.21-3.GA_29548_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly-modules@7.4.21-3.GA_29548_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch"
        },
        "product_reference": "eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.src as a component of Red Hat JBoss EAP 7.4 for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.src"
        },
        "product_reference": "eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.src",
        "relates_to_product_reference": "7Server-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch"
        },
        "product_reference": "eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch"
        },
        "product_reference": "eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch"
        },
        "product_reference": "eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch"
        },
        "product_reference": "eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch"
        },
        "product_reference": "eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch"
        },
        "product_reference": "eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch"
        },
        "product_reference": "eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch"
        },
        "product_reference": "eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch"
        },
        "product_reference": "eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch"
        },
        "product_reference": "eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch"
        },
        "product_reference": "eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch"
        },
        "product_reference": "eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch"
        },
        "product_reference": "eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch"
        },
        "product_reference": "eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch"
        },
        "product_reference": "eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch"
        },
        "product_reference": "eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch"
        },
        "product_reference": "eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch"
        },
        "product_reference": "eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch"
        },
        "product_reference": "eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch"
        },
        "product_reference": "eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch"
        },
        "product_reference": "eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch"
        },
        "product_reference": "eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch"
        },
        "product_reference": "eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.src as a component of Red Hat JBoss EAP 7.4 for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.src"
        },
        "product_reference": "eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.src",
        "relates_to_product_reference": "7Server-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64 as a component of Red Hat JBoss EAP 7.4 for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64"
        },
        "product_reference": "eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64",
        "relates_to_product_reference": "7Server-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64 as a component of Red Hat JBoss EAP 7.4 for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64"
        },
        "product_reference": "eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64",
        "relates_to_product_reference": "7Server-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch"
        },
        "product_reference": "eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch"
        },
        "product_reference": "eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.src as a component of Red Hat JBoss EAP 7.4 for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.src"
        },
        "product_reference": "eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.src",
        "relates_to_product_reference": "7Server-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 8",
          "product_id": "8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch"
        },
        "product_reference": "eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.src as a component of Red Hat JBoss EAP 7.4 for RHEL 8",
          "product_id": "8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.src"
        },
        "product_reference": "eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.src",
        "relates_to_product_reference": "8Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 8",
          "product_id": "8Base-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch"
        },
        "product_reference": "eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 8",
          "product_id": "8Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch"
        },
        "product_reference": "eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 8",
          "product_id": "8Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch"
        },
        "product_reference": "eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 8",
          "product_id": "8Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch"
        },
        "product_reference": "eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 8",
          "product_id": "8Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch"
        },
        "product_reference": "eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 8",
          "product_id": "8Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch"
        },
        "product_reference": "eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 8",
          "product_id": "8Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch"
        },
        "product_reference": "eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 8",
          "product_id": "8Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch"
        },
        "product_reference": "eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 8",
          "product_id": "8Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch"
        },
        "product_reference": "eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 8",
          "product_id": "8Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch"
        },
        "product_reference": "eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 8",
          "product_id": "8Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch"
        },
        "product_reference": "eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 8",
          "product_id": "8Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch"
        },
        "product_reference": "eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 8",
          "product_id": "8Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch"
        },
        "product_reference": "eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 8",
          "product_id": "8Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch"
        },
        "product_reference": "eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 8",
          "product_id": "8Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch"
        },
        "product_reference": "eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 8",
          "product_id": "8Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch"
        },
        "product_reference": "eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 8",
          "product_id": "8Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch"
        },
        "product_reference": "eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 8",
          "product_id": "8Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch"
        },
        "product_reference": "eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 8",
          "product_id": "8Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch"
        },
        "product_reference": "eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 8",
          "product_id": "8Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch"
        },
        "product_reference": "eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 8",
          "product_id": "8Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch"
        },
        "product_reference": "eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 8",
          "product_id": "8Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch"
        },
        "product_reference": "eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 8",
          "product_id": "8Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch"
        },
        "product_reference": "eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.src as a component of Red Hat JBoss EAP 7.4 for RHEL 8",
          "product_id": "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.src"
        },
        "product_reference": "eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.src",
        "relates_to_product_reference": "8Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64 as a component of Red Hat JBoss EAP 7.4 for RHEL 8",
          "product_id": "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64"
        },
        "product_reference": "eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64",
        "relates_to_product_reference": "8Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64 as a component of Red Hat JBoss EAP 7.4 for RHEL 8",
          "product_id": "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64"
        },
        "product_reference": "eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64",
        "relates_to_product_reference": "8Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 8",
          "product_id": "8Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch"
        },
        "product_reference": "eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 8",
          "product_id": "8Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch"
        },
        "product_reference": "eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 8",
          "product_id": "8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.src as a component of Red Hat JBoss EAP 7.4 for RHEL 8",
          "product_id": "8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.src"
        },
        "product_reference": "eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.src",
        "relates_to_product_reference": "8Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 8",
          "product_id": "8Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 8",
          "product_id": "8Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 8",
          "product_id": "8Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 8",
          "product_id": "8Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 8",
          "product_id": "8Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 9",
          "product_id": "9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch"
        },
        "product_reference": "eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.src as a component of Red Hat JBoss EAP 7.4 for RHEL 9",
          "product_id": "9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.src"
        },
        "product_reference": "eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.src",
        "relates_to_product_reference": "9Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 9",
          "product_id": "9Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch"
        },
        "product_reference": "eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 9",
          "product_id": "9Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch"
        },
        "product_reference": "eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 9",
          "product_id": "9Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch"
        },
        "product_reference": "eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 9",
          "product_id": "9Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch"
        },
        "product_reference": "eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 9",
          "product_id": "9Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch"
        },
        "product_reference": "eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 9",
          "product_id": "9Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch"
        },
        "product_reference": "eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 9",
          "product_id": "9Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch"
        },
        "product_reference": "eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 9",
          "product_id": "9Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch"
        },
        "product_reference": "eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 9",
          "product_id": "9Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch"
        },
        "product_reference": "eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 9",
          "product_id": "9Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch"
        },
        "product_reference": "eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 9",
          "product_id": "9Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch"
        },
        "product_reference": "eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 9",
          "product_id": "9Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch"
        },
        "product_reference": "eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 9",
          "product_id": "9Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch"
        },
        "product_reference": "eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 9",
          "product_id": "9Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch"
        },
        "product_reference": "eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 9",
          "product_id": "9Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch"
        },
        "product_reference": "eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 9",
          "product_id": "9Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch"
        },
        "product_reference": "eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 9",
          "product_id": "9Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch"
        },
        "product_reference": "eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 9",
          "product_id": "9Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch"
        },
        "product_reference": "eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 9",
          "product_id": "9Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch"
        },
        "product_reference": "eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 9",
          "product_id": "9Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch"
        },
        "product_reference": "eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 9",
          "product_id": "9Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch"
        },
        "product_reference": "eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 9",
          "product_id": "9Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch"
        },
        "product_reference": "eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.src as a component of Red Hat JBoss EAP 7.4 for RHEL 9",
          "product_id": "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.src"
        },
        "product_reference": "eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.src",
        "relates_to_product_reference": "9Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64 as a component of Red Hat JBoss EAP 7.4 for RHEL 9",
          "product_id": "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64"
        },
        "product_reference": "eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64",
        "relates_to_product_reference": "9Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64 as a component of Red Hat JBoss EAP 7.4 for RHEL 9",
          "product_id": "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64"
        },
        "product_reference": "eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64",
        "relates_to_product_reference": "9Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 9",
          "product_id": "9Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch"
        },
        "product_reference": "eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 9",
          "product_id": "9Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch"
        },
        "product_reference": "eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 9",
          "product_id": "9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.src as a component of Red Hat JBoss EAP 7.4 for RHEL 9",
          "product_id": "9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.src"
        },
        "product_reference": "eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.src",
        "relates_to_product_reference": "9Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 9",
          "product_id": "9Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 9",
          "product_id": "9Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 9",
          "product_id": "9Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 9",
          "product_id": "9Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 for RHEL 9",
          "product_id": "9Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2024-47535",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "discovery_date": "2024-11-12T16:01:18.772613+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2325538"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Netty. An unsafe reading of the environment file could potentially cause a denial of service. When loaded on a Windows application, Netty attempts to load a file that does not exist. If an attacker creates a large file, the Netty application crashes.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "netty: Denial of Service attack on windows app using Netty",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64",
          "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64",
          "7Server-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.src",
          "8Base-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.src",
          "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64",
          "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64",
          "8Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.src",
          "9Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.src",
          "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64",
          "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64",
          "9Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-47535"
        },
        {
          "category": "external",
          "summary": "RHBZ#2325538",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2325538"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-47535",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-47535"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-47535",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-47535"
        },
        {
          "category": "external",
          "summary": "https://github.com/netty/netty/commit/fbf7a704a82e7449b48bd0bbb679f5661c6d61a3",
          "url": "https://github.com/netty/netty/commit/fbf7a704a82e7449b48bd0bbb679f5661c6d61a3"
        },
        {
          "category": "external",
          "summary": "https://github.com/netty/netty/security/advisories/GHSA-xq3w-v528-46rv",
          "url": "https://github.com/netty/netty/security/advisories/GHSA-xq3w-v528-46rv"
        }
      ],
      "release_date": "2024-11-12T15:50:08.334000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-04-01T13:12:18+00:00",
          "details": "Before applying the update, make sure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.src",
            "8Base-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.src",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.src",
            "9Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.src",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:3465"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.src",
            "8Base-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.src",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.src",
            "9Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.src",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "netty: Denial of Service attack on windows app using Netty"
    },
    {
      "cve": "CVE-2024-51127",
      "cwe": {
        "id": "CWE-22",
        "name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
      },
      "discovery_date": "2024-11-04T18:00:59.553511+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2323697"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the createTempFile method of hornetq. Affected version of hornetq allows attackers to arbitrarily overwrite files or access sensitive information.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "hornetq-core-client: Arbitrarily overwrite files or access sensitive information",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64",
          "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64",
          "7Server-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.src",
          "8Base-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.src",
          "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64",
          "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64",
          "8Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.src",
          "9Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.src",
          "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64",
          "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64",
          "9Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-51127"
        },
        {
          "category": "external",
          "summary": "RHBZ#2323697",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2323697"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-51127",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-51127"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-51127",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-51127"
        },
        {
          "category": "external",
          "summary": "http://hornetq.com",
          "url": "http://hornetq.com"
        },
        {
          "category": "external",
          "summary": "https://github.com/JAckLosingHeart/CWE-378/blob/main/CVE-2024-51127.md",
          "url": "https://github.com/JAckLosingHeart/CWE-378/blob/main/CVE-2024-51127.md"
        }
      ],
      "release_date": "2024-11-04T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-04-01T13:12:18+00:00",
          "details": "Before applying the update, make sure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.src",
            "8Base-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.src",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.src",
            "9Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.src",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:3465"
        },
        {
          "category": "workaround",
          "details": "There is currently no known mitigation for this vulnerability.",
          "product_ids": [
            "7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.src",
            "8Base-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.src",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.src",
            "9Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.src",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "NONE",
            "baseScore": 7.1,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.src",
            "8Base-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.src",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.src",
            "9Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.src",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "hornetq-core-client: Arbitrarily overwrite files or access sensitive information"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Claudia Bartolini",
            "Marco Ventura",
            "Massimiliano Brolli"
          ],
          "organization": "TIM S.p.A"
        }
      ],
      "cve": "CVE-2025-23367",
      "cwe": {
        "id": "CWE-284",
        "name": "Improper Access Control"
      },
      "discovery_date": "2025-01-14T14:56:46.389000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2337620"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the Wildfly Server Role Based Access Control (RBAC) provider. When authorization to control management operations is secured using the Role Based Access Control provider, a user without the required privileges can suspend or resume the server. A user with a Monitor or Auditor role is supposed to have only read access permissions and should not be able to suspend the server. \nThe vulnerability is caused by the Suspend and Resume handlers not performing authorization checks to validate whether the current user has the required permissions to proceed with the action.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "org.wildfly.core:wildfly-server: Wildfly improper RBAC permission",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "Red Hat has evaluated this issue and the attacker must be authenticated as a user that belongs to the \"Monitor\" or \"Auditor\" management groups. It requires previous privileges to jeopardize an environment.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64",
          "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64",
          "7Server-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.src",
          "8Base-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.src",
          "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64",
          "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64",
          "8Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.src",
          "9Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.src",
          "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64",
          "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64",
          "9Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-23367"
        },
        {
          "category": "external",
          "summary": "RHBZ#2337620",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2337620"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-23367",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-23367"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-23367",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-23367"
        },
        {
          "category": "external",
          "summary": "https://github.com/advisories/GHSA-qr6x-62gq-4ccp",
          "url": "https://github.com/advisories/GHSA-qr6x-62gq-4ccp"
        }
      ],
      "release_date": "2025-01-30T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-04-01T13:12:18+00:00",
          "details": "Before applying the update, make sure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.src",
            "8Base-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.src",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.src",
            "9Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.src",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:3465"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.src",
            "8Base-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.src",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.src",
            "9Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.src",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.src",
            "8Base-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.src",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.src",
            "9Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.src",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "org.wildfly.core:wildfly-server: Wildfly improper RBAC permission"
    },
    {
      "cve": "CVE-2025-24970",
      "cwe": {
        "id": "CWE-20",
        "name": "Improper Input Validation"
      },
      "discovery_date": "2025-02-10T23:00:52.785132+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2344787"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Netty\u0027s SslHandler. This vulnerability allows a native crash via a specially crafted packet that bypasses proper validation.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "io.netty:netty-handler: SslHandler doesn\u0027t correctly validate packets which can lead to native crash when using native SSLEngine",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability in Netty\u0027s SslHandler is of important severity rather than moderate because it directly impacts the stability and reliability of applications using native SSLEngine. By sending a specially crafted packet, an attacker can trigger a native crash, leading to a complete process termination. Unlike typical moderate vulnerabilities that might cause limited disruptions or require specific conditions, this flaw can be exploited remotely to induce a Denial of Service (DoS), affecting high-availability systems and mission-critical services.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64",
          "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64",
          "7Server-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.src",
          "8Base-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.src",
          "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64",
          "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64",
          "8Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.src",
          "9Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.src",
          "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64",
          "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64",
          "9Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-24970"
        },
        {
          "category": "external",
          "summary": "RHBZ#2344787",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2344787"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-24970",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-24970"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-24970",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-24970"
        },
        {
          "category": "external",
          "summary": "https://github.com/netty/netty/commit/87f40725155b2f89adfde68c7732f97c153676c4",
          "url": "https://github.com/netty/netty/commit/87f40725155b2f89adfde68c7732f97c153676c4"
        },
        {
          "category": "external",
          "summary": "https://github.com/netty/netty/security/advisories/GHSA-4g8c-wm8x-jfhw",
          "url": "https://github.com/netty/netty/security/advisories/GHSA-4g8c-wm8x-jfhw"
        }
      ],
      "release_date": "2025-02-10T21:57:28.730000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-04-01T13:12:18+00:00",
          "details": "Before applying the update, make sure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.src",
            "8Base-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.src",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.src",
            "9Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.src",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:3465"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.src",
            "8Base-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.src",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.src",
            "9Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.src",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.src",
            "8Base-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.src",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.src",
            "9Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.src",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "io.netty:netty-handler: SslHandler doesn\u0027t correctly validate packets which can lead to native crash when using native SSLEngine"
    },
    {
      "cve": "CVE-2025-25193",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "discovery_date": "2025-02-10T23:00:54.794769+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2344788"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Netty. An unsafe reading of the environment file could cause a denial of service. When loaded on a Windows application, Netty attempts to load a file that does not exist. If an attacker creates a large file, the Netty application crash.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "netty: Denial of Service attack on windows app using Netty",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue only affects Windows environments, therefore, this would affect an environment when running a supported Red Hat JBoss EAP 7 or 8, for example, if running on Windows.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64",
          "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64",
          "7Server-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.src",
          "8Base-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.src",
          "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64",
          "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64",
          "8Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.src",
          "9Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.src",
          "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64",
          "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64",
          "9Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-25193"
        },
        {
          "category": "external",
          "summary": "RHBZ#2344788",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2344788"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-25193",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-25193"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-25193",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-25193"
        },
        {
          "category": "external",
          "summary": "https://github.com/netty/netty/commit/d1fbda62d3a47835d3fb35db8bd42ecc205a5386",
          "url": "https://github.com/netty/netty/commit/d1fbda62d3a47835d3fb35db8bd42ecc205a5386"
        },
        {
          "category": "external",
          "summary": "https://github.com/netty/netty/security/advisories/GHSA-389x-839f-4rhx",
          "url": "https://github.com/netty/netty/security/advisories/GHSA-389x-839f-4rhx"
        }
      ],
      "release_date": "2025-02-10T22:02:17.197000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-04-01T13:12:18+00:00",
          "details": "Before applying the update, make sure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.src",
            "8Base-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.src",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.src",
            "9Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.src",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:3465"
        },
        {
          "category": "workaround",
          "details": "Currently, no mitigation is available for this vulnerability.",
          "product_ids": [
            "7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.src",
            "8Base-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.src",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.src",
            "9Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.src",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.src",
            "8Base-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.src",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.src",
            "9Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.src",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "netty: Denial of Service attack on windows app using Netty"
    },
    {
      "cve": "CVE-2025-48734",
      "cwe": {
        "id": "CWE-284",
        "name": "Improper Access Control"
      },
      "discovery_date": "2025-05-28T14:00:56.619771+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2368956"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Apache Commons BeanUtils. This vulnerability allows remote attackers to execute arbitrary code via uncontrolled access to the declaredClass property on Java enum objects, which can expose the class loader when property paths are passed from external sources to methods like getProperty() or getNestedProperty().",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "commons-beanutils: Apache Commons BeanUtils: PropertyUtilsBean does not suppresses an enum\u0027s declaredClass property by default",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability is rated as important severity because a flaw exists in Apache Commons BeanUtils, where PropertyUtilsBean and BeanUtilsBean allow uncontrolled access to the declaredClass property of Java enum objects. Applications that pass untrusted property paths directly to getProperty() or getNestedProperty() methods are at risk, as attackers can exploit this behavior to retrieve the ClassLoader instance and execute arbitrary code in the context of the affected application. This issue leads to compromise of confidentiality, integrity, and availability.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64",
          "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64",
          "7Server-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.src",
          "8Base-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.src",
          "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64",
          "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64",
          "8Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.src",
          "9Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.src",
          "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64",
          "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64",
          "9Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-48734"
        },
        {
          "category": "external",
          "summary": "RHBZ#2368956",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2368956"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-48734",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-48734"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-48734",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-48734"
        },
        {
          "category": "external",
          "summary": "https://github.com/advisories/GHSA-wxr5-93ph-8wr9",
          "url": "https://github.com/advisories/GHSA-wxr5-93ph-8wr9"
        },
        {
          "category": "external",
          "summary": "https://github.com/apache/commons-beanutils/commit/28ad955a1613ed5885870cc7da52093c1ce739dc",
          "url": "https://github.com/apache/commons-beanutils/commit/28ad955a1613ed5885870cc7da52093c1ce739dc"
        },
        {
          "category": "external",
          "summary": "https://lists.apache.org/thread/s0hb3jkfj5f3ryx6c57zqtfohb0of1g9",
          "url": "https://lists.apache.org/thread/s0hb3jkfj5f3ryx6c57zqtfohb0of1g9"
        },
        {
          "category": "external",
          "summary": "https://www.openwall.com/lists/oss-security/2025/05/28/6",
          "url": "https://www.openwall.com/lists/oss-security/2025/05/28/6"
        }
      ],
      "release_date": "2025-05-28T13:32:08.300000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-04-01T13:12:18+00:00",
          "details": "Before applying the update, make sure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.src",
            "8Base-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.src",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.src",
            "9Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.src",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:3465"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.src",
            "8Base-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.src",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.src",
            "9Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.src",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "commons-beanutils: Apache Commons BeanUtils: PropertyUtilsBean does not suppresses an enum\u0027s declaredClass property by default"
    },
    {
      "cve": "CVE-2025-52999",
      "cwe": {
        "id": "CWE-121",
        "name": "Stack-based Buffer Overflow"
      },
      "discovery_date": "2025-06-25T18:00:54.693716+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2374804"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A nested data handling flaw was found in Jackson Core. When parsing particularly deeply nested data structures, a StackoverflowError can occur.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "com.fasterxml.jackson.core/jackson-core: jackson-core Potential StackoverflowError",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64",
          "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64",
          "7Server-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.src",
          "8Base-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.src",
          "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64",
          "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64",
          "8Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.src",
          "9Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.src",
          "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64",
          "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64",
          "9Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-52999"
        },
        {
          "category": "external",
          "summary": "RHBZ#2374804",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2374804"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-52999",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-52999"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-52999",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-52999"
        },
        {
          "category": "external",
          "summary": "https://github.com/FasterXML/jackson-core/pull/943",
          "url": "https://github.com/FasterXML/jackson-core/pull/943"
        },
        {
          "category": "external",
          "summary": "https://github.com/FasterXML/jackson-core/security/advisories/GHSA-h46c-h94j-95f3",
          "url": "https://github.com/FasterXML/jackson-core/security/advisories/GHSA-h46c-h94j-95f3"
        }
      ],
      "release_date": "2025-06-25T17:02:57.428000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-04-01T13:12:18+00:00",
          "details": "Before applying the update, make sure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.src",
            "8Base-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.src",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.src",
            "9Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.src",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:3465"
        },
        {
          "category": "workaround",
          "details": "To mitigate this vulnerability, the recommendation is to avoid parsing input files from untrusted sources that may have excessively deep nested data structures; anything with a depth over 1000.",
          "product_ids": [
            "7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.src",
            "8Base-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.src",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.src",
            "9Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.src",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el7eap.x86_64",
            "7Server-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el7eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el8eap.src",
            "8Base-JBEAP-7.4:eap7-netty-all-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.src",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el8eap.x86_64",
            "8Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el8eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-0:4.1.119-1.Final_redhat_00004.1.el9eap.src",
            "9Base-JBEAP-7.4:eap7-netty-buffer-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-haproxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-http-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-http2-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-memcache-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-mqtt-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-redis-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-smtp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-socks-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-stomp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-codec-xml-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-handler-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-handler-proxy-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-resolver-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-resolver-dns-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-resolver-dns-classes-macos-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-classes-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-classes-kqueue-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.src",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-epoll-debuginfo-0:4.1.119-1.Final_redhat_00004.1.el9eap.x86_64",
            "9Base-JBEAP-7.4:eap7-netty-transport-native-unix-common-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-netty-transport-sctp-0:4.1.119-1.Final_redhat_00004.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4:eap7-wildfly-java-jdk11-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-java-jdk17-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-java-jdk8-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-javadocs-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4:eap7-wildfly-modules-0:7.4.21-3.GA_29548_redhat_00001.1.el9eap.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "com.fasterxml.jackson.core/jackson-core: jackson-core Potential StackoverflowError"
    }
  ]
}

RHSA-2025:3467

Vulnerability from csaf_redhat - Published: 2025-04-01 13:06 - Updated: 2026-06-01 17:23

Summary

Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4.21 security update

Severity

Important

Notes

Details: Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime. This asynchronous patch is a security update for Red Hat JBoss Enterprise Application Platform 7.4. Security Fix(es): * io.netty/netty: Denial of Service attack on windows app using Netty (CVE-2024-47535) * netty-common: Denial of Service attack on windows app using Netty (CVE-2025-25193) * io.netty/netty-handler: SslHandler doesn't correctly validate packets which can lead to native crash when using native SSLEngine (CVE-2025-24970) * org.wildfly.core/wildfly-server: Wildfly improper RBAC permission (CVE-2025-23367) * hornetq-core-client: Arbitrarily overwrite files or access sensitive information Security (CVE-2024-51127) A Red Hat Security Bulletin which addresses further details about this flaw is available in the References section. For more details about the security issue(s), including the impact, a CVSS score, acknowledgements, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2024-47535

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE-400 - Uncontrolled Resource Consumption

Affected products

Fixed 1 product

Product	Identifier	Version	Remediation
Red Hat JBoss Enterprise Application Platform 7 Red Hat / Red Hat JBoss Enterprise Application Platform	`cpe:/a:redhat:jboss_enterprise_application_platform:7.4`	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2024-51127

A flaw was found in the createTempFile method of hornetq. Affected version of hornetq allows attackers to arbitrarily overwrite files or access sensitive information.

7.1 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Affected products

Fixed 1 product

Product	Identifier	Version	Remediation
Red Hat JBoss Enterprise Application Platform 7 Red Hat / Red Hat JBoss Enterprise Application Platform	`cpe:/a:redhat:jboss_enterprise_application_platform:7.4`	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2025-23367

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE-284 - Improper Access Control

Affected products

Fixed 1 product

Product	Identifier	Version	Remediation
Red Hat JBoss Enterprise Application Platform 7 Red Hat / Red Hat JBoss Enterprise Application Platform	`cpe:/a:redhat:jboss_enterprise_application_platform:7.4`	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2025-24970

A flaw was found in Netty's SslHandler. This vulnerability allows a native crash via a specially crafted packet that bypasses proper validation.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-20 - Improper Input Validation

Affected products

Fixed 1 product

Product	Identifier	Version	Remediation
Red Hat JBoss Enterprise Application Platform 7 Red Hat / Red Hat JBoss Enterprise Application Platform	`cpe:/a:redhat:jboss_enterprise_application_platform:7.4`	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2025-25193

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE-400 - Uncontrolled Resource Consumption

Affected products

Fixed 1 product

Product	Identifier	Version	Remediation
Red Hat JBoss Enterprise Application Platform 7 Red Hat / Red Hat JBoss Enterprise Application Platform	`cpe:/a:redhat:jboss_enterprise_application_platform:7.4`	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2025-48734

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE-284 - Improper Access Control

Affected products

Fixed 1 product

Product	Identifier	Version	Remediation
Red Hat JBoss Enterprise Application Platform 7 Red Hat / Red Hat JBoss Enterprise Application Platform	`cpe:/a:redhat:jboss_enterprise_application_platform:7.4`	—	Vendor Fix fix

Threats

Impact Important

CVE-2025-52999

A nested data handling flaw was found in Jackson Core. When parsing particularly deeply nested data structures, a StackoverflowError can occur.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-121 - Stack-based Buffer Overflow

Affected products

Fixed 1 product

Product	Identifier	Version	Remediation
Red Hat JBoss Enterprise Application Platform 7 Red Hat / Red Hat JBoss Enterprise Application Platform	`cpe:/a:redhat:jboss_enterprise_application_platform:7.4`	—	Vendor Fix fix Workaround

Threats

Impact Important

References

53 references

URL	Category
https://access.redhat.com/errata/RHSA-2025:3467	self
https://access.redhat.com/security/updates/classi…	external
https://docs.redhat.com/en/documentation/red_hat_…	external
https://docs.redhat.com/en/documentation/red_hat_…	external
https://bugzilla.redhat.com/show_bug.cgi?id=2323697	external
https://bugzilla.redhat.com/show_bug.cgi?id=2325538	external
https://bugzilla.redhat.com/show_bug.cgi?id=2337620	external
https://bugzilla.redhat.com/show_bug.cgi?id=2344787	external
https://bugzilla.redhat.com/show_bug.cgi?id=2344788	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2024-47535	self
https://bugzilla.redhat.com/show_bug.cgi?id=2325538	external
https://www.cve.org/CVERecord?id=CVE-2024-47535	external
https://nvd.nist.gov/vuln/detail/CVE-2024-47535	external
https://github.com/netty/netty/commit/fbf7a704a82…	external
https://github.com/netty/netty/security/advisorie…	external
https://access.redhat.com/security/cve/CVE-2024-51127	self
https://bugzilla.redhat.com/show_bug.cgi?id=2323697	external
https://www.cve.org/CVERecord?id=CVE-2024-51127	external
https://nvd.nist.gov/vuln/detail/CVE-2024-51127	external
http://hornetq.com	external
https://github.com/JAckLosingHeart/CWE-378/blob/m…	external
https://access.redhat.com/security/cve/CVE-2025-23367	self
https://bugzilla.redhat.com/show_bug.cgi?id=2337620	external
https://www.cve.org/CVERecord?id=CVE-2025-23367	external
https://nvd.nist.gov/vuln/detail/CVE-2025-23367	external
https://github.com/advisories/GHSA-qr6x-62gq-4ccp	external
https://access.redhat.com/security/cve/CVE-2025-24970	self
https://bugzilla.redhat.com/show_bug.cgi?id=2344787	external
https://www.cve.org/CVERecord?id=CVE-2025-24970	external
https://nvd.nist.gov/vuln/detail/CVE-2025-24970	external
https://github.com/netty/netty/commit/87f40725155…	external
https://github.com/netty/netty/security/advisorie…	external
https://access.redhat.com/security/cve/CVE-2025-25193	self
https://bugzilla.redhat.com/show_bug.cgi?id=2344788	external
https://www.cve.org/CVERecord?id=CVE-2025-25193	external
https://nvd.nist.gov/vuln/detail/CVE-2025-25193	external
https://github.com/netty/netty/commit/d1fbda62d3a…	external
https://github.com/netty/netty/security/advisorie…	external
https://access.redhat.com/security/cve/CVE-2025-48734	self
https://bugzilla.redhat.com/show_bug.cgi?id=2368956	external
https://www.cve.org/CVERecord?id=CVE-2025-48734	external
https://nvd.nist.gov/vuln/detail/CVE-2025-48734	external
https://github.com/advisories/GHSA-wxr5-93ph-8wr9	external
https://github.com/apache/commons-beanutils/commi…	external
https://lists.apache.org/thread/s0hb3jkfj5f3ryx6c…	external
https://www.openwall.com/lists/oss-security/2025/…	external
https://access.redhat.com/security/cve/CVE-2025-52999	self
https://bugzilla.redhat.com/show_bug.cgi?id=2374804	external
https://www.cve.org/CVERecord?id=CVE-2025-52999	external
https://nvd.nist.gov/vuln/detail/CVE-2025-52999	external
https://github.com/FasterXML/jackson-core/pull/943	external
https://github.com/FasterXML/jackson-core/securit…	external

Acknowledgments

TIM S.p.A Claudia Bartolini Marco Ventura Massimiliano Brolli

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "A security update is now available for Red Hat JBoss Enterprise Application Platform 7.4.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.\n\n[Updated 5 November 2025]\nThe Synopsis was updated to fix a typo in the product version (7.4.21). No other changes have been made.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime.\n\nThis asynchronous patch is a security update for Red Hat JBoss Enterprise Application Platform 7.4.\n\nSecurity Fix(es):\n\n* io.netty/netty: Denial of Service attack on windows app using Netty (CVE-2024-47535)\n\n* netty-common: Denial of Service attack on windows app using Netty (CVE-2025-25193)\n\n* io.netty/netty-handler: SslHandler doesn\u0027t correctly validate packets which can lead to native crash when using native SSLEngine (CVE-2025-24970)\n\n* org.wildfly.core/wildfly-server: Wildfly improper RBAC permission (CVE-2025-23367)\n\n* hornetq-core-client: Arbitrarily overwrite files or access sensitive information Security (CVE-2024-51127)\n\nA Red Hat Security Bulletin which addresses further details about this flaw is available in the References section.\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgements, and other related information, refer to the CVE page(s) listed in the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2025:3467",
        "url": "https://access.redhat.com/errata/RHSA-2025:3467"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "https://docs.redhat.com/en/documentation/red_hat_jboss_enterprise_application_platform/7.4",
        "url": "https://docs.redhat.com/en/documentation/red_hat_jboss_enterprise_application_platform/7.4"
      },
      {
        "category": "external",
        "summary": "https://docs.redhat.com/en/documentation/red_hat_jboss_enterprise_application_platform/7.4/html-single/installation_guide/index",
        "url": "https://docs.redhat.com/en/documentation/red_hat_jboss_enterprise_application_platform/7.4/html-single/installation_guide/index"
      },
      {
        "category": "external",
        "summary": "2323697",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2323697"
      },
      {
        "category": "external",
        "summary": "2325538",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2325538"
      },
      {
        "category": "external",
        "summary": "2337620",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2337620"
      },
      {
        "category": "external",
        "summary": "2344787",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2344787"
      },
      {
        "category": "external",
        "summary": "2344788",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2344788"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_3467.json"
      }
    ],
    "title": "Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4.21 security update",
    "tracking": {
      "current_release_date": "2026-06-01T17:23:05+00:00",
      "generator": {
        "date": "2026-06-01T17:23:05+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.8.1"
        }
      },
      "id": "RHSA-2025:3467",
      "initial_release_date": "2025-04-01T13:06:47+00:00",
      "revision_history": [
        {
          "date": "2025-04-01T13:06:47+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2025-11-05T13:55:17+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-06-01T17:23:05+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat JBoss Enterprise Application Platform 7",
                "product": {
                  "name": "Red Hat JBoss Enterprise Application Platform 7",
                  "product_id": "Red Hat JBoss Enterprise Application Platform 7",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.4"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat JBoss Enterprise Application Platform"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2024-47535",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "discovery_date": "2024-11-12T16:01:18.772613+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2325538"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Netty. An unsafe reading of the environment file could potentially cause a denial of service. When loaded on a Windows application, Netty attempts to load a file that does not exist. If an attacker creates a large file, the Netty application crashes.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "netty: Denial of Service attack on windows app using Netty",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat JBoss Enterprise Application Platform 7"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-47535"
        },
        {
          "category": "external",
          "summary": "RHBZ#2325538",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2325538"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-47535",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-47535"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-47535",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-47535"
        },
        {
          "category": "external",
          "summary": "https://github.com/netty/netty/commit/fbf7a704a82e7449b48bd0bbb679f5661c6d61a3",
          "url": "https://github.com/netty/netty/commit/fbf7a704a82e7449b48bd0bbb679f5661c6d61a3"
        },
        {
          "category": "external",
          "summary": "https://github.com/netty/netty/security/advisories/GHSA-xq3w-v528-46rv",
          "url": "https://github.com/netty/netty/security/advisories/GHSA-xq3w-v528-46rv"
        }
      ],
      "release_date": "2024-11-12T15:50:08.334000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-04-01T13:06:47+00:00",
          "details": "Before applying the update, make sure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "Red Hat JBoss Enterprise Application Platform 7"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:3467"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "Red Hat JBoss Enterprise Application Platform 7"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "netty: Denial of Service attack on windows app using Netty"
    },
    {
      "cve": "CVE-2024-51127",
      "cwe": {
        "id": "CWE-22",
        "name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
      },
      "discovery_date": "2024-11-04T18:00:59.553511+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2323697"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the createTempFile method of hornetq. Affected version of hornetq allows attackers to arbitrarily overwrite files or access sensitive information.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "hornetq-core-client: Arbitrarily overwrite files or access sensitive information",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat JBoss Enterprise Application Platform 7"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-51127"
        },
        {
          "category": "external",
          "summary": "RHBZ#2323697",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2323697"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-51127",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-51127"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-51127",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-51127"
        },
        {
          "category": "external",
          "summary": "http://hornetq.com",
          "url": "http://hornetq.com"
        },
        {
          "category": "external",
          "summary": "https://github.com/JAckLosingHeart/CWE-378/blob/main/CVE-2024-51127.md",
          "url": "https://github.com/JAckLosingHeart/CWE-378/blob/main/CVE-2024-51127.md"
        }
      ],
      "release_date": "2024-11-04T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-04-01T13:06:47+00:00",
          "details": "Before applying the update, make sure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "Red Hat JBoss Enterprise Application Platform 7"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:3467"
        },
        {
          "category": "workaround",
          "details": "There is currently no known mitigation for this vulnerability.",
          "product_ids": [
            "Red Hat JBoss Enterprise Application Platform 7"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "NONE",
            "baseScore": 7.1,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "Red Hat JBoss Enterprise Application Platform 7"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "hornetq-core-client: Arbitrarily overwrite files or access sensitive information"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Claudia Bartolini",
            "Marco Ventura",
            "Massimiliano Brolli"
          ],
          "organization": "TIM S.p.A"
        }
      ],
      "cve": "CVE-2025-23367",
      "cwe": {
        "id": "CWE-284",
        "name": "Improper Access Control"
      },
      "discovery_date": "2025-01-14T14:56:46.389000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2337620"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the Wildfly Server Role Based Access Control (RBAC) provider. When authorization to control management operations is secured using the Role Based Access Control provider, a user without the required privileges can suspend or resume the server. A user with a Monitor or Auditor role is supposed to have only read access permissions and should not be able to suspend the server. \nThe vulnerability is caused by the Suspend and Resume handlers not performing authorization checks to validate whether the current user has the required permissions to proceed with the action.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "org.wildfly.core:wildfly-server: Wildfly improper RBAC permission",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "Red Hat has evaluated this issue and the attacker must be authenticated as a user that belongs to the \"Monitor\" or \"Auditor\" management groups. It requires previous privileges to jeopardize an environment.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat JBoss Enterprise Application Platform 7"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-23367"
        },
        {
          "category": "external",
          "summary": "RHBZ#2337620",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2337620"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-23367",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-23367"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-23367",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-23367"
        },
        {
          "category": "external",
          "summary": "https://github.com/advisories/GHSA-qr6x-62gq-4ccp",
          "url": "https://github.com/advisories/GHSA-qr6x-62gq-4ccp"
        }
      ],
      "release_date": "2025-01-30T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-04-01T13:06:47+00:00",
          "details": "Before applying the update, make sure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "Red Hat JBoss Enterprise Application Platform 7"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:3467"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "Red Hat JBoss Enterprise Application Platform 7"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "Red Hat JBoss Enterprise Application Platform 7"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "org.wildfly.core:wildfly-server: Wildfly improper RBAC permission"
    },
    {
      "cve": "CVE-2025-24970",
      "cwe": {
        "id": "CWE-20",
        "name": "Improper Input Validation"
      },
      "discovery_date": "2025-02-10T23:00:52.785132+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2344787"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Netty\u0027s SslHandler. This vulnerability allows a native crash via a specially crafted packet that bypasses proper validation.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "io.netty:netty-handler: SslHandler doesn\u0027t correctly validate packets which can lead to native crash when using native SSLEngine",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability in Netty\u0027s SslHandler is of important severity rather than moderate because it directly impacts the stability and reliability of applications using native SSLEngine. By sending a specially crafted packet, an attacker can trigger a native crash, leading to a complete process termination. Unlike typical moderate vulnerabilities that might cause limited disruptions or require specific conditions, this flaw can be exploited remotely to induce a Denial of Service (DoS), affecting high-availability systems and mission-critical services.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat JBoss Enterprise Application Platform 7"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-24970"
        },
        {
          "category": "external",
          "summary": "RHBZ#2344787",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2344787"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-24970",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-24970"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-24970",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-24970"
        },
        {
          "category": "external",
          "summary": "https://github.com/netty/netty/commit/87f40725155b2f89adfde68c7732f97c153676c4",
          "url": "https://github.com/netty/netty/commit/87f40725155b2f89adfde68c7732f97c153676c4"
        },
        {
          "category": "external",
          "summary": "https://github.com/netty/netty/security/advisories/GHSA-4g8c-wm8x-jfhw",
          "url": "https://github.com/netty/netty/security/advisories/GHSA-4g8c-wm8x-jfhw"
        }
      ],
      "release_date": "2025-02-10T21:57:28.730000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-04-01T13:06:47+00:00",
          "details": "Before applying the update, make sure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "Red Hat JBoss Enterprise Application Platform 7"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:3467"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "Red Hat JBoss Enterprise Application Platform 7"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "Red Hat JBoss Enterprise Application Platform 7"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "io.netty:netty-handler: SslHandler doesn\u0027t correctly validate packets which can lead to native crash when using native SSLEngine"
    },
    {
      "cve": "CVE-2025-25193",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "discovery_date": "2025-02-10T23:00:54.794769+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2344788"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Netty. An unsafe reading of the environment file could cause a denial of service. When loaded on a Windows application, Netty attempts to load a file that does not exist. If an attacker creates a large file, the Netty application crash.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "netty: Denial of Service attack on windows app using Netty",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue only affects Windows environments, therefore, this would affect an environment when running a supported Red Hat JBoss EAP 7 or 8, for example, if running on Windows.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat JBoss Enterprise Application Platform 7"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-25193"
        },
        {
          "category": "external",
          "summary": "RHBZ#2344788",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2344788"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-25193",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-25193"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-25193",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-25193"
        },
        {
          "category": "external",
          "summary": "https://github.com/netty/netty/commit/d1fbda62d3a47835d3fb35db8bd42ecc205a5386",
          "url": "https://github.com/netty/netty/commit/d1fbda62d3a47835d3fb35db8bd42ecc205a5386"
        },
        {
          "category": "external",
          "summary": "https://github.com/netty/netty/security/advisories/GHSA-389x-839f-4rhx",
          "url": "https://github.com/netty/netty/security/advisories/GHSA-389x-839f-4rhx"
        }
      ],
      "release_date": "2025-02-10T22:02:17.197000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-04-01T13:06:47+00:00",
          "details": "Before applying the update, make sure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "Red Hat JBoss Enterprise Application Platform 7"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:3467"
        },
        {
          "category": "workaround",
          "details": "Currently, no mitigation is available for this vulnerability.",
          "product_ids": [
            "Red Hat JBoss Enterprise Application Platform 7"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "Red Hat JBoss Enterprise Application Platform 7"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "netty: Denial of Service attack on windows app using Netty"
    },
    {
      "cve": "CVE-2025-48734",
      "cwe": {
        "id": "CWE-284",
        "name": "Improper Access Control"
      },
      "discovery_date": "2025-05-28T14:00:56.619771+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2368956"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Apache Commons BeanUtils. This vulnerability allows remote attackers to execute arbitrary code via uncontrolled access to the declaredClass property on Java enum objects, which can expose the class loader when property paths are passed from external sources to methods like getProperty() or getNestedProperty().",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "commons-beanutils: Apache Commons BeanUtils: PropertyUtilsBean does not suppresses an enum\u0027s declaredClass property by default",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability is rated as important severity because a flaw exists in Apache Commons BeanUtils, where PropertyUtilsBean and BeanUtilsBean allow uncontrolled access to the declaredClass property of Java enum objects. Applications that pass untrusted property paths directly to getProperty() or getNestedProperty() methods are at risk, as attackers can exploit this behavior to retrieve the ClassLoader instance and execute arbitrary code in the context of the affected application. This issue leads to compromise of confidentiality, integrity, and availability.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat JBoss Enterprise Application Platform 7"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-48734"
        },
        {
          "category": "external",
          "summary": "RHBZ#2368956",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2368956"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-48734",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-48734"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-48734",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-48734"
        },
        {
          "category": "external",
          "summary": "https://github.com/advisories/GHSA-wxr5-93ph-8wr9",
          "url": "https://github.com/advisories/GHSA-wxr5-93ph-8wr9"
        },
        {
          "category": "external",
          "summary": "https://github.com/apache/commons-beanutils/commit/28ad955a1613ed5885870cc7da52093c1ce739dc",
          "url": "https://github.com/apache/commons-beanutils/commit/28ad955a1613ed5885870cc7da52093c1ce739dc"
        },
        {
          "category": "external",
          "summary": "https://lists.apache.org/thread/s0hb3jkfj5f3ryx6c57zqtfohb0of1g9",
          "url": "https://lists.apache.org/thread/s0hb3jkfj5f3ryx6c57zqtfohb0of1g9"
        },
        {
          "category": "external",
          "summary": "https://www.openwall.com/lists/oss-security/2025/05/28/6",
          "url": "https://www.openwall.com/lists/oss-security/2025/05/28/6"
        }
      ],
      "release_date": "2025-05-28T13:32:08.300000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-04-01T13:06:47+00:00",
          "details": "Before applying the update, make sure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "Red Hat JBoss Enterprise Application Platform 7"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:3467"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "Red Hat JBoss Enterprise Application Platform 7"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "commons-beanutils: Apache Commons BeanUtils: PropertyUtilsBean does not suppresses an enum\u0027s declaredClass property by default"
    },
    {
      "cve": "CVE-2025-52999",
      "cwe": {
        "id": "CWE-121",
        "name": "Stack-based Buffer Overflow"
      },
      "discovery_date": "2025-06-25T18:00:54.693716+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2374804"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A nested data handling flaw was found in Jackson Core. When parsing particularly deeply nested data structures, a StackoverflowError can occur.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "com.fasterxml.jackson.core/jackson-core: jackson-core Potential StackoverflowError",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat JBoss Enterprise Application Platform 7"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-52999"
        },
        {
          "category": "external",
          "summary": "RHBZ#2374804",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2374804"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-52999",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-52999"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-52999",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-52999"
        },
        {
          "category": "external",
          "summary": "https://github.com/FasterXML/jackson-core/pull/943",
          "url": "https://github.com/FasterXML/jackson-core/pull/943"
        },
        {
          "category": "external",
          "summary": "https://github.com/FasterXML/jackson-core/security/advisories/GHSA-h46c-h94j-95f3",
          "url": "https://github.com/FasterXML/jackson-core/security/advisories/GHSA-h46c-h94j-95f3"
        }
      ],
      "release_date": "2025-06-25T17:02:57.428000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-04-01T13:06:47+00:00",
          "details": "Before applying the update, make sure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "Red Hat JBoss Enterprise Application Platform 7"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:3467"
        },
        {
          "category": "workaround",
          "details": "To mitigate this vulnerability, the recommendation is to avoid parsing input files from untrusted sources that may have excessively deep nested data structures; anything with a depth over 1000.",
          "product_ids": [
            "Red Hat JBoss Enterprise Application Platform 7"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "Red Hat JBoss Enterprise Application Platform 7"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "com.fasterxml.jackson.core/jackson-core: jackson-core Potential StackoverflowError"
    }
  ]
}

RHSA-2026:0742

Vulnerability from csaf_redhat - Published: 2026-01-19 00:15 - Updated: 2026-05-10 14:27

Summary

Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.1.13 on RHEL 7 security update

Severity

Critical

Notes

Topic: A security update is now available for Red Hat JBoss Enterprise Application Platform 7.1 for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

CVE-2025-52999

A nested data handling flaw was found in Jackson Core. When parsing particularly deeply nested data structures, a StackoverflowError can occur.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-121 - Stack-based Buffer Overflow

Affected products

Fixed 21 products

Product	Version	Remediation
Unresolved product id: 7Server-JBEAP-7.1-EUS:eap7-jackson-annotations-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.1-EUS:eap7-jackson-annotations-0:2.8.11-2.redhat_00004.1.ep7.el7.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.1-EUS:eap7-jackson-core-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.1-EUS:eap7-jackson-core-0:2.8.11-3.redhat_00004.1.ep7.el7.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.1-EUS:eap7-jackson-datatype-jdk8-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.1-EUS:eap7-jackson-datatype-jsr310-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.1-EUS:eap7-jackson-jaxrs-base-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.1-EUS:eap7-jackson-jaxrs-json-provider-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.1-EUS:eap7-jackson-jaxrs-providers-0:2.8.11-3.redhat_00004.1.ep7.el7.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.1-EUS:eap7-jackson-module-jaxb-annotations-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.1-EUS:eap7-jackson-module-jaxb-annotations-0:2.8.11-3.redhat_00004.1.ep7.el7.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.1-EUS:eap7-jackson-modules-java8-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.1-EUS:eap7-jackson-modules-java8-0:2.8.11-2.redhat_00004.1.ep7.el7.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.1-EUS:eap7-netty-0:4.1.63-3.Final_redhat_00004.1.ep7.el7.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.1-EUS:eap7-netty-0:4.1.63-3.Final_redhat_00004.1.ep7.el7.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.1-EUS:eap7-netty-all-0:4.1.63-3.Final_redhat_00004.1.ep7.el7.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.1-EUS:eap7-undertow-0:1.4.18-18.SP16_redhat_00001.1.ep7.el7.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.1-EUS:eap7-undertow-0:1.4.18-18.SP16_redhat_00001.1.ep7.el7.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.1-EUS:eap7-wildfly-0:7.1.13-6.GA_redhat_00002.1.ep7.el7.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.1-EUS:eap7-wildfly-0:7.1.13-6.GA_redhat_00002.1.ep7.el7.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.1-EUS:eap7-wildfly-modules-0:7.1.13-6.GA_redhat_00002.1.ep7.el7.noarch	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2025-55163

A flaw was found in Netty where malformed client requests can trigger server-side stream resets without triggering abuse counters. This issue, referred to as the "MadeYouReset" attack, allows malicious clients to induce excessive server workload by repeatedly causing server-side stream aborts. While not a protocol bug, this highlights a common implementation weakness that can be exploited to cause a denial of service (DoS).

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-770 - Allocation of Resources Without Limits or Throttling

Affected products

Fixed 21 products

Product	Version	Remediation
Unresolved product id: 7Server-JBEAP-7.1-EUS:eap7-jackson-annotations-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.1-EUS:eap7-jackson-annotations-0:2.8.11-2.redhat_00004.1.ep7.el7.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.1-EUS:eap7-jackson-core-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.1-EUS:eap7-jackson-core-0:2.8.11-3.redhat_00004.1.ep7.el7.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.1-EUS:eap7-jackson-datatype-jdk8-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.1-EUS:eap7-jackson-datatype-jsr310-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.1-EUS:eap7-jackson-jaxrs-base-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.1-EUS:eap7-jackson-jaxrs-json-provider-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.1-EUS:eap7-jackson-jaxrs-providers-0:2.8.11-3.redhat_00004.1.ep7.el7.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.1-EUS:eap7-jackson-module-jaxb-annotations-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.1-EUS:eap7-jackson-module-jaxb-annotations-0:2.8.11-3.redhat_00004.1.ep7.el7.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.1-EUS:eap7-jackson-modules-java8-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.1-EUS:eap7-jackson-modules-java8-0:2.8.11-2.redhat_00004.1.ep7.el7.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.1-EUS:eap7-netty-0:4.1.63-3.Final_redhat_00004.1.ep7.el7.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.1-EUS:eap7-netty-0:4.1.63-3.Final_redhat_00004.1.ep7.el7.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.1-EUS:eap7-netty-all-0:4.1.63-3.Final_redhat_00004.1.ep7.el7.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.1-EUS:eap7-undertow-0:1.4.18-18.SP16_redhat_00001.1.ep7.el7.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.1-EUS:eap7-undertow-0:1.4.18-18.SP16_redhat_00001.1.ep7.el7.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.1-EUS:eap7-wildfly-0:7.1.13-6.GA_redhat_00002.1.ep7.el7.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.1-EUS:eap7-wildfly-0:7.1.13-6.GA_redhat_00002.1.ep7.el7.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.1-EUS:eap7-wildfly-modules-0:7.1.13-6.GA_redhat_00002.1.ep7.el7.noarch	—	Vendor Fix fix Workaround

Threats

Impact Important

References

23 references

URL	Category
https://access.redhat.com/errata/RHSA-2026:0742	self
https://access.redhat.com/security/updates/classi…	external
https://access.redhat.com/jbossnetwork/restricted…	external
https://docs.redhat.com/en/documentation/red_hat_…	external
https://docs.redhat.com/en/documentation/red_hat_…	external
https://bugzilla.redhat.com/show_bug.cgi?id=2374804	external
https://bugzilla.redhat.com/show_bug.cgi?id=2388252	external
https://issues.redhat.com/browse/JBEAP-30775	external
https://issues.redhat.com/browse/JBEAP-31347	external
https://issues.redhat.com/browse/JBEAP-31349	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2025-52999	self
https://bugzilla.redhat.com/show_bug.cgi?id=2374804	external
https://www.cve.org/CVERecord?id=CVE-2025-52999	external
https://nvd.nist.gov/vuln/detail/CVE-2025-52999	external
https://github.com/FasterXML/jackson-core/pull/943	external
https://github.com/FasterXML/jackson-core/securit…	external
https://access.redhat.com/security/cve/CVE-2025-55163	self
https://bugzilla.redhat.com/show_bug.cgi?id=2388252	external
https://www.cve.org/CVERecord?id=CVE-2025-55163	external
https://nvd.nist.gov/vuln/detail/CVE-2025-55163	external
https://github.com/netty/netty/security/advisorie…	external
https://kb.cert.org/vuls/id/767506	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Critical"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "A security update is now available for Red Hat JBoss Enterprise Application Platform 7.1 for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime. This release of Red Hat JBoss Enterprise Application Platform 7.1.13 serves as a replacement for Red Hat JBoss Enterprise Application Platform 7.1.12, and includes bug fixes and enhancements. See the Red Hat JBoss Enterprise Application Platform 7.1.13 Release Notes for information about the most significant bug fixes and enhancements included in this release.\n\nSecurity Fix(es):\n\n* jackson-core: jackson-core Potential StackoverflowError [eap-7.1.z] (CVE-2025-52999)\n\n* netty-codec-http2: Netty MadeYouReset HTTP/2 DDoS Vulnerability [eap-7.1.z] (CVE-2025-55163)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2026:0742",
        "url": "https://access.redhat.com/errata/RHSA-2026:0742"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#critical",
        "url": "https://access.redhat.com/security/updates/classification/#critical"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?downloadType=securityPatches\u0026product=appplatform\u0026version=7.1",
        "url": "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?downloadType=securityPatches\u0026product=appplatform\u0026version=7.1"
      },
      {
        "category": "external",
        "summary": "https://docs.redhat.com/en/documentation/red_hat_jboss_enterprise_application_platform/7.1",
        "url": "https://docs.redhat.com/en/documentation/red_hat_jboss_enterprise_application_platform/7.1"
      },
      {
        "category": "external",
        "summary": "https://docs.redhat.com/en/documentation/red_hat_jboss_enterprise_application_platform/7.1/html-single/installation_guide/index",
        "url": "https://docs.redhat.com/en/documentation/red_hat_jboss_enterprise_application_platform/7.1/html-single/installation_guide/index"
      },
      {
        "category": "external",
        "summary": "2374804",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2374804"
      },
      {
        "category": "external",
        "summary": "2388252",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2388252"
      },
      {
        "category": "external",
        "summary": "JBEAP-30775",
        "url": "https://issues.redhat.com/browse/JBEAP-30775"
      },
      {
        "category": "external",
        "summary": "JBEAP-31347",
        "url": "https://issues.redhat.com/browse/JBEAP-31347"
      },
      {
        "category": "external",
        "summary": "JBEAP-31349",
        "url": "https://issues.redhat.com/browse/JBEAP-31349"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_0742.json"
      }
    ],
    "title": "Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.1.13 on RHEL 7 security update",
    "tracking": {
      "current_release_date": "2026-05-10T14:27:15+00:00",
      "generator": {
        "date": "2026-05-10T14:27:15+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.7.9"
        }
      },
      "id": "RHSA-2026:0742",
      "initial_release_date": "2026-01-19T00:15:08+00:00",
      "revision_history": [
        {
          "date": "2026-01-19T00:15:08+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2026-01-19T00:15:08+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-05-10T14:27:15+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat JBoss Enterprise Application Platform 7.1 EUS for RHEL 7 Server",
                "product": {
                  "name": "Red Hat JBoss Enterprise Application Platform 7.1 EUS for RHEL 7 Server",
                  "product_id": "7Server-JBEAP-7.1-EUS",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform_eus:7.1::el7"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat JBoss Enterprise Application Platform"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "eap7-undertow-0:1.4.18-18.SP16_redhat_00001.1.ep7.el7.src",
                "product": {
                  "name": "eap7-undertow-0:1.4.18-18.SP16_redhat_00001.1.ep7.el7.src",
                  "product_id": "eap7-undertow-0:1.4.18-18.SP16_redhat_00001.1.ep7.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-undertow@1.4.18-18.SP16_redhat_00001.1.ep7.el7?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-0:4.1.63-3.Final_redhat_00004.1.ep7.el7.src",
                "product": {
                  "name": "eap7-netty-0:4.1.63-3.Final_redhat_00004.1.ep7.el7.src",
                  "product_id": "eap7-netty-0:4.1.63-3.Final_redhat_00004.1.ep7.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty@4.1.63-3.Final_redhat_00004.1.ep7.el7?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jackson-core-0:2.8.11-3.redhat_00004.1.ep7.el7.src",
                "product": {
                  "name": "eap7-jackson-core-0:2.8.11-3.redhat_00004.1.ep7.el7.src",
                  "product_id": "eap7-jackson-core-0:2.8.11-3.redhat_00004.1.ep7.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jackson-core@2.8.11-3.redhat_00004.1.ep7.el7?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jackson-module-jaxb-annotations-0:2.8.11-3.redhat_00004.1.ep7.el7.src",
                "product": {
                  "name": "eap7-jackson-module-jaxb-annotations-0:2.8.11-3.redhat_00004.1.ep7.el7.src",
                  "product_id": "eap7-jackson-module-jaxb-annotations-0:2.8.11-3.redhat_00004.1.ep7.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jackson-module-jaxb-annotations@2.8.11-3.redhat_00004.1.ep7.el7?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jackson-modules-java8-0:2.8.11-2.redhat_00004.1.ep7.el7.src",
                "product": {
                  "name": "eap7-jackson-modules-java8-0:2.8.11-2.redhat_00004.1.ep7.el7.src",
                  "product_id": "eap7-jackson-modules-java8-0:2.8.11-2.redhat_00004.1.ep7.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jackson-modules-java8@2.8.11-2.redhat_00004.1.ep7.el7?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jackson-jaxrs-providers-0:2.8.11-3.redhat_00004.1.ep7.el7.src",
                "product": {
                  "name": "eap7-jackson-jaxrs-providers-0:2.8.11-3.redhat_00004.1.ep7.el7.src",
                  "product_id": "eap7-jackson-jaxrs-providers-0:2.8.11-3.redhat_00004.1.ep7.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jackson-jaxrs-providers@2.8.11-3.redhat_00004.1.ep7.el7?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jackson-annotations-0:2.8.11-2.redhat_00004.1.ep7.el7.src",
                "product": {
                  "name": "eap7-jackson-annotations-0:2.8.11-2.redhat_00004.1.ep7.el7.src",
                  "product_id": "eap7-jackson-annotations-0:2.8.11-2.redhat_00004.1.ep7.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jackson-annotations@2.8.11-2.redhat_00004.1.ep7.el7?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-wildfly-0:7.1.13-6.GA_redhat_00002.1.ep7.el7.src",
                "product": {
                  "name": "eap7-wildfly-0:7.1.13-6.GA_redhat_00002.1.ep7.el7.src",
                  "product_id": "eap7-wildfly-0:7.1.13-6.GA_redhat_00002.1.ep7.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly@7.1.13-6.GA_redhat_00002.1.ep7.el7?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "eap7-undertow-0:1.4.18-18.SP16_redhat_00001.1.ep7.el7.noarch",
                "product": {
                  "name": "eap7-undertow-0:1.4.18-18.SP16_redhat_00001.1.ep7.el7.noarch",
                  "product_id": "eap7-undertow-0:1.4.18-18.SP16_redhat_00001.1.ep7.el7.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-undertow@1.4.18-18.SP16_redhat_00001.1.ep7.el7?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-0:4.1.63-3.Final_redhat_00004.1.ep7.el7.noarch",
                "product": {
                  "name": "eap7-netty-0:4.1.63-3.Final_redhat_00004.1.ep7.el7.noarch",
                  "product_id": "eap7-netty-0:4.1.63-3.Final_redhat_00004.1.ep7.el7.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty@4.1.63-3.Final_redhat_00004.1.ep7.el7?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-all-0:4.1.63-3.Final_redhat_00004.1.ep7.el7.noarch",
                "product": {
                  "name": "eap7-netty-all-0:4.1.63-3.Final_redhat_00004.1.ep7.el7.noarch",
                  "product_id": "eap7-netty-all-0:4.1.63-3.Final_redhat_00004.1.ep7.el7.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-all@4.1.63-3.Final_redhat_00004.1.ep7.el7?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jackson-core-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch",
                "product": {
                  "name": "eap7-jackson-core-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch",
                  "product_id": "eap7-jackson-core-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jackson-core@2.8.11-3.redhat_00004.1.ep7.el7?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jackson-module-jaxb-annotations-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch",
                "product": {
                  "name": "eap7-jackson-module-jaxb-annotations-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch",
                  "product_id": "eap7-jackson-module-jaxb-annotations-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jackson-module-jaxb-annotations@2.8.11-3.redhat_00004.1.ep7.el7?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jackson-datatype-jdk8-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch",
                "product": {
                  "name": "eap7-jackson-datatype-jdk8-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch",
                  "product_id": "eap7-jackson-datatype-jdk8-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jackson-datatype-jdk8@2.8.11-2.redhat_00004.1.ep7.el7?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jackson-datatype-jsr310-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch",
                "product": {
                  "name": "eap7-jackson-datatype-jsr310-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch",
                  "product_id": "eap7-jackson-datatype-jsr310-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jackson-datatype-jsr310@2.8.11-2.redhat_00004.1.ep7.el7?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jackson-modules-java8-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch",
                "product": {
                  "name": "eap7-jackson-modules-java8-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch",
                  "product_id": "eap7-jackson-modules-java8-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jackson-modules-java8@2.8.11-2.redhat_00004.1.ep7.el7?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jackson-jaxrs-base-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch",
                "product": {
                  "name": "eap7-jackson-jaxrs-base-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch",
                  "product_id": "eap7-jackson-jaxrs-base-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jackson-jaxrs-base@2.8.11-3.redhat_00004.1.ep7.el7?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jackson-jaxrs-json-provider-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch",
                "product": {
                  "name": "eap7-jackson-jaxrs-json-provider-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch",
                  "product_id": "eap7-jackson-jaxrs-json-provider-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jackson-jaxrs-json-provider@2.8.11-3.redhat_00004.1.ep7.el7?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jackson-annotations-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch",
                "product": {
                  "name": "eap7-jackson-annotations-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch",
                  "product_id": "eap7-jackson-annotations-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jackson-annotations@2.8.11-2.redhat_00004.1.ep7.el7?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-wildfly-0:7.1.13-6.GA_redhat_00002.1.ep7.el7.noarch",
                "product": {
                  "name": "eap7-wildfly-0:7.1.13-6.GA_redhat_00002.1.ep7.el7.noarch",
                  "product_id": "eap7-wildfly-0:7.1.13-6.GA_redhat_00002.1.ep7.el7.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly@7.1.13-6.GA_redhat_00002.1.ep7.el7?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-wildfly-modules-0:7.1.13-6.GA_redhat_00002.1.ep7.el7.noarch",
                "product": {
                  "name": "eap7-wildfly-modules-0:7.1.13-6.GA_redhat_00002.1.ep7.el7.noarch",
                  "product_id": "eap7-wildfly-modules-0:7.1.13-6.GA_redhat_00002.1.ep7.el7.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly-modules@7.1.13-6.GA_redhat_00002.1.ep7.el7?arch=noarch"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jackson-annotations-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.1-EUS:eap7-jackson-annotations-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch"
        },
        "product_reference": "eap7-jackson-annotations-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.1-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jackson-annotations-0:2.8.11-2.redhat_00004.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.1-EUS:eap7-jackson-annotations-0:2.8.11-2.redhat_00004.1.ep7.el7.src"
        },
        "product_reference": "eap7-jackson-annotations-0:2.8.11-2.redhat_00004.1.ep7.el7.src",
        "relates_to_product_reference": "7Server-JBEAP-7.1-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jackson-core-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.1-EUS:eap7-jackson-core-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch"
        },
        "product_reference": "eap7-jackson-core-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.1-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jackson-core-0:2.8.11-3.redhat_00004.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.1-EUS:eap7-jackson-core-0:2.8.11-3.redhat_00004.1.ep7.el7.src"
        },
        "product_reference": "eap7-jackson-core-0:2.8.11-3.redhat_00004.1.ep7.el7.src",
        "relates_to_product_reference": "7Server-JBEAP-7.1-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jackson-datatype-jdk8-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.1-EUS:eap7-jackson-datatype-jdk8-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch"
        },
        "product_reference": "eap7-jackson-datatype-jdk8-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.1-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jackson-datatype-jsr310-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.1-EUS:eap7-jackson-datatype-jsr310-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch"
        },
        "product_reference": "eap7-jackson-datatype-jsr310-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.1-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jackson-jaxrs-base-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.1-EUS:eap7-jackson-jaxrs-base-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch"
        },
        "product_reference": "eap7-jackson-jaxrs-base-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.1-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jackson-jaxrs-json-provider-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.1-EUS:eap7-jackson-jaxrs-json-provider-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch"
        },
        "product_reference": "eap7-jackson-jaxrs-json-provider-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.1-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jackson-jaxrs-providers-0:2.8.11-3.redhat_00004.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.1-EUS:eap7-jackson-jaxrs-providers-0:2.8.11-3.redhat_00004.1.ep7.el7.src"
        },
        "product_reference": "eap7-jackson-jaxrs-providers-0:2.8.11-3.redhat_00004.1.ep7.el7.src",
        "relates_to_product_reference": "7Server-JBEAP-7.1-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jackson-module-jaxb-annotations-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.1-EUS:eap7-jackson-module-jaxb-annotations-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch"
        },
        "product_reference": "eap7-jackson-module-jaxb-annotations-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.1-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jackson-module-jaxb-annotations-0:2.8.11-3.redhat_00004.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.1-EUS:eap7-jackson-module-jaxb-annotations-0:2.8.11-3.redhat_00004.1.ep7.el7.src"
        },
        "product_reference": "eap7-jackson-module-jaxb-annotations-0:2.8.11-3.redhat_00004.1.ep7.el7.src",
        "relates_to_product_reference": "7Server-JBEAP-7.1-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jackson-modules-java8-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.1-EUS:eap7-jackson-modules-java8-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch"
        },
        "product_reference": "eap7-jackson-modules-java8-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.1-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jackson-modules-java8-0:2.8.11-2.redhat_00004.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.1-EUS:eap7-jackson-modules-java8-0:2.8.11-2.redhat_00004.1.ep7.el7.src"
        },
        "product_reference": "eap7-jackson-modules-java8-0:2.8.11-2.redhat_00004.1.ep7.el7.src",
        "relates_to_product_reference": "7Server-JBEAP-7.1-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-0:4.1.63-3.Final_redhat_00004.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.1-EUS:eap7-netty-0:4.1.63-3.Final_redhat_00004.1.ep7.el7.noarch"
        },
        "product_reference": "eap7-netty-0:4.1.63-3.Final_redhat_00004.1.ep7.el7.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.1-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-0:4.1.63-3.Final_redhat_00004.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.1-EUS:eap7-netty-0:4.1.63-3.Final_redhat_00004.1.ep7.el7.src"
        },
        "product_reference": "eap7-netty-0:4.1.63-3.Final_redhat_00004.1.ep7.el7.src",
        "relates_to_product_reference": "7Server-JBEAP-7.1-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-all-0:4.1.63-3.Final_redhat_00004.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.1-EUS:eap7-netty-all-0:4.1.63-3.Final_redhat_00004.1.ep7.el7.noarch"
        },
        "product_reference": "eap7-netty-all-0:4.1.63-3.Final_redhat_00004.1.ep7.el7.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.1-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-undertow-0:1.4.18-18.SP16_redhat_00001.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.1-EUS:eap7-undertow-0:1.4.18-18.SP16_redhat_00001.1.ep7.el7.noarch"
        },
        "product_reference": "eap7-undertow-0:1.4.18-18.SP16_redhat_00001.1.ep7.el7.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.1-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-undertow-0:1.4.18-18.SP16_redhat_00001.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.1-EUS:eap7-undertow-0:1.4.18-18.SP16_redhat_00001.1.ep7.el7.src"
        },
        "product_reference": "eap7-undertow-0:1.4.18-18.SP16_redhat_00001.1.ep7.el7.src",
        "relates_to_product_reference": "7Server-JBEAP-7.1-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-0:7.1.13-6.GA_redhat_00002.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.1-EUS:eap7-wildfly-0:7.1.13-6.GA_redhat_00002.1.ep7.el7.noarch"
        },
        "product_reference": "eap7-wildfly-0:7.1.13-6.GA_redhat_00002.1.ep7.el7.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.1-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-0:7.1.13-6.GA_redhat_00002.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.1-EUS:eap7-wildfly-0:7.1.13-6.GA_redhat_00002.1.ep7.el7.src"
        },
        "product_reference": "eap7-wildfly-0:7.1.13-6.GA_redhat_00002.1.ep7.el7.src",
        "relates_to_product_reference": "7Server-JBEAP-7.1-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-modules-0:7.1.13-6.GA_redhat_00002.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.1-EUS:eap7-wildfly-modules-0:7.1.13-6.GA_redhat_00002.1.ep7.el7.noarch"
        },
        "product_reference": "eap7-wildfly-modules-0:7.1.13-6.GA_redhat_00002.1.ep7.el7.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.1-EUS"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2025-52999",
      "cwe": {
        "id": "CWE-121",
        "name": "Stack-based Buffer Overflow"
      },
      "discovery_date": "2025-06-25T18:00:54.693716+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2374804"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A nested data handling flaw was found in Jackson Core. When parsing particularly deeply nested data structures, a StackoverflowError can occur.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "com.fasterxml.jackson.core/jackson-core: jackson-core Potential StackoverflowError",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-JBEAP-7.1-EUS:eap7-jackson-annotations-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch",
          "7Server-JBEAP-7.1-EUS:eap7-jackson-annotations-0:2.8.11-2.redhat_00004.1.ep7.el7.src",
          "7Server-JBEAP-7.1-EUS:eap7-jackson-core-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch",
          "7Server-JBEAP-7.1-EUS:eap7-jackson-core-0:2.8.11-3.redhat_00004.1.ep7.el7.src",
          "7Server-JBEAP-7.1-EUS:eap7-jackson-datatype-jdk8-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch",
          "7Server-JBEAP-7.1-EUS:eap7-jackson-datatype-jsr310-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch",
          "7Server-JBEAP-7.1-EUS:eap7-jackson-jaxrs-base-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch",
          "7Server-JBEAP-7.1-EUS:eap7-jackson-jaxrs-json-provider-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch",
          "7Server-JBEAP-7.1-EUS:eap7-jackson-jaxrs-providers-0:2.8.11-3.redhat_00004.1.ep7.el7.src",
          "7Server-JBEAP-7.1-EUS:eap7-jackson-module-jaxb-annotations-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch",
          "7Server-JBEAP-7.1-EUS:eap7-jackson-module-jaxb-annotations-0:2.8.11-3.redhat_00004.1.ep7.el7.src",
          "7Server-JBEAP-7.1-EUS:eap7-jackson-modules-java8-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch",
          "7Server-JBEAP-7.1-EUS:eap7-jackson-modules-java8-0:2.8.11-2.redhat_00004.1.ep7.el7.src",
          "7Server-JBEAP-7.1-EUS:eap7-netty-0:4.1.63-3.Final_redhat_00004.1.ep7.el7.noarch",
          "7Server-JBEAP-7.1-EUS:eap7-netty-0:4.1.63-3.Final_redhat_00004.1.ep7.el7.src",
          "7Server-JBEAP-7.1-EUS:eap7-netty-all-0:4.1.63-3.Final_redhat_00004.1.ep7.el7.noarch",
          "7Server-JBEAP-7.1-EUS:eap7-undertow-0:1.4.18-18.SP16_redhat_00001.1.ep7.el7.noarch",
          "7Server-JBEAP-7.1-EUS:eap7-undertow-0:1.4.18-18.SP16_redhat_00001.1.ep7.el7.src",
          "7Server-JBEAP-7.1-EUS:eap7-wildfly-0:7.1.13-6.GA_redhat_00002.1.ep7.el7.noarch",
          "7Server-JBEAP-7.1-EUS:eap7-wildfly-0:7.1.13-6.GA_redhat_00002.1.ep7.el7.src",
          "7Server-JBEAP-7.1-EUS:eap7-wildfly-modules-0:7.1.13-6.GA_redhat_00002.1.ep7.el7.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-52999"
        },
        {
          "category": "external",
          "summary": "RHBZ#2374804",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2374804"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-52999",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-52999"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-52999",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-52999"
        },
        {
          "category": "external",
          "summary": "https://github.com/FasterXML/jackson-core/pull/943",
          "url": "https://github.com/FasterXML/jackson-core/pull/943"
        },
        {
          "category": "external",
          "summary": "https://github.com/FasterXML/jackson-core/security/advisories/GHSA-h46c-h94j-95f3",
          "url": "https://github.com/FasterXML/jackson-core/security/advisories/GHSA-h46c-h94j-95f3"
        }
      ],
      "release_date": "2025-06-25T17:02:57.428000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-01-19T00:15:08+00:00",
          "details": "Before applying this update, ensure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "7Server-JBEAP-7.1-EUS:eap7-jackson-annotations-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-annotations-0:2.8.11-2.redhat_00004.1.ep7.el7.src",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-core-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-core-0:2.8.11-3.redhat_00004.1.ep7.el7.src",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-datatype-jdk8-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-datatype-jsr310-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-jaxrs-base-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-jaxrs-json-provider-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-jaxrs-providers-0:2.8.11-3.redhat_00004.1.ep7.el7.src",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-module-jaxb-annotations-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-module-jaxb-annotations-0:2.8.11-3.redhat_00004.1.ep7.el7.src",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-modules-java8-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-modules-java8-0:2.8.11-2.redhat_00004.1.ep7.el7.src",
            "7Server-JBEAP-7.1-EUS:eap7-netty-0:4.1.63-3.Final_redhat_00004.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-netty-0:4.1.63-3.Final_redhat_00004.1.ep7.el7.src",
            "7Server-JBEAP-7.1-EUS:eap7-netty-all-0:4.1.63-3.Final_redhat_00004.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-undertow-0:1.4.18-18.SP16_redhat_00001.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-undertow-0:1.4.18-18.SP16_redhat_00001.1.ep7.el7.src",
            "7Server-JBEAP-7.1-EUS:eap7-wildfly-0:7.1.13-6.GA_redhat_00002.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-wildfly-0:7.1.13-6.GA_redhat_00002.1.ep7.el7.src",
            "7Server-JBEAP-7.1-EUS:eap7-wildfly-modules-0:7.1.13-6.GA_redhat_00002.1.ep7.el7.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:0742"
        },
        {
          "category": "workaround",
          "details": "To mitigate this vulnerability, the recommendation is to avoid parsing input files from untrusted sources that may have excessively deep nested data structures; anything with a depth over 1000.",
          "product_ids": [
            "7Server-JBEAP-7.1-EUS:eap7-jackson-annotations-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-annotations-0:2.8.11-2.redhat_00004.1.ep7.el7.src",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-core-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-core-0:2.8.11-3.redhat_00004.1.ep7.el7.src",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-datatype-jdk8-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-datatype-jsr310-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-jaxrs-base-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-jaxrs-json-provider-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-jaxrs-providers-0:2.8.11-3.redhat_00004.1.ep7.el7.src",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-module-jaxb-annotations-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-module-jaxb-annotations-0:2.8.11-3.redhat_00004.1.ep7.el7.src",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-modules-java8-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-modules-java8-0:2.8.11-2.redhat_00004.1.ep7.el7.src",
            "7Server-JBEAP-7.1-EUS:eap7-netty-0:4.1.63-3.Final_redhat_00004.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-netty-0:4.1.63-3.Final_redhat_00004.1.ep7.el7.src",
            "7Server-JBEAP-7.1-EUS:eap7-netty-all-0:4.1.63-3.Final_redhat_00004.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-undertow-0:1.4.18-18.SP16_redhat_00001.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-undertow-0:1.4.18-18.SP16_redhat_00001.1.ep7.el7.src",
            "7Server-JBEAP-7.1-EUS:eap7-wildfly-0:7.1.13-6.GA_redhat_00002.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-wildfly-0:7.1.13-6.GA_redhat_00002.1.ep7.el7.src",
            "7Server-JBEAP-7.1-EUS:eap7-wildfly-modules-0:7.1.13-6.GA_redhat_00002.1.ep7.el7.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "7Server-JBEAP-7.1-EUS:eap7-jackson-annotations-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-annotations-0:2.8.11-2.redhat_00004.1.ep7.el7.src",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-core-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-core-0:2.8.11-3.redhat_00004.1.ep7.el7.src",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-datatype-jdk8-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-datatype-jsr310-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-jaxrs-base-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-jaxrs-json-provider-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-jaxrs-providers-0:2.8.11-3.redhat_00004.1.ep7.el7.src",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-module-jaxb-annotations-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-module-jaxb-annotations-0:2.8.11-3.redhat_00004.1.ep7.el7.src",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-modules-java8-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-modules-java8-0:2.8.11-2.redhat_00004.1.ep7.el7.src",
            "7Server-JBEAP-7.1-EUS:eap7-netty-0:4.1.63-3.Final_redhat_00004.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-netty-0:4.1.63-3.Final_redhat_00004.1.ep7.el7.src",
            "7Server-JBEAP-7.1-EUS:eap7-netty-all-0:4.1.63-3.Final_redhat_00004.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-undertow-0:1.4.18-18.SP16_redhat_00001.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-undertow-0:1.4.18-18.SP16_redhat_00001.1.ep7.el7.src",
            "7Server-JBEAP-7.1-EUS:eap7-wildfly-0:7.1.13-6.GA_redhat_00002.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-wildfly-0:7.1.13-6.GA_redhat_00002.1.ep7.el7.src",
            "7Server-JBEAP-7.1-EUS:eap7-wildfly-modules-0:7.1.13-6.GA_redhat_00002.1.ep7.el7.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "com.fasterxml.jackson.core/jackson-core: jackson-core Potential StackoverflowError"
    },
    {
      "cve": "CVE-2025-55163",
      "cwe": {
        "id": "CWE-770",
        "name": "Allocation of Resources Without Limits or Throttling"
      },
      "discovery_date": "2025-08-13T15:01:55.372237+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2388252"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Netty where malformed client requests can trigger server-side stream resets without triggering abuse counters. This issue, referred to as the \"MadeYouReset\" attack, allows malicious clients to induce excessive server workload by repeatedly causing server-side stream aborts. While not a protocol bug, this highlights a common implementation weakness that can be exploited to cause a denial of service (DoS).",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "netty: netty-codec-http2: Netty MadeYouReset HTTP/2 DDoS Vulnerability",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability is rated with an Important severity. It is simple to exploit because it does not require authentication and could result in a denial of service (DoS). While some DoS flaws are classified as Moderate, \u201cMadeYouReset\u201d is Important because of the limited barriers (no specialized tooling or advanced scripting) to exploitation, which directly impacts service availability. The vulnerability arises from an implementation weakness in HTTP/2 stream reset handling \u2014 malformed client requests can trigger server-side resets without incrementing abuse counters, allowing an attacker to bypass built-in request throttling and overhead limits. Since these resets consume CPU and memory resources and can be generated at scale over a single TCP/TLS connection, a remote attacker could exhaust server capacity quickly, impacting all legitimate clients.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-JBEAP-7.1-EUS:eap7-jackson-annotations-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch",
          "7Server-JBEAP-7.1-EUS:eap7-jackson-annotations-0:2.8.11-2.redhat_00004.1.ep7.el7.src",
          "7Server-JBEAP-7.1-EUS:eap7-jackson-core-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch",
          "7Server-JBEAP-7.1-EUS:eap7-jackson-core-0:2.8.11-3.redhat_00004.1.ep7.el7.src",
          "7Server-JBEAP-7.1-EUS:eap7-jackson-datatype-jdk8-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch",
          "7Server-JBEAP-7.1-EUS:eap7-jackson-datatype-jsr310-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch",
          "7Server-JBEAP-7.1-EUS:eap7-jackson-jaxrs-base-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch",
          "7Server-JBEAP-7.1-EUS:eap7-jackson-jaxrs-json-provider-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch",
          "7Server-JBEAP-7.1-EUS:eap7-jackson-jaxrs-providers-0:2.8.11-3.redhat_00004.1.ep7.el7.src",
          "7Server-JBEAP-7.1-EUS:eap7-jackson-module-jaxb-annotations-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch",
          "7Server-JBEAP-7.1-EUS:eap7-jackson-module-jaxb-annotations-0:2.8.11-3.redhat_00004.1.ep7.el7.src",
          "7Server-JBEAP-7.1-EUS:eap7-jackson-modules-java8-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch",
          "7Server-JBEAP-7.1-EUS:eap7-jackson-modules-java8-0:2.8.11-2.redhat_00004.1.ep7.el7.src",
          "7Server-JBEAP-7.1-EUS:eap7-netty-0:4.1.63-3.Final_redhat_00004.1.ep7.el7.noarch",
          "7Server-JBEAP-7.1-EUS:eap7-netty-0:4.1.63-3.Final_redhat_00004.1.ep7.el7.src",
          "7Server-JBEAP-7.1-EUS:eap7-netty-all-0:4.1.63-3.Final_redhat_00004.1.ep7.el7.noarch",
          "7Server-JBEAP-7.1-EUS:eap7-undertow-0:1.4.18-18.SP16_redhat_00001.1.ep7.el7.noarch",
          "7Server-JBEAP-7.1-EUS:eap7-undertow-0:1.4.18-18.SP16_redhat_00001.1.ep7.el7.src",
          "7Server-JBEAP-7.1-EUS:eap7-wildfly-0:7.1.13-6.GA_redhat_00002.1.ep7.el7.noarch",
          "7Server-JBEAP-7.1-EUS:eap7-wildfly-0:7.1.13-6.GA_redhat_00002.1.ep7.el7.src",
          "7Server-JBEAP-7.1-EUS:eap7-wildfly-modules-0:7.1.13-6.GA_redhat_00002.1.ep7.el7.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-55163"
        },
        {
          "category": "external",
          "summary": "RHBZ#2388252",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2388252"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-55163",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-55163"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-55163",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-55163"
        },
        {
          "category": "external",
          "summary": "https://github.com/netty/netty/security/advisories/GHSA-prj3-ccx8-p6x4",
          "url": "https://github.com/netty/netty/security/advisories/GHSA-prj3-ccx8-p6x4"
        },
        {
          "category": "external",
          "summary": "https://kb.cert.org/vuls/id/767506",
          "url": "https://kb.cert.org/vuls/id/767506"
        }
      ],
      "release_date": "2025-08-13T14:17:36.111000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-01-19T00:15:08+00:00",
          "details": "Before applying this update, ensure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "7Server-JBEAP-7.1-EUS:eap7-jackson-annotations-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-annotations-0:2.8.11-2.redhat_00004.1.ep7.el7.src",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-core-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-core-0:2.8.11-3.redhat_00004.1.ep7.el7.src",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-datatype-jdk8-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-datatype-jsr310-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-jaxrs-base-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-jaxrs-json-provider-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-jaxrs-providers-0:2.8.11-3.redhat_00004.1.ep7.el7.src",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-module-jaxb-annotations-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-module-jaxb-annotations-0:2.8.11-3.redhat_00004.1.ep7.el7.src",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-modules-java8-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-modules-java8-0:2.8.11-2.redhat_00004.1.ep7.el7.src",
            "7Server-JBEAP-7.1-EUS:eap7-netty-0:4.1.63-3.Final_redhat_00004.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-netty-0:4.1.63-3.Final_redhat_00004.1.ep7.el7.src",
            "7Server-JBEAP-7.1-EUS:eap7-netty-all-0:4.1.63-3.Final_redhat_00004.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-undertow-0:1.4.18-18.SP16_redhat_00001.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-undertow-0:1.4.18-18.SP16_redhat_00001.1.ep7.el7.src",
            "7Server-JBEAP-7.1-EUS:eap7-wildfly-0:7.1.13-6.GA_redhat_00002.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-wildfly-0:7.1.13-6.GA_redhat_00002.1.ep7.el7.src",
            "7Server-JBEAP-7.1-EUS:eap7-wildfly-modules-0:7.1.13-6.GA_redhat_00002.1.ep7.el7.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:0742"
        },
        {
          "category": "workaround",
          "details": "No mitigation is currently available that meets Red Hat Product Security\u2019s standards for usability, deployment, applicability, or stability.",
          "product_ids": [
            "7Server-JBEAP-7.1-EUS:eap7-jackson-annotations-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-annotations-0:2.8.11-2.redhat_00004.1.ep7.el7.src",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-core-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-core-0:2.8.11-3.redhat_00004.1.ep7.el7.src",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-datatype-jdk8-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-datatype-jsr310-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-jaxrs-base-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-jaxrs-json-provider-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-jaxrs-providers-0:2.8.11-3.redhat_00004.1.ep7.el7.src",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-module-jaxb-annotations-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-module-jaxb-annotations-0:2.8.11-3.redhat_00004.1.ep7.el7.src",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-modules-java8-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-modules-java8-0:2.8.11-2.redhat_00004.1.ep7.el7.src",
            "7Server-JBEAP-7.1-EUS:eap7-netty-0:4.1.63-3.Final_redhat_00004.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-netty-0:4.1.63-3.Final_redhat_00004.1.ep7.el7.src",
            "7Server-JBEAP-7.1-EUS:eap7-netty-all-0:4.1.63-3.Final_redhat_00004.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-undertow-0:1.4.18-18.SP16_redhat_00001.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-undertow-0:1.4.18-18.SP16_redhat_00001.1.ep7.el7.src",
            "7Server-JBEAP-7.1-EUS:eap7-wildfly-0:7.1.13-6.GA_redhat_00002.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-wildfly-0:7.1.13-6.GA_redhat_00002.1.ep7.el7.src",
            "7Server-JBEAP-7.1-EUS:eap7-wildfly-modules-0:7.1.13-6.GA_redhat_00002.1.ep7.el7.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "7Server-JBEAP-7.1-EUS:eap7-jackson-annotations-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-annotations-0:2.8.11-2.redhat_00004.1.ep7.el7.src",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-core-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-core-0:2.8.11-3.redhat_00004.1.ep7.el7.src",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-datatype-jdk8-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-datatype-jsr310-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-jaxrs-base-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-jaxrs-json-provider-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-jaxrs-providers-0:2.8.11-3.redhat_00004.1.ep7.el7.src",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-module-jaxb-annotations-0:2.8.11-3.redhat_00004.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-module-jaxb-annotations-0:2.8.11-3.redhat_00004.1.ep7.el7.src",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-modules-java8-0:2.8.11-2.redhat_00004.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-jackson-modules-java8-0:2.8.11-2.redhat_00004.1.ep7.el7.src",
            "7Server-JBEAP-7.1-EUS:eap7-netty-0:4.1.63-3.Final_redhat_00004.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-netty-0:4.1.63-3.Final_redhat_00004.1.ep7.el7.src",
            "7Server-JBEAP-7.1-EUS:eap7-netty-all-0:4.1.63-3.Final_redhat_00004.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-undertow-0:1.4.18-18.SP16_redhat_00001.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-undertow-0:1.4.18-18.SP16_redhat_00001.1.ep7.el7.src",
            "7Server-JBEAP-7.1-EUS:eap7-wildfly-0:7.1.13-6.GA_redhat_00002.1.ep7.el7.noarch",
            "7Server-JBEAP-7.1-EUS:eap7-wildfly-0:7.1.13-6.GA_redhat_00002.1.ep7.el7.src",
            "7Server-JBEAP-7.1-EUS:eap7-wildfly-modules-0:7.1.13-6.GA_redhat_00002.1.ep7.el7.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "netty: netty-codec-http2: Netty MadeYouReset HTTP/2 DDoS Vulnerability"
    }
  ]
}

RHSA-2026:0743

Vulnerability from csaf_redhat - Published: 2026-01-19 00:18 - Updated: 2026-05-10 14:27

Summary

Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.3.16 security update

Severity

Critical

Notes

Topic: An update is now available for Red Hat JBoss Enterprise Application Platform 7.3 for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

CVE-2024-7885

A vulnerability was found in Undertow where the ProxyProtocolReadListener reuses the same StringBuilder instance across multiple requests. This issue occurs when the parseProxyProtocolV1 method processes multiple requests on the same HTTP connection. As a result, different requests may share the same StringBuilder instance, potentially leading to information leakage between requests or responses. In some cases, a value from a previous request or response may be erroneously reused, which could lead to unintended data exposure. This issue primarily results in errors and connection termination but creates a risk of data leakage in multi-request environments.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Affected products

Fixed 50 products

Product	Version	Remediation
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-4.redhat_00008.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-4.redhat_00008.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-4.redhat_00008.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-4.redhat_00008.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-6.redhat_00008.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-6.redhat_00008.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-3.redhat_00008.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-3.redhat_00008.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-4.redhat_00008.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-4.redhat_00008.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-4.redhat_00008.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-6.redhat_00008.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-6.redhat_00008.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-6.redhat_00008.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-3.redhat_00008.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-3.redhat_00008.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-0:1.7.2-20.Final_redhat_00021.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-cli-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-core-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap6.4-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap6.4-to-eap7.3-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.1-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.2-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.2-to-eap7.3-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.3-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly10.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly10.1-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly11.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly12.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly13.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly14.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly15.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly16.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly17.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly18.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly8.2-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly9.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-6.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-6.Final_redhat_00004.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-6.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-undertow-0:2.0.41-6.SP7_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-undertow-0:2.0.41-6.SP7_redhat_00001.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.16-3.GA_redhat_00003.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch	—	Vendor Fix fix

Threats

Impact Important

CVE-2025-52999

A nested data handling flaw was found in Jackson Core. When parsing particularly deeply nested data structures, a StackoverflowError can occur.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-121 - Stack-based Buffer Overflow

Affected products

Fixed 50 products

Product	Version	Remediation
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-4.redhat_00008.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-4.redhat_00008.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-4.redhat_00008.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-4.redhat_00008.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-6.redhat_00008.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-6.redhat_00008.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-3.redhat_00008.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-3.redhat_00008.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-4.redhat_00008.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-4.redhat_00008.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-4.redhat_00008.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-6.redhat_00008.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-6.redhat_00008.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-6.redhat_00008.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-3.redhat_00008.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-3.redhat_00008.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-0:1.7.2-20.Final_redhat_00021.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-cli-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-core-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap6.4-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap6.4-to-eap7.3-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.1-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.2-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.2-to-eap7.3-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.3-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly10.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly10.1-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly11.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly12.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly13.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly14.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly15.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly16.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly17.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly18.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly8.2-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly9.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-6.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-6.Final_redhat_00004.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-6.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-undertow-0:2.0.41-6.SP7_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-undertow-0:2.0.41-6.SP7_redhat_00001.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.16-3.GA_redhat_00003.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2025-55163

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-770 - Allocation of Resources Without Limits or Throttling

Affected products

Fixed 50 products

Product	Version	Remediation
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-4.redhat_00008.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-4.redhat_00008.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-4.redhat_00008.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-4.redhat_00008.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-6.redhat_00008.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-6.redhat_00008.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-3.redhat_00008.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-3.redhat_00008.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-4.redhat_00008.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-4.redhat_00008.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-4.redhat_00008.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-6.redhat_00008.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-6.redhat_00008.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-6.redhat_00008.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-3.redhat_00008.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-3.redhat_00008.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-0:1.7.2-20.Final_redhat_00021.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-cli-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-core-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap6.4-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap6.4-to-eap7.3-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.1-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.2-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.2-to-eap7.3-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.3-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly10.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly10.1-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly11.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly12.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly13.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly14.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly15.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly16.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly17.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly18.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly8.2-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly9.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-6.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-6.Final_redhat_00004.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-6.Final_redhat_00004.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-undertow-0:2.0.41-6.SP7_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-undertow-0:2.0.41-6.SP7_redhat_00001.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.16-3.GA_redhat_00003.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch	—	Vendor Fix fix Workaround

Threats

Impact Important

References

29 references

URL	Category
https://access.redhat.com/errata/RHSA-2026:0743	self
https://access.redhat.com/security/updates/classi…	external
https://docs.redhat.com/en/documentation/red_hat_…	external
https://docs.redhat.com/en/documentation/red_hat_…	external
https://access.redhat.com/security/vulnerabilitie…	external
https://bugzilla.redhat.com/show_bug.cgi?id=2305290	external
https://bugzilla.redhat.com/show_bug.cgi?id=2374804	external
https://bugzilla.redhat.com/show_bug.cgi?id=2388252	external
https://issues.redhat.com/browse/JBEAP-30792	external
https://issues.redhat.com/browse/JBEAP-31038	external
https://issues.redhat.com/browse/JBEAP-31348	external
https://issues.redhat.com/browse/JBEAP-31350	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2024-7885	self
https://bugzilla.redhat.com/show_bug.cgi?id=2305290	external
https://www.cve.org/CVERecord?id=CVE-2024-7885	external
https://nvd.nist.gov/vuln/detail/CVE-2024-7885	external
https://access.redhat.com/security/cve/CVE-2025-52999	self
https://bugzilla.redhat.com/show_bug.cgi?id=2374804	external
https://www.cve.org/CVERecord?id=CVE-2025-52999	external
https://nvd.nist.gov/vuln/detail/CVE-2025-52999	external
https://github.com/FasterXML/jackson-core/pull/943	external
https://github.com/FasterXML/jackson-core/securit…	external
https://access.redhat.com/security/cve/CVE-2025-55163	self
https://bugzilla.redhat.com/show_bug.cgi?id=2388252	external
https://www.cve.org/CVERecord?id=CVE-2025-55163	external
https://nvd.nist.gov/vuln/detail/CVE-2025-55163	external
https://github.com/netty/netty/security/advisorie…	external
https://kb.cert.org/vuls/id/767506	external

Acknowledgments

BfC

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Critical"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update is now available for Red Hat JBoss Enterprise Application Platform 7.3 for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime. This release of Red Hat JBoss Enterprise Application Platform 7.3.16 serves as a replacement for Red Hat JBoss Enterprise Application Platform 7.3.15, and includes bug fixes and enhancements. See the Red Hat JBoss Enterprise Application Platform 7.3.16 Release Notes for information about the most significant bug fixes and enhancements included in this release.\n\nSecurity Fix(es):\n\n* UNDERTOW-2429 undertow: Improper State Management in Proxy Protocol parsing causes information leakage [eap-7.3.z] (CVE-2024-7885)\n\n* jackson-core: jackson-core Potential StackoverflowError [eap-7.3.z] (CVE-2025-52999)\n\n* netty-codec-http2: Netty MadeYouReset HTTP/2 DDoS Vulnerability [eap-7.3.z] (CVE-2025-55163)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgements, and other related information, refer to the CVE page(s) listed in the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2026:0743",
        "url": "https://access.redhat.com/errata/RHSA-2026:0743"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#critical",
        "url": "https://access.redhat.com/security/updates/classification/#critical"
      },
      {
        "category": "external",
        "summary": "https://docs.redhat.com/en/documentation/red_hat_jboss_enterprise_application_platform/7.3",
        "url": "https://docs.redhat.com/en/documentation/red_hat_jboss_enterprise_application_platform/7.3"
      },
      {
        "category": "external",
        "summary": "https://docs.redhat.com/en/documentation/red_hat_jboss_enterprise_application_platform/7.3/html-single/installation_guide/index",
        "url": "https://docs.redhat.com/en/documentation/red_hat_jboss_enterprise_application_platform/7.3/html-single/installation_guide/index"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003",
        "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
      },
      {
        "category": "external",
        "summary": "2305290",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2305290"
      },
      {
        "category": "external",
        "summary": "2374804",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2374804"
      },
      {
        "category": "external",
        "summary": "2388252",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2388252"
      },
      {
        "category": "external",
        "summary": "JBEAP-30792",
        "url": "https://issues.redhat.com/browse/JBEAP-30792"
      },
      {
        "category": "external",
        "summary": "JBEAP-31038",
        "url": "https://issues.redhat.com/browse/JBEAP-31038"
      },
      {
        "category": "external",
        "summary": "JBEAP-31348",
        "url": "https://issues.redhat.com/browse/JBEAP-31348"
      },
      {
        "category": "external",
        "summary": "JBEAP-31350",
        "url": "https://issues.redhat.com/browse/JBEAP-31350"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_0743.json"
      }
    ],
    "title": "Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.3.16 security update",
    "tracking": {
      "current_release_date": "2026-05-10T14:27:18+00:00",
      "generator": {
        "date": "2026-05-10T14:27:18+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.7.9"
        }
      },
      "id": "RHSA-2026:0743",
      "initial_release_date": "2026-01-19T00:18:54+00:00",
      "revision_history": [
        {
          "date": "2026-01-19T00:18:54+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2026-01-19T00:18:54+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-05-10T14:27:18+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
                "product": {
                  "name": "Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
                  "product_id": "7Server-JBEAP-7.3-EUS",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform_eus:7.3::el7"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat JBoss Enterprise Application Platform"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "eap7-jackson-annotations-0:2.10.4-4.redhat_00008.1.el7eap.src",
                "product": {
                  "name": "eap7-jackson-annotations-0:2.10.4-4.redhat_00008.1.el7eap.src",
                  "product_id": "eap7-jackson-annotations-0:2.10.4-4.redhat_00008.1.el7eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jackson-annotations@2.10.4-4.redhat_00008.1.el7eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jackson-modules-base-0:2.10.4-6.redhat_00008.1.el7eap.src",
                "product": {
                  "name": "eap7-jackson-modules-base-0:2.10.4-6.redhat_00008.1.el7eap.src",
                  "product_id": "eap7-jackson-modules-base-0:2.10.4-6.redhat_00008.1.el7eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jackson-modules-base@2.10.4-6.redhat_00008.1.el7eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-0:4.1.63-6.Final_redhat_00004.1.el7eap.src",
                "product": {
                  "name": "eap7-netty-0:4.1.63-6.Final_redhat_00004.1.el7eap.src",
                  "product_id": "eap7-netty-0:4.1.63-6.Final_redhat_00004.1.el7eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty@4.1.63-6.Final_redhat_00004.1.el7eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jackson-jaxrs-providers-0:2.10.4-4.redhat_00008.1.el7eap.src",
                "product": {
                  "name": "eap7-jackson-jaxrs-providers-0:2.10.4-4.redhat_00008.1.el7eap.src",
                  "product_id": "eap7-jackson-jaxrs-providers-0:2.10.4-4.redhat_00008.1.el7eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jackson-jaxrs-providers@2.10.4-4.redhat_00008.1.el7eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jboss-server-migration-0:1.7.2-20.Final_redhat_00021.1.el7eap.src",
                "product": {
                  "name": "eap7-jboss-server-migration-0:1.7.2-20.Final_redhat_00021.1.el7eap.src",
                  "product_id": "eap7-jboss-server-migration-0:1.7.2-20.Final_redhat_00021.1.el7eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jboss-server-migration@1.7.2-20.Final_redhat_00021.1.el7eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jackson-databind-0:2.10.4-6.redhat_00008.1.el7eap.src",
                "product": {
                  "name": "eap7-jackson-databind-0:2.10.4-6.redhat_00008.1.el7eap.src",
                  "product_id": "eap7-jackson-databind-0:2.10.4-6.redhat_00008.1.el7eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jackson-databind@2.10.4-6.redhat_00008.1.el7eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jackson-modules-java8-0:2.10.4-3.redhat_00008.1.el7eap.src",
                "product": {
                  "name": "eap7-jackson-modules-java8-0:2.10.4-3.redhat_00008.1.el7eap.src",
                  "product_id": "eap7-jackson-modules-java8-0:2.10.4-3.redhat_00008.1.el7eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jackson-modules-java8@2.10.4-3.redhat_00008.1.el7eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jackson-core-0:2.10.4-4.redhat_00008.1.el7eap.src",
                "product": {
                  "name": "eap7-jackson-core-0:2.10.4-4.redhat_00008.1.el7eap.src",
                  "product_id": "eap7-jackson-core-0:2.10.4-4.redhat_00008.1.el7eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jackson-core@2.10.4-4.redhat_00008.1.el7eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-undertow-0:2.0.41-6.SP7_redhat_00001.1.el7eap.src",
                "product": {
                  "name": "eap7-undertow-0:2.0.41-6.SP7_redhat_00001.1.el7eap.src",
                  "product_id": "eap7-undertow-0:2.0.41-6.SP7_redhat_00001.1.el7eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-undertow@2.0.41-6.SP7_redhat_00001.1.el7eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-wildfly-0:7.3.16-3.GA_redhat_00003.1.el7eap.src",
                "product": {
                  "name": "eap7-wildfly-0:7.3.16-3.GA_redhat_00003.1.el7eap.src",
                  "product_id": "eap7-wildfly-0:7.3.16-3.GA_redhat_00003.1.el7eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly@7.3.16-3.GA_redhat_00003.1.el7eap?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "eap7-jackson-annotations-0:2.10.4-4.redhat_00008.1.el7eap.noarch",
                "product": {
                  "name": "eap7-jackson-annotations-0:2.10.4-4.redhat_00008.1.el7eap.noarch",
                  "product_id": "eap7-jackson-annotations-0:2.10.4-4.redhat_00008.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jackson-annotations@2.10.4-4.redhat_00008.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jackson-module-jaxb-annotations-0:2.10.4-6.redhat_00008.1.el7eap.noarch",
                "product": {
                  "name": "eap7-jackson-module-jaxb-annotations-0:2.10.4-6.redhat_00008.1.el7eap.noarch",
                  "product_id": "eap7-jackson-module-jaxb-annotations-0:2.10.4-6.redhat_00008.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jackson-module-jaxb-annotations@2.10.4-6.redhat_00008.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jackson-modules-base-0:2.10.4-6.redhat_00008.1.el7eap.noarch",
                "product": {
                  "name": "eap7-jackson-modules-base-0:2.10.4-6.redhat_00008.1.el7eap.noarch",
                  "product_id": "eap7-jackson-modules-base-0:2.10.4-6.redhat_00008.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jackson-modules-base@2.10.4-6.redhat_00008.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-0:4.1.63-6.Final_redhat_00004.1.el7eap.noarch",
                "product": {
                  "name": "eap7-netty-0:4.1.63-6.Final_redhat_00004.1.el7eap.noarch",
                  "product_id": "eap7-netty-0:4.1.63-6.Final_redhat_00004.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty@4.1.63-6.Final_redhat_00004.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-all-0:4.1.63-6.Final_redhat_00004.1.el7eap.noarch",
                "product": {
                  "name": "eap7-netty-all-0:4.1.63-6.Final_redhat_00004.1.el7eap.noarch",
                  "product_id": "eap7-netty-all-0:4.1.63-6.Final_redhat_00004.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-all@4.1.63-6.Final_redhat_00004.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jackson-jaxrs-base-0:2.10.4-4.redhat_00008.1.el7eap.noarch",
                "product": {
                  "name": "eap7-jackson-jaxrs-base-0:2.10.4-4.redhat_00008.1.el7eap.noarch",
                  "product_id": "eap7-jackson-jaxrs-base-0:2.10.4-4.redhat_00008.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jackson-jaxrs-base@2.10.4-4.redhat_00008.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jackson-jaxrs-json-provider-0:2.10.4-4.redhat_00008.1.el7eap.noarch",
                "product": {
                  "name": "eap7-jackson-jaxrs-json-provider-0:2.10.4-4.redhat_00008.1.el7eap.noarch",
                  "product_id": "eap7-jackson-jaxrs-json-provider-0:2.10.4-4.redhat_00008.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jackson-jaxrs-json-provider@2.10.4-4.redhat_00008.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jboss-server-migration-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                "product": {
                  "name": "eap7-jboss-server-migration-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                  "product_id": "eap7-jboss-server-migration-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jboss-server-migration@1.7.2-20.Final_redhat_00021.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jboss-server-migration-cli-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                "product": {
                  "name": "eap7-jboss-server-migration-cli-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                  "product_id": "eap7-jboss-server-migration-cli-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jboss-server-migration-cli@1.7.2-20.Final_redhat_00021.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jboss-server-migration-core-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                "product": {
                  "name": "eap7-jboss-server-migration-core-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                  "product_id": "eap7-jboss-server-migration-core-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jboss-server-migration-core@1.7.2-20.Final_redhat_00021.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jboss-server-migration-eap6.4-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                "product": {
                  "name": "eap7-jboss-server-migration-eap6.4-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                  "product_id": "eap7-jboss-server-migration-eap6.4-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jboss-server-migration-eap6.4@1.7.2-20.Final_redhat_00021.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jboss-server-migration-eap6.4-to-eap7.3-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                "product": {
                  "name": "eap7-jboss-server-migration-eap6.4-to-eap7.3-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                  "product_id": "eap7-jboss-server-migration-eap6.4-to-eap7.3-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jboss-server-migration-eap6.4-to-eap7.3@1.7.2-20.Final_redhat_00021.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jboss-server-migration-eap7.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                "product": {
                  "name": "eap7-jboss-server-migration-eap7.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                  "product_id": "eap7-jboss-server-migration-eap7.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jboss-server-migration-eap7.0@1.7.2-20.Final_redhat_00021.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jboss-server-migration-eap7.1-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                "product": {
                  "name": "eap7-jboss-server-migration-eap7.1-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                  "product_id": "eap7-jboss-server-migration-eap7.1-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jboss-server-migration-eap7.1@1.7.2-20.Final_redhat_00021.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jboss-server-migration-eap7.2-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                "product": {
                  "name": "eap7-jboss-server-migration-eap7.2-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                  "product_id": "eap7-jboss-server-migration-eap7.2-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jboss-server-migration-eap7.2@1.7.2-20.Final_redhat_00021.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jboss-server-migration-eap7.2-to-eap7.3-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                "product": {
                  "name": "eap7-jboss-server-migration-eap7.2-to-eap7.3-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                  "product_id": "eap7-jboss-server-migration-eap7.2-to-eap7.3-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jboss-server-migration-eap7.2-to-eap7.3@1.7.2-20.Final_redhat_00021.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jboss-server-migration-eap7.3-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                "product": {
                  "name": "eap7-jboss-server-migration-eap7.3-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                  "product_id": "eap7-jboss-server-migration-eap7.3-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jboss-server-migration-eap7.3-server@1.7.2-20.Final_redhat_00021.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jboss-server-migration-wildfly10.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                "product": {
                  "name": "eap7-jboss-server-migration-wildfly10.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                  "product_id": "eap7-jboss-server-migration-wildfly10.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly10.0@1.7.2-20.Final_redhat_00021.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jboss-server-migration-wildfly10.1-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                "product": {
                  "name": "eap7-jboss-server-migration-wildfly10.1-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                  "product_id": "eap7-jboss-server-migration-wildfly10.1-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly10.1@1.7.2-20.Final_redhat_00021.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jboss-server-migration-wildfly11.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                "product": {
                  "name": "eap7-jboss-server-migration-wildfly11.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                  "product_id": "eap7-jboss-server-migration-wildfly11.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly11.0@1.7.2-20.Final_redhat_00021.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jboss-server-migration-wildfly12.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                "product": {
                  "name": "eap7-jboss-server-migration-wildfly12.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                  "product_id": "eap7-jboss-server-migration-wildfly12.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly12.0@1.7.2-20.Final_redhat_00021.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jboss-server-migration-wildfly13.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                "product": {
                  "name": "eap7-jboss-server-migration-wildfly13.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                  "product_id": "eap7-jboss-server-migration-wildfly13.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly13.0-server@1.7.2-20.Final_redhat_00021.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jboss-server-migration-wildfly14.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                "product": {
                  "name": "eap7-jboss-server-migration-wildfly14.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                  "product_id": "eap7-jboss-server-migration-wildfly14.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly14.0-server@1.7.2-20.Final_redhat_00021.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jboss-server-migration-wildfly15.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                "product": {
                  "name": "eap7-jboss-server-migration-wildfly15.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                  "product_id": "eap7-jboss-server-migration-wildfly15.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly15.0-server@1.7.2-20.Final_redhat_00021.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jboss-server-migration-wildfly16.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                "product": {
                  "name": "eap7-jboss-server-migration-wildfly16.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                  "product_id": "eap7-jboss-server-migration-wildfly16.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly16.0-server@1.7.2-20.Final_redhat_00021.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jboss-server-migration-wildfly17.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                "product": {
                  "name": "eap7-jboss-server-migration-wildfly17.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                  "product_id": "eap7-jboss-server-migration-wildfly17.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly17.0-server@1.7.2-20.Final_redhat_00021.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jboss-server-migration-wildfly18.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                "product": {
                  "name": "eap7-jboss-server-migration-wildfly18.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                  "product_id": "eap7-jboss-server-migration-wildfly18.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly18.0-server@1.7.2-20.Final_redhat_00021.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jboss-server-migration-wildfly8.2-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                "product": {
                  "name": "eap7-jboss-server-migration-wildfly8.2-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                  "product_id": "eap7-jboss-server-migration-wildfly8.2-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly8.2@1.7.2-20.Final_redhat_00021.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jboss-server-migration-wildfly9.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                "product": {
                  "name": "eap7-jboss-server-migration-wildfly9.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                  "product_id": "eap7-jboss-server-migration-wildfly9.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly9.0@1.7.2-20.Final_redhat_00021.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jackson-databind-0:2.10.4-6.redhat_00008.1.el7eap.noarch",
                "product": {
                  "name": "eap7-jackson-databind-0:2.10.4-6.redhat_00008.1.el7eap.noarch",
                  "product_id": "eap7-jackson-databind-0:2.10.4-6.redhat_00008.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jackson-databind@2.10.4-6.redhat_00008.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jackson-datatype-jdk8-0:2.10.4-3.redhat_00008.1.el7eap.noarch",
                "product": {
                  "name": "eap7-jackson-datatype-jdk8-0:2.10.4-3.redhat_00008.1.el7eap.noarch",
                  "product_id": "eap7-jackson-datatype-jdk8-0:2.10.4-3.redhat_00008.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jackson-datatype-jdk8@2.10.4-3.redhat_00008.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jackson-datatype-jsr310-0:2.10.4-3.redhat_00008.1.el7eap.noarch",
                "product": {
                  "name": "eap7-jackson-datatype-jsr310-0:2.10.4-3.redhat_00008.1.el7eap.noarch",
                  "product_id": "eap7-jackson-datatype-jsr310-0:2.10.4-3.redhat_00008.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jackson-datatype-jsr310@2.10.4-3.redhat_00008.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jackson-modules-java8-0:2.10.4-3.redhat_00008.1.el7eap.noarch",
                "product": {
                  "name": "eap7-jackson-modules-java8-0:2.10.4-3.redhat_00008.1.el7eap.noarch",
                  "product_id": "eap7-jackson-modules-java8-0:2.10.4-3.redhat_00008.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jackson-modules-java8@2.10.4-3.redhat_00008.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jackson-core-0:2.10.4-4.redhat_00008.1.el7eap.noarch",
                "product": {
                  "name": "eap7-jackson-core-0:2.10.4-4.redhat_00008.1.el7eap.noarch",
                  "product_id": "eap7-jackson-core-0:2.10.4-4.redhat_00008.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jackson-core@2.10.4-4.redhat_00008.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-undertow-0:2.0.41-6.SP7_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-undertow-0:2.0.41-6.SP7_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-undertow-0:2.0.41-6.SP7_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-undertow@2.0.41-6.SP7_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-wildfly-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
                "product": {
                  "name": "eap7-wildfly-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
                  "product_id": "eap7-wildfly-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly@7.3.16-3.GA_redhat_00003.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-wildfly-java-jdk11-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
                "product": {
                  "name": "eap7-wildfly-java-jdk11-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
                  "product_id": "eap7-wildfly-java-jdk11-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly-java-jdk11@7.3.16-3.GA_redhat_00003.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-wildfly-java-jdk8-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
                "product": {
                  "name": "eap7-wildfly-java-jdk8-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
                  "product_id": "eap7-wildfly-java-jdk8-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly-java-jdk8@7.3.16-3.GA_redhat_00003.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-wildfly-javadocs-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
                "product": {
                  "name": "eap7-wildfly-javadocs-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
                  "product_id": "eap7-wildfly-javadocs-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly-javadocs@7.3.16-3.GA_redhat_00003.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-wildfly-modules-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
                "product": {
                  "name": "eap7-wildfly-modules-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
                  "product_id": "eap7-wildfly-modules-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly-modules@7.3.16-3.GA_redhat_00003.1.el7eap?arch=noarch"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jackson-annotations-0:2.10.4-4.redhat_00008.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-4.redhat_00008.1.el7eap.noarch"
        },
        "product_reference": "eap7-jackson-annotations-0:2.10.4-4.redhat_00008.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jackson-annotations-0:2.10.4-4.redhat_00008.1.el7eap.src as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-4.redhat_00008.1.el7eap.src"
        },
        "product_reference": "eap7-jackson-annotations-0:2.10.4-4.redhat_00008.1.el7eap.src",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jackson-core-0:2.10.4-4.redhat_00008.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-4.redhat_00008.1.el7eap.noarch"
        },
        "product_reference": "eap7-jackson-core-0:2.10.4-4.redhat_00008.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jackson-core-0:2.10.4-4.redhat_00008.1.el7eap.src as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-4.redhat_00008.1.el7eap.src"
        },
        "product_reference": "eap7-jackson-core-0:2.10.4-4.redhat_00008.1.el7eap.src",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jackson-databind-0:2.10.4-6.redhat_00008.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-6.redhat_00008.1.el7eap.noarch"
        },
        "product_reference": "eap7-jackson-databind-0:2.10.4-6.redhat_00008.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jackson-databind-0:2.10.4-6.redhat_00008.1.el7eap.src as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-6.redhat_00008.1.el7eap.src"
        },
        "product_reference": "eap7-jackson-databind-0:2.10.4-6.redhat_00008.1.el7eap.src",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jackson-datatype-jdk8-0:2.10.4-3.redhat_00008.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-3.redhat_00008.1.el7eap.noarch"
        },
        "product_reference": "eap7-jackson-datatype-jdk8-0:2.10.4-3.redhat_00008.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jackson-datatype-jsr310-0:2.10.4-3.redhat_00008.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-3.redhat_00008.1.el7eap.noarch"
        },
        "product_reference": "eap7-jackson-datatype-jsr310-0:2.10.4-3.redhat_00008.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jackson-jaxrs-base-0:2.10.4-4.redhat_00008.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-4.redhat_00008.1.el7eap.noarch"
        },
        "product_reference": "eap7-jackson-jaxrs-base-0:2.10.4-4.redhat_00008.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jackson-jaxrs-json-provider-0:2.10.4-4.redhat_00008.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-4.redhat_00008.1.el7eap.noarch"
        },
        "product_reference": "eap7-jackson-jaxrs-json-provider-0:2.10.4-4.redhat_00008.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jackson-jaxrs-providers-0:2.10.4-4.redhat_00008.1.el7eap.src as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-4.redhat_00008.1.el7eap.src"
        },
        "product_reference": "eap7-jackson-jaxrs-providers-0:2.10.4-4.redhat_00008.1.el7eap.src",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jackson-module-jaxb-annotations-0:2.10.4-6.redhat_00008.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-6.redhat_00008.1.el7eap.noarch"
        },
        "product_reference": "eap7-jackson-module-jaxb-annotations-0:2.10.4-6.redhat_00008.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jackson-modules-base-0:2.10.4-6.redhat_00008.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-6.redhat_00008.1.el7eap.noarch"
        },
        "product_reference": "eap7-jackson-modules-base-0:2.10.4-6.redhat_00008.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jackson-modules-base-0:2.10.4-6.redhat_00008.1.el7eap.src as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-6.redhat_00008.1.el7eap.src"
        },
        "product_reference": "eap7-jackson-modules-base-0:2.10.4-6.redhat_00008.1.el7eap.src",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jackson-modules-java8-0:2.10.4-3.redhat_00008.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-3.redhat_00008.1.el7eap.noarch"
        },
        "product_reference": "eap7-jackson-modules-java8-0:2.10.4-3.redhat_00008.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jackson-modules-java8-0:2.10.4-3.redhat_00008.1.el7eap.src as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-3.redhat_00008.1.el7eap.src"
        },
        "product_reference": "eap7-jackson-modules-java8-0:2.10.4-3.redhat_00008.1.el7eap.src",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jboss-server-migration-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch"
        },
        "product_reference": "eap7-jboss-server-migration-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jboss-server-migration-0:1.7.2-20.Final_redhat_00021.1.el7eap.src as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-0:1.7.2-20.Final_redhat_00021.1.el7eap.src"
        },
        "product_reference": "eap7-jboss-server-migration-0:1.7.2-20.Final_redhat_00021.1.el7eap.src",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jboss-server-migration-cli-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-cli-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch"
        },
        "product_reference": "eap7-jboss-server-migration-cli-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jboss-server-migration-core-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-core-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch"
        },
        "product_reference": "eap7-jboss-server-migration-core-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jboss-server-migration-eap6.4-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap6.4-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch"
        },
        "product_reference": "eap7-jboss-server-migration-eap6.4-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jboss-server-migration-eap6.4-to-eap7.3-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap6.4-to-eap7.3-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch"
        },
        "product_reference": "eap7-jboss-server-migration-eap6.4-to-eap7.3-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jboss-server-migration-eap7.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch"
        },
        "product_reference": "eap7-jboss-server-migration-eap7.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jboss-server-migration-eap7.1-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.1-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch"
        },
        "product_reference": "eap7-jboss-server-migration-eap7.1-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jboss-server-migration-eap7.2-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.2-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch"
        },
        "product_reference": "eap7-jboss-server-migration-eap7.2-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jboss-server-migration-eap7.2-to-eap7.3-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.2-to-eap7.3-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch"
        },
        "product_reference": "eap7-jboss-server-migration-eap7.2-to-eap7.3-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jboss-server-migration-eap7.3-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.3-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch"
        },
        "product_reference": "eap7-jboss-server-migration-eap7.3-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jboss-server-migration-wildfly10.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly10.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch"
        },
        "product_reference": "eap7-jboss-server-migration-wildfly10.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jboss-server-migration-wildfly10.1-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly10.1-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch"
        },
        "product_reference": "eap7-jboss-server-migration-wildfly10.1-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jboss-server-migration-wildfly11.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly11.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch"
        },
        "product_reference": "eap7-jboss-server-migration-wildfly11.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jboss-server-migration-wildfly12.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly12.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch"
        },
        "product_reference": "eap7-jboss-server-migration-wildfly12.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jboss-server-migration-wildfly13.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly13.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch"
        },
        "product_reference": "eap7-jboss-server-migration-wildfly13.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jboss-server-migration-wildfly14.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly14.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch"
        },
        "product_reference": "eap7-jboss-server-migration-wildfly14.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jboss-server-migration-wildfly15.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly15.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch"
        },
        "product_reference": "eap7-jboss-server-migration-wildfly15.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jboss-server-migration-wildfly16.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly16.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch"
        },
        "product_reference": "eap7-jboss-server-migration-wildfly16.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jboss-server-migration-wildfly17.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly17.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch"
        },
        "product_reference": "eap7-jboss-server-migration-wildfly17.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jboss-server-migration-wildfly18.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly18.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch"
        },
        "product_reference": "eap7-jboss-server-migration-wildfly18.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jboss-server-migration-wildfly8.2-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly8.2-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch"
        },
        "product_reference": "eap7-jboss-server-migration-wildfly8.2-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jboss-server-migration-wildfly9.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly9.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch"
        },
        "product_reference": "eap7-jboss-server-migration-wildfly9.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-0:4.1.63-6.Final_redhat_00004.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-6.Final_redhat_00004.1.el7eap.noarch"
        },
        "product_reference": "eap7-netty-0:4.1.63-6.Final_redhat_00004.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-0:4.1.63-6.Final_redhat_00004.1.el7eap.src as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-6.Final_redhat_00004.1.el7eap.src"
        },
        "product_reference": "eap7-netty-0:4.1.63-6.Final_redhat_00004.1.el7eap.src",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-all-0:4.1.63-6.Final_redhat_00004.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-6.Final_redhat_00004.1.el7eap.noarch"
        },
        "product_reference": "eap7-netty-all-0:4.1.63-6.Final_redhat_00004.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-undertow-0:2.0.41-6.SP7_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-undertow-0:2.0.41-6.SP7_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-undertow-0:2.0.41-6.SP7_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-undertow-0:2.0.41-6.SP7_redhat_00001.1.el7eap.src as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-undertow-0:2.0.41-6.SP7_redhat_00001.1.el7eap.src"
        },
        "product_reference": "eap7-undertow-0:2.0.41-6.SP7_redhat_00001.1.el7eap.src",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch"
        },
        "product_reference": "eap7-wildfly-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-0:7.3.16-3.GA_redhat_00003.1.el7eap.src as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.16-3.GA_redhat_00003.1.el7eap.src"
        },
        "product_reference": "eap7-wildfly-0:7.3.16-3.GA_redhat_00003.1.el7eap.src",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-java-jdk11-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch"
        },
        "product_reference": "eap7-wildfly-java-jdk11-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-java-jdk8-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch"
        },
        "product_reference": "eap7-wildfly-java-jdk8-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-javadocs-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch"
        },
        "product_reference": "eap7-wildfly-javadocs-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-modules-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch"
        },
        "product_reference": "eap7-wildfly-modules-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.3-EUS"
      }
    ]
  },
  "vulnerabilities": [
    {
      "acknowledgments": [
        {
          "names": [
            "BfC"
          ]
        }
      ],
      "cve": "CVE-2024-7885",
      "cwe": {
        "id": "CWE-362",
        "name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
      },
      "discovery_date": "2024-08-16T09:00:41.686000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2305290"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability was found in Undertow where the ProxyProtocolReadListener reuses the same StringBuilder instance across multiple requests. This issue occurs when the parseProxyProtocolV1 method processes multiple requests on the same HTTP connection. As a result, different requests may share the same StringBuilder instance, potentially leading to information leakage between requests or responses. In some cases, a value from a previous request or response may be erroneously reused, which could lead to unintended data exposure. This issue primarily results in errors and connection termination but creates a risk of data leakage in multi-request environments.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "undertow: Improper State Management in Proxy Protocol parsing causes information leakage",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "Red Hat decided to rate this vulnerability as Important because of the potential loss of Availability and no additional privileges being required.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-4.redhat_00008.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-4.redhat_00008.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-4.redhat_00008.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-4.redhat_00008.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-6.redhat_00008.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-6.redhat_00008.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-3.redhat_00008.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-3.redhat_00008.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-4.redhat_00008.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-4.redhat_00008.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-4.redhat_00008.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-6.redhat_00008.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-6.redhat_00008.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-6.redhat_00008.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-3.redhat_00008.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-3.redhat_00008.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-0:1.7.2-20.Final_redhat_00021.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-cli-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-core-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap6.4-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap6.4-to-eap7.3-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.1-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.2-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.2-to-eap7.3-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.3-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly10.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly10.1-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly11.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly12.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly13.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly14.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly15.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly16.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly17.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly18.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly8.2-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly9.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-6.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-6.Final_redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-6.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-undertow-0:2.0.41-6.SP7_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-undertow-0:2.0.41-6.SP7_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.16-3.GA_redhat_00003.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-7885"
        },
        {
          "category": "external",
          "summary": "RHBZ#2305290",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2305290"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-7885",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-7885"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-7885",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-7885"
        }
      ],
      "release_date": "2024-08-07T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-01-19T00:18:54+00:00",
          "details": "Before applying this update, ensure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-4.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-4.redhat_00008.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-4.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-4.redhat_00008.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-6.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-6.redhat_00008.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-3.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-3.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-4.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-4.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-4.redhat_00008.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-6.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-6.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-6.redhat_00008.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-3.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-3.redhat_00008.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-0:1.7.2-20.Final_redhat_00021.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-cli-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-core-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap6.4-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap6.4-to-eap7.3-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.1-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.2-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.2-to-eap7.3-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.3-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly10.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly10.1-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly11.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly12.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly13.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly14.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly15.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly16.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly17.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly18.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly8.2-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly9.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-6.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-6.Final_redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-6.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-undertow-0:2.0.41-6.SP7_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-undertow-0:2.0.41-6.SP7_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.16-3.GA_redhat_00003.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:0743"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-4.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-4.redhat_00008.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-4.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-4.redhat_00008.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-6.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-6.redhat_00008.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-3.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-3.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-4.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-4.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-4.redhat_00008.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-6.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-6.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-6.redhat_00008.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-3.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-3.redhat_00008.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-0:1.7.2-20.Final_redhat_00021.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-cli-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-core-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap6.4-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap6.4-to-eap7.3-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.1-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.2-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.2-to-eap7.3-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.3-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly10.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly10.1-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly11.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly12.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly13.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly14.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly15.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly16.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly17.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly18.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly8.2-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly9.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-6.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-6.Final_redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-6.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-undertow-0:2.0.41-6.SP7_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-undertow-0:2.0.41-6.SP7_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.16-3.GA_redhat_00003.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "undertow: Improper State Management in Proxy Protocol parsing causes information leakage"
    },
    {
      "cve": "CVE-2025-52999",
      "cwe": {
        "id": "CWE-121",
        "name": "Stack-based Buffer Overflow"
      },
      "discovery_date": "2025-06-25T18:00:54.693716+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2374804"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A nested data handling flaw was found in Jackson Core. When parsing particularly deeply nested data structures, a StackoverflowError can occur.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "com.fasterxml.jackson.core/jackson-core: jackson-core Potential StackoverflowError",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-4.redhat_00008.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-4.redhat_00008.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-4.redhat_00008.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-4.redhat_00008.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-6.redhat_00008.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-6.redhat_00008.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-3.redhat_00008.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-3.redhat_00008.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-4.redhat_00008.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-4.redhat_00008.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-4.redhat_00008.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-6.redhat_00008.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-6.redhat_00008.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-6.redhat_00008.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-3.redhat_00008.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-3.redhat_00008.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-0:1.7.2-20.Final_redhat_00021.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-cli-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-core-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap6.4-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap6.4-to-eap7.3-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.1-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.2-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.2-to-eap7.3-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.3-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly10.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly10.1-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly11.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly12.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly13.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly14.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly15.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly16.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly17.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly18.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly8.2-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly9.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-6.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-6.Final_redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-6.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-undertow-0:2.0.41-6.SP7_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-undertow-0:2.0.41-6.SP7_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.16-3.GA_redhat_00003.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-52999"
        },
        {
          "category": "external",
          "summary": "RHBZ#2374804",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2374804"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-52999",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-52999"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-52999",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-52999"
        },
        {
          "category": "external",
          "summary": "https://github.com/FasterXML/jackson-core/pull/943",
          "url": "https://github.com/FasterXML/jackson-core/pull/943"
        },
        {
          "category": "external",
          "summary": "https://github.com/FasterXML/jackson-core/security/advisories/GHSA-h46c-h94j-95f3",
          "url": "https://github.com/FasterXML/jackson-core/security/advisories/GHSA-h46c-h94j-95f3"
        }
      ],
      "release_date": "2025-06-25T17:02:57.428000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-01-19T00:18:54+00:00",
          "details": "Before applying this update, ensure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-4.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-4.redhat_00008.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-4.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-4.redhat_00008.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-6.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-6.redhat_00008.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-3.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-3.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-4.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-4.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-4.redhat_00008.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-6.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-6.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-6.redhat_00008.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-3.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-3.redhat_00008.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-0:1.7.2-20.Final_redhat_00021.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-cli-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-core-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap6.4-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap6.4-to-eap7.3-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.1-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.2-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.2-to-eap7.3-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.3-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly10.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly10.1-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly11.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly12.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly13.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly14.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly15.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly16.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly17.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly18.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly8.2-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly9.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-6.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-6.Final_redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-6.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-undertow-0:2.0.41-6.SP7_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-undertow-0:2.0.41-6.SP7_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.16-3.GA_redhat_00003.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:0743"
        },
        {
          "category": "workaround",
          "details": "To mitigate this vulnerability, the recommendation is to avoid parsing input files from untrusted sources that may have excessively deep nested data structures; anything with a depth over 1000.",
          "product_ids": [
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-4.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-4.redhat_00008.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-4.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-4.redhat_00008.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-6.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-6.redhat_00008.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-3.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-3.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-4.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-4.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-4.redhat_00008.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-6.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-6.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-6.redhat_00008.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-3.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-3.redhat_00008.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-0:1.7.2-20.Final_redhat_00021.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-cli-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-core-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap6.4-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap6.4-to-eap7.3-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.1-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.2-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.2-to-eap7.3-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.3-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly10.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly10.1-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly11.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly12.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly13.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly14.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly15.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly16.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly17.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly18.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly8.2-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly9.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-6.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-6.Final_redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-6.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-undertow-0:2.0.41-6.SP7_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-undertow-0:2.0.41-6.SP7_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.16-3.GA_redhat_00003.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-4.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-4.redhat_00008.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-4.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-4.redhat_00008.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-6.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-6.redhat_00008.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-3.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-3.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-4.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-4.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-4.redhat_00008.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-6.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-6.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-6.redhat_00008.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-3.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-3.redhat_00008.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-0:1.7.2-20.Final_redhat_00021.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-cli-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-core-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap6.4-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap6.4-to-eap7.3-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.1-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.2-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.2-to-eap7.3-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.3-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly10.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly10.1-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly11.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly12.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly13.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly14.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly15.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly16.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly17.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly18.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly8.2-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly9.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-6.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-6.Final_redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-6.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-undertow-0:2.0.41-6.SP7_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-undertow-0:2.0.41-6.SP7_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.16-3.GA_redhat_00003.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "com.fasterxml.jackson.core/jackson-core: jackson-core Potential StackoverflowError"
    },
    {
      "cve": "CVE-2025-55163",
      "cwe": {
        "id": "CWE-770",
        "name": "Allocation of Resources Without Limits or Throttling"
      },
      "discovery_date": "2025-08-13T15:01:55.372237+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2388252"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Netty where malformed client requests can trigger server-side stream resets without triggering abuse counters. This issue, referred to as the \"MadeYouReset\" attack, allows malicious clients to induce excessive server workload by repeatedly causing server-side stream aborts. While not a protocol bug, this highlights a common implementation weakness that can be exploited to cause a denial of service (DoS).",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "netty: netty-codec-http2: Netty MadeYouReset HTTP/2 DDoS Vulnerability",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability is rated with an Important severity. It is simple to exploit because it does not require authentication and could result in a denial of service (DoS). While some DoS flaws are classified as Moderate, \u201cMadeYouReset\u201d is Important because of the limited barriers (no specialized tooling or advanced scripting) to exploitation, which directly impacts service availability. The vulnerability arises from an implementation weakness in HTTP/2 stream reset handling \u2014 malformed client requests can trigger server-side resets without incrementing abuse counters, allowing an attacker to bypass built-in request throttling and overhead limits. Since these resets consume CPU and memory resources and can be generated at scale over a single TCP/TLS connection, a remote attacker could exhaust server capacity quickly, impacting all legitimate clients.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-4.redhat_00008.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-4.redhat_00008.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-4.redhat_00008.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-4.redhat_00008.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-6.redhat_00008.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-6.redhat_00008.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-3.redhat_00008.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-3.redhat_00008.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-4.redhat_00008.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-4.redhat_00008.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-4.redhat_00008.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-6.redhat_00008.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-6.redhat_00008.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-6.redhat_00008.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-3.redhat_00008.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-3.redhat_00008.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-0:1.7.2-20.Final_redhat_00021.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-cli-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-core-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap6.4-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap6.4-to-eap7.3-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.1-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.2-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.2-to-eap7.3-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.3-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly10.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly10.1-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly11.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly12.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly13.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly14.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly15.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly16.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly17.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly18.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly8.2-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly9.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-6.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-6.Final_redhat_00004.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-6.Final_redhat_00004.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-undertow-0:2.0.41-6.SP7_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-undertow-0:2.0.41-6.SP7_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.16-3.GA_redhat_00003.1.el7eap.src",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
          "7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-55163"
        },
        {
          "category": "external",
          "summary": "RHBZ#2388252",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2388252"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-55163",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-55163"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-55163",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-55163"
        },
        {
          "category": "external",
          "summary": "https://github.com/netty/netty/security/advisories/GHSA-prj3-ccx8-p6x4",
          "url": "https://github.com/netty/netty/security/advisories/GHSA-prj3-ccx8-p6x4"
        },
        {
          "category": "external",
          "summary": "https://kb.cert.org/vuls/id/767506",
          "url": "https://kb.cert.org/vuls/id/767506"
        }
      ],
      "release_date": "2025-08-13T14:17:36.111000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-01-19T00:18:54+00:00",
          "details": "Before applying this update, ensure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-4.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-4.redhat_00008.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-4.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-4.redhat_00008.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-6.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-6.redhat_00008.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-3.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-3.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-4.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-4.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-4.redhat_00008.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-6.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-6.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-6.redhat_00008.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-3.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-3.redhat_00008.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-0:1.7.2-20.Final_redhat_00021.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-cli-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-core-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap6.4-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap6.4-to-eap7.3-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.1-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.2-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.2-to-eap7.3-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.3-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly10.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly10.1-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly11.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly12.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly13.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly14.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly15.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly16.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly17.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly18.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly8.2-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly9.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-6.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-6.Final_redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-6.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-undertow-0:2.0.41-6.SP7_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-undertow-0:2.0.41-6.SP7_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.16-3.GA_redhat_00003.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:0743"
        },
        {
          "category": "workaround",
          "details": "No mitigation is currently available that meets Red Hat Product Security\u2019s standards for usability, deployment, applicability, or stability.",
          "product_ids": [
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-4.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-4.redhat_00008.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-4.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-4.redhat_00008.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-6.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-6.redhat_00008.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-3.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-3.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-4.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-4.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-4.redhat_00008.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-6.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-6.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-6.redhat_00008.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-3.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-3.redhat_00008.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-0:1.7.2-20.Final_redhat_00021.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-cli-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-core-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap6.4-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap6.4-to-eap7.3-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.1-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.2-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.2-to-eap7.3-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.3-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly10.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly10.1-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly11.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly12.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly13.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly14.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly15.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly16.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly17.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly18.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly8.2-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly9.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-6.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-6.Final_redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-6.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-undertow-0:2.0.41-6.SP7_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-undertow-0:2.0.41-6.SP7_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.16-3.GA_redhat_00003.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-4.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-annotations-0:2.10.4-4.redhat_00008.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-4.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-core-0:2.10.4-4.redhat_00008.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-6.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-databind-0:2.10.4-6.redhat_00008.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jdk8-0:2.10.4-3.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-datatype-jsr310-0:2.10.4-3.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-base-0:2.10.4-4.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-json-provider-0:2.10.4-4.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-jaxrs-providers-0:2.10.4-4.redhat_00008.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-module-jaxb-annotations-0:2.10.4-6.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-6.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-base-0:2.10.4-6.redhat_00008.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-3.redhat_00008.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jackson-modules-java8-0:2.10.4-3.redhat_00008.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-0:1.7.2-20.Final_redhat_00021.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-cli-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-core-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap6.4-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap6.4-to-eap7.3-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.1-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.2-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.2-to-eap7.3-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-eap7.3-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly10.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly10.1-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly11.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly12.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly13.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly14.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly15.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly16.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly17.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly18.0-server-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly8.2-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-jboss-server-migration-wildfly9.0-0:1.7.2-20.Final_redhat_00021.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-6.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-netty-0:4.1.63-6.Final_redhat_00004.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-netty-all-0:4.1.63-6.Final_redhat_00004.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-undertow-0:2.0.41-6.SP7_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-undertow-0:2.0.41-6.SP7_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-0:7.3.16-3.GA_redhat_00003.1.el7eap.src",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk11-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-java-jdk8-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-javadocs-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch",
            "7Server-JBEAP-7.3-EUS:eap7-wildfly-modules-0:7.3.16-3.GA_redhat_00003.1.el7eap.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "netty: netty-codec-http2: Netty MadeYouReset HTTP/2 DDoS Vulnerability"
    }
  ]
}

RHSA-2026:4915

Vulnerability from csaf_redhat - Published: 2026-03-18 13:17 - Updated: 2026-06-02 15:22

Summary

Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4.24 security update

Severity

Important

Notes

Topic: A security update is now available for Red Hat JBoss Enterprise Application Platform 7.4 for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Details: Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime. This release of Red Hat JBoss Enterprise Application Platform 7.4.24 serves as a replacement for Red Hat JBoss Enterprise Application Platform 7.4.23, and includes bug fixes and enhancements. See the Red Hat JBoss Enterprise Application Platform 7.4.24 Release Notes for information about the most significant bug fixes and enhancements included in this release. Security Fix(es): * jackson-core: jackson-core Potential StackoverflowError (CVE-2025-52999) * undertow-core: Undertow HTTP Server Fails to Reject Malformed Host Headers Leading to Potential Cache Poisoning and SSRF [eap-7.4.z] (CVE-2025-12543) * cxf: CXF JMS Code Execution Vulnerability [eap-7.4.z] (CVE-2025-48913) * netty-codec-http2: Netty MadeYouReset HTTP/2 DDoS Vulnerability (CVE-2025-55163) * org.eclipse.jgit: XXE vulnerability in Eclipse JGit [eap-7.4.z] (CVE-2025-4949) * hibernate-core: Hibernate: Information disclosure and data deletion via second-order SQL injection [eap-7.4.z] (CVE-2026-0603) * com.google.protobuf/protobuf-java: StackOverflow vulnerability in Protocol Buffers (CVE-2024-7254) * undertow: OutOfMemory when parsing form data encoding with application/x-www-form-urlencoded [eap-7.4.z] (CVE-2024-3884) * undertow-core: Undertow MadeYouReset HTTP/2 DDoS Vulnerability (CVE-2025-9784) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2024-3884

A flaw was found in Undertow that can cause remote denial of service attacks. When the server uses the FormEncodedDataDefinition.doParse(StreamSourceChannel) method to parse large form data encoding with application/x-www-form-urlencoded, the method will cause an OutOfMemory issue. This flaw allows unauthorized users to cause a remote denial of service (DoS) attack.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-20 - Improper Input Validation

Affected products

Fixed 8 products

Product	Version	Remediation
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround

Known not affected 96 products

Product	Version	Remediation
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch	—	Workaround

Threats

Impact Moderate

CVE-2024-7254

A flaw was found in Protocol Buffers (protobuf). This issue can allows an attacker to cause a StackOverflow via parsing untrusted Protocol Buffers data containing arbitrarily nested SGROUP tags, leading to unbounded recursion.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-770 - Allocation of Resources Without Limits or Throttling

Affected products

Fixed 9 products

Product	Version	Remediation
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround

Known not affected 95 products

Product	Version	Remediation
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch	—	Workaround

Threats

Impact Important

CVE-2025-4949

A flaw was found in Eclipse JGit. This vulnerability can allow information disclosure, denial of service, and other security issues when parsing XML files.

4.8 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:H

CWE-611 - Improper Restriction of XML External Entity Reference

Affected products

Fixed 8 products

Product	Version	Remediation
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.src	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix

Known not affected 96 products

Product	Identifier	Version	Remediation
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.src		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.src		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el7eap.src		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.src		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.src		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.src		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.src		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.src		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.src		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.src		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.src		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.src		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.src		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.src		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.src		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.src		—
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch		—

Threats

Impact Moderate

CVE-2025-9784

A flaw was found in Undertow where malformed client requests can trigger server-side stream resets without triggering abuse counters. This issue, referred to as the "MadeYouReset" attack, allows malicious clients to induce excessive server workload by repeatedly causing server-side stream aborts. While not a protocol bug, this highlights a common implementation weakness that can be exploited to cause a denial of service (DoS).

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-770 - Allocation of Resources Without Limits or Throttling

Affected products

Fixed 8 products

Product	Version	Remediation
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround

Known not affected 96 products

Product	Version	Remediation
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch	—	Workaround

Threats

Impact Important

CVE-2025-12543

A flaw was found in the Undertow HTTP server core, which is used in WildFly, JBoss EAP, and other Java applications. The Undertow library fails to properly validate the Host header in incoming HTTP requests.As a result, requests containing malformed or malicious Host headers are processed without rejection, enabling attackers to poison caches, perform internal network scans, or hijack user sessions.

9.6 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:L

CWE-20 - Improper Input Validation

Affected products

Fixed 8 products

Product	Version	Remediation
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround

Known not affected 96 products

Product	Version	Remediation
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch	—	Workaround

Threats

Impact Important

CVE-2025-48913

A flaw was found in org.apache.cxf/cxf, where untrusted users can configure JMS to allow the specification of RMI or LDAP URLs, possibly leading to code execution. This vulnerability allows an attacker to provide malicious protocol URLs during JMS configuration.

8.3 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L

CWE-20 - Improper Input Validation

Affected products

Fixed 11 products

Product	Version	Remediation
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround

Known not affected 93 products

Product	Version	Remediation
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch	—	Workaround

Threats

Impact Important

CVE-2025-52999

A nested data handling flaw was found in Jackson Core. When parsing particularly deeply nested data structures, a StackoverflowError can occur.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-121 - Stack-based Buffer Overflow

Affected products

Fixed 6 products

Product	Version	Remediation
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround

Known not affected 98 products

Product	Version	Remediation
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch	—	Workaround

Threats

Impact Important

CVE-2025-55163

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-770 - Allocation of Resources Without Limits or Throttling

Affected products

Fixed 36 products

Product	Version	Remediation
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround

Known not affected 68 products

Product	Version	Remediation
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch	—	Workaround

Threats

Impact Important

CVE-2026-0603

A flaw was found in Hibernate. A remote attacker with low privileges could exploit a second-order SQL injection vulnerability by providing specially crafted, unsanitized non-alphanumeric characters in the ID column when the InlineIdsOrClauseBuilder is used. This could lead to sensitive information disclosure, such as reading system files, and allow for data manipulation or deletion within the application's database, resulting in an application level denial of service.

8.3 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L

CWE-89 - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

Affected products

Fixed 12 products

Product	Version	Remediation
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch	—	Vendor Fix fix Workaround

Known not affected 92 products

Product	Version	Remediation
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.src	—	Workaround
Unresolved product id: 7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch	—	Workaround

Threats

Impact Important

References

63 references

URL	Category
https://access.redhat.com/errata/RHSA-2026:4915	self
https://access.redhat.com/security/updates/classi…	external
https://docs.redhat.com/en/documentation/red_hat_…	external
https://docs.redhat.com/en/documentation/red_hat_…	external
https://bugzilla.redhat.com/show_bug.cgi?id=2275287	external
https://bugzilla.redhat.com/show_bug.cgi?id=2313454	external
https://bugzilla.redhat.com/show_bug.cgi?id=2367730	external
https://bugzilla.redhat.com/show_bug.cgi?id=2374804	external
https://bugzilla.redhat.com/show_bug.cgi?id=2387221	external
https://bugzilla.redhat.com/show_bug.cgi?id=2388252	external
https://bugzilla.redhat.com/show_bug.cgi?id=2392306	external
https://bugzilla.redhat.com/show_bug.cgi?id=2408784	external
https://bugzilla.redhat.com/show_bug.cgi?id=2427147	external
https://issues.redhat.com/browse/JBEAP-30074	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2024-3884	self
https://bugzilla.redhat.com/show_bug.cgi?id=2275287	external
https://www.cve.org/CVERecord?id=CVE-2024-3884	external
https://nvd.nist.gov/vuln/detail/CVE-2024-3884	external
https://access.redhat.com/security/cve/CVE-2024-7254	self
https://bugzilla.redhat.com/show_bug.cgi?id=2313454	external
https://www.cve.org/CVERecord?id=CVE-2024-7254	external
https://nvd.nist.gov/vuln/detail/CVE-2024-7254	external
https://github.com/protocolbuffers/protobuf/commi…	external
https://access.redhat.com/security/cve/CVE-2025-4949	self
https://bugzilla.redhat.com/show_bug.cgi?id=2367730	external
https://www.cve.org/CVERecord?id=CVE-2025-4949	external
https://nvd.nist.gov/vuln/detail/CVE-2025-4949	external
https://gitlab.eclipse.org/security/cve-assigneme…	external
https://gitlab.eclipse.org/security/vulnerability…	external
https://projects.eclipse.org/projects/technology.…	external
https://access.redhat.com/security/cve/CVE-2025-9784	self
https://bugzilla.redhat.com/show_bug.cgi?id=2392306	external
https://www.cve.org/CVERecord?id=CVE-2025-9784	external
https://nvd.nist.gov/vuln/detail/CVE-2025-9784	external
https://github.com/undertow-io/undertow/pull/1778	external
https://github.com/undertow-io/undertow/releases/…	external
https://issues.redhat.com/browse/UNDERTOW-2598	external
https://kb.cert.org/vuls/id/767506	external
https://access.redhat.com/security/cve/CVE-2025-12543	self
https://bugzilla.redhat.com/show_bug.cgi?id=2408784	external
https://www.cve.org/CVERecord?id=CVE-2025-12543	external
https://nvd.nist.gov/vuln/detail/CVE-2025-12543	external
https://access.redhat.com/security/cve/CVE-2025-48913	self
https://bugzilla.redhat.com/show_bug.cgi?id=2387221	external
https://www.cve.org/CVERecord?id=CVE-2025-48913	external
https://nvd.nist.gov/vuln/detail/CVE-2025-48913	external
https://lists.apache.org/thread/f1nv488ztc0js4g5m…	external
https://access.redhat.com/security/cve/CVE-2025-52999	self
https://bugzilla.redhat.com/show_bug.cgi?id=2374804	external
https://www.cve.org/CVERecord?id=CVE-2025-52999	external
https://nvd.nist.gov/vuln/detail/CVE-2025-52999	external
https://github.com/FasterXML/jackson-core/pull/943	external
https://github.com/FasterXML/jackson-core/securit…	external
https://access.redhat.com/security/cve/CVE-2025-55163	self
https://bugzilla.redhat.com/show_bug.cgi?id=2388252	external
https://www.cve.org/CVERecord?id=CVE-2025-55163	external
https://nvd.nist.gov/vuln/detail/CVE-2025-55163	external
https://github.com/netty/netty/security/advisorie…	external
https://access.redhat.com/security/cve/CVE-2026-0603	self
https://bugzilla.redhat.com/show_bug.cgi?id=2427147	external
https://www.cve.org/CVERecord?id=CVE-2026-0603	external
https://nvd.nist.gov/vuln/detail/CVE-2026-0603	external

Acknowledgments

Ahmet Artuç

YouGina Christiaan Swiers

HeroDevs Tommy Williams

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "A security update is now available for Red Hat JBoss Enterprise Application Platform 7.4 for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime. This release of Red Hat JBoss Enterprise Application Platform 7.4.24 serves as a replacement for Red Hat JBoss Enterprise Application Platform 7.4.23, and includes bug fixes and enhancements. See the Red Hat JBoss Enterprise Application Platform 7.4.24 Release Notes for information about the most significant bug fixes and enhancements included in this release.\n\nSecurity Fix(es):\n\n* jackson-core: jackson-core Potential StackoverflowError (CVE-2025-52999)\n\n* undertow-core: Undertow HTTP Server Fails to Reject Malformed Host Headers Leading to Potential Cache Poisoning and SSRF [eap-7.4.z] (CVE-2025-12543)\n\n* cxf: CXF JMS Code Execution Vulnerability [eap-7.4.z] (CVE-2025-48913)\n\n* netty-codec-http2: Netty MadeYouReset HTTP/2 DDoS Vulnerability (CVE-2025-55163)\n\n* org.eclipse.jgit: XXE vulnerability in Eclipse JGit [eap-7.4.z] (CVE-2025-4949)\n\n* hibernate-core: Hibernate: Information disclosure and data deletion via second-order SQL injection [eap-7.4.z] (CVE-2026-0603)\n\n* com.google.protobuf/protobuf-java: StackOverflow vulnerability in Protocol Buffers (CVE-2024-7254)\n\n* undertow: OutOfMemory when parsing form data encoding with application/x-www-form-urlencoded [eap-7.4.z] (CVE-2024-3884)\n\n* undertow-core: Undertow MadeYouReset HTTP/2 DDoS Vulnerability (CVE-2025-9784)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2026:4915",
        "url": "https://access.redhat.com/errata/RHSA-2026:4915"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "https://docs.redhat.com/en/documentation/red_hat_jboss_enterprise_application_platform/7.4",
        "url": "https://docs.redhat.com/en/documentation/red_hat_jboss_enterprise_application_platform/7.4"
      },
      {
        "category": "external",
        "summary": "https://docs.redhat.com/en/documentation/red_hat_jboss_enterprise_application_platform/7.4/html-single/installation_guide/index",
        "url": "https://docs.redhat.com/en/documentation/red_hat_jboss_enterprise_application_platform/7.4/html-single/installation_guide/index"
      },
      {
        "category": "external",
        "summary": "2275287",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2275287"
      },
      {
        "category": "external",
        "summary": "2313454",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2313454"
      },
      {
        "category": "external",
        "summary": "2367730",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2367730"
      },
      {
        "category": "external",
        "summary": "2374804",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2374804"
      },
      {
        "category": "external",
        "summary": "2387221",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2387221"
      },
      {
        "category": "external",
        "summary": "2388252",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2388252"
      },
      {
        "category": "external",
        "summary": "2392306",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2392306"
      },
      {
        "category": "external",
        "summary": "2408784",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2408784"
      },
      {
        "category": "external",
        "summary": "2427147",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2427147"
      },
      {
        "category": "external",
        "summary": "JBEAP-30074",
        "url": "https://issues.redhat.com/browse/JBEAP-30074"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_4915.json"
      }
    ],
    "title": "Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4.24 security update",
    "tracking": {
      "current_release_date": "2026-06-02T15:22:36+00:00",
      "generator": {
        "date": "2026-06-02T15:22:36+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.8.1"
        }
      },
      "id": "RHSA-2026:4915",
      "initial_release_date": "2026-03-18T13:17:52+00:00",
      "revision_history": [
        {
          "date": "2026-03-18T13:17:52+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2026-03-18T13:17:52+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-06-02T15:22:36+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
                "product": {
                  "name": "Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
                  "product_id": "7Server-JBEAP-7.4-ELS",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform_els:7.4::el7"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat JBoss Enterprise Application Platform"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.src",
                "product": {
                  "name": "eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.src",
                  "product_id": "eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-glassfish-jsf@2.3.14-10.SP10_redhat_00001.1.el7eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.src",
                "product": {
                  "name": "eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.src",
                  "product_id": "eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jbossws-cxf@5.4.17-1.Final_redhat_00001.1.el7eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.src",
                "product": {
                  "name": "eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.src",
                  "product_id": "eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-hibernate-validator@6.0.23-4.SP2_redhat_00001.1.el7eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.src",
                "product": {
                  "name": "eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.src",
                  "product_id": "eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly-elytron@1.15.27-1.Final_redhat_00002.1.el7eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.src",
                "product": {
                  "name": "eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.src",
                  "product_id": "eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-hal-console@3.3.27-2.Final_redhat_00001.1.el7eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.src",
                "product": {
                  "name": "eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.src",
                  "product_id": "eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-apache-cxf@3.5.11-1.SP1_redhat_00001.1.el7eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el7eap.src",
                "product": {
                  "name": "eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el7eap.src",
                  "product_id": "eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el7eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-elytron-web@1.9.6-2.Final_redhat_00001.1.el7eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.src",
                "product": {
                  "name": "eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.src",
                  "product_id": "eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-ironjacamar@1.5.24-1.Final_redhat_00001.1.el7eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.src",
                "product": {
                  "name": "eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.src",
                  "product_id": "eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-apache-commons-beanutils@1.11.0-2.redhat_00001.1.el7eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.src",
                "product": {
                  "name": "eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.src",
                  "product_id": "eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-hibernate@5.3.38-1.Final_redhat_00001.1.el7eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
                "product": {
                  "name": "eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
                  "product_id": "eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty@4.1.124-1.Final_redhat_00001.1.el7eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.src",
                "product": {
                  "name": "eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.src",
                  "product_id": "eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-undertow@2.2.39-1.Final_redhat_00001.1.el7eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.src",
                "product": {
                  "name": "eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.src",
                  "product_id": "eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jboss-marshalling@2.0.16-1.Final_redhat_00001.1.el7eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.src",
                "product": {
                  "name": "eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.src",
                  "product_id": "eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jboss-server-migration@1.10.0-43.Final_redhat_00043.1.el7eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.src",
                "product": {
                  "name": "eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.src",
                  "product_id": "eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy@3.15.11-1.Final_redhat_00001.1.el7eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.src",
                "product": {
                  "name": "eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.src",
                  "product_id": "eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-eclipse-jgit@5.13.5.202508271544-2.r_redhat_00001.1.el7eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.src",
                "product": {
                  "name": "eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.src",
                  "product_id": "eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly@7.4.24-4.GA_redhat_00002.1.el7eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
                "product": {
                  "name": "eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
                  "product_id": "eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-transport-native-epoll@4.1.124-1.Final_redhat_00001.1.el7eap?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-glassfish-jsf@2.3.14-10.SP10_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jbossws-cxf@5.4.17-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-hibernate-validator@6.0.23-4.SP2_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-hibernate-validator-cdi@6.0.23-4.SP2_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch",
                "product": {
                  "name": "eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch",
                  "product_id": "eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly-elytron@1.15.27-1.Final_redhat_00002.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch",
                "product": {
                  "name": "eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch",
                  "product_id": "eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly-elytron-tool@1.15.27-1.Final_redhat_00002.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-hal-console@3.3.27-2.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-apache-cxf@3.5.11-1.SP1_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-apache-cxf-rt@3.5.11-1.SP1_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-apache-cxf-services@3.5.11-1.SP1_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-apache-cxf-tools@3.5.11-1.SP1_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-undertow-server@1.9.6-2.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-ironjacamar@1.5.24-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-ironjacamar-common-api@1.5.24-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-ironjacamar-common-impl@1.5.24-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-ironjacamar-common-spi@1.5.24-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-ironjacamar-core-api@1.5.24-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-ironjacamar-core-impl@1.5.24-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-ironjacamar-deployers-common@1.5.24-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-ironjacamar-jdbc@1.5.24-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-ironjacamar-validator@1.5.24-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-apache-commons-beanutils@1.11.0-2.redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-hibernate@5.3.38-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-hibernate-core@5.3.38-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-hibernate-entitymanager@5.3.38-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-hibernate-envers@5.3.38-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-hibernate-java8@5.3.38-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty@4.1.124-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-all@4.1.124-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-buffer@4.1.124-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec@4.1.124-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-dns@4.1.124-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-haproxy@4.1.124-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-http@4.1.124-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-http2@4.1.124-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-memcache@4.1.124-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-mqtt@4.1.124-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-redis@4.1.124-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-smtp@4.1.124-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-socks@4.1.124-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-stomp@4.1.124-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-xml@4.1.124-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-common@4.1.124-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-handler@4.1.124-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-handler-proxy@4.1.124-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-resolver@4.1.124-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-resolver-dns@4.1.124-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-resolver-dns-classes-macos@4.1.124-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-transport@4.1.124-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-transport-classes-epoll@4.1.124-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-transport-classes-kqueue@4.1.124-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-transport-native-unix-common@4.1.124-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-transport-sctp@4.1.124-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-undertow@2.2.39-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jboss-marshalling@2.0.16-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jboss-marshalling-river@2.0.16-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
                "product": {
                  "name": "eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
                  "product_id": "eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jboss-server-migration@1.10.0-43.Final_redhat_00043.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
                "product": {
                  "name": "eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
                  "product_id": "eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jboss-server-migration-cli@1.10.0-43.Final_redhat_00043.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
                "product": {
                  "name": "eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
                  "product_id": "eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jboss-server-migration-core@1.10.0-43.Final_redhat_00043.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy@3.15.11-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-atom-provider@3.15.11-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-cdi@3.15.11-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-client@3.15.11-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-crypto@3.15.11-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-jackson-provider@3.15.11-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-jackson2-provider@3.15.11-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-jaxb-provider@3.15.11-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-jaxrs@3.15.11-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-jettison-provider@3.15.11-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-jose-jwt@3.15.11-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-jsapi@3.15.11-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-json-binding-provider@3.15.11-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-json-p-provider@3.15.11-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-multipart-provider@3.15.11-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-rxjava2@3.15.11-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-spring@3.15.11-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-validator-provider-11@3.15.11-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-yaml-provider@3.15.11-1.Final_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.noarch",
                "product": {
                  "name": "eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.noarch",
                  "product_id": "eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-eclipse-jgit@5.13.5.202508271544-2.r_redhat_00001.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
                "product": {
                  "name": "eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
                  "product_id": "eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly@7.4.24-4.GA_redhat_00002.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
                "product": {
                  "name": "eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
                  "product_id": "eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly-java-jdk11@7.4.24-4.GA_redhat_00002.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
                "product": {
                  "name": "eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
                  "product_id": "eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly-java-jdk8@7.4.24-4.GA_redhat_00002.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
                "product": {
                  "name": "eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
                  "product_id": "eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly-javadocs@7.4.24-4.GA_redhat_00002.1.el7eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
                "product": {
                  "name": "eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
                  "product_id": "eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly-modules@7.4.24-4.GA_redhat_00002.1.el7eap?arch=noarch"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
                "product": {
                  "name": "eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
                  "product_id": "eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-transport-native-epoll@4.1.124-1.Final_redhat_00001.1.el7eap?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
                "product": {
                  "name": "eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
                  "product_id": "eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-transport-native-epoll-debuginfo@4.1.124-1.Final_redhat_00001.1.el7eap?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.src as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.src"
        },
        "product_reference": "eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.src",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.src as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.src"
        },
        "product_reference": "eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.src",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.src as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.src"
        },
        "product_reference": "eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.src",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el7eap.src as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el7eap.src"
        },
        "product_reference": "eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el7eap.src",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.src as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.src"
        },
        "product_reference": "eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.src",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.src as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.src"
        },
        "product_reference": "eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.src",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.src as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.src"
        },
        "product_reference": "eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.src",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.src as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.src"
        },
        "product_reference": "eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.src",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.src as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.src"
        },
        "product_reference": "eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.src",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.src as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.src"
        },
        "product_reference": "eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.src",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch"
        },
        "product_reference": "eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.src as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.src"
        },
        "product_reference": "eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.src",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch"
        },
        "product_reference": "eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch"
        },
        "product_reference": "eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.src as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.src"
        },
        "product_reference": "eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.src",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.src as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.src"
        },
        "product_reference": "eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.src as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.src"
        },
        "product_reference": "eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64 as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64"
        },
        "product_reference": "eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64 as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64"
        },
        "product_reference": "eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.src as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.src"
        },
        "product_reference": "eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.src",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.src as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.src"
        },
        "product_reference": "eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.src",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el7eap.noarch"
        },
        "product_reference": "eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch"
        },
        "product_reference": "eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.src as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.src"
        },
        "product_reference": "eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.src",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch"
        },
        "product_reference": "eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.src as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.src"
        },
        "product_reference": "eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.src",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch"
        },
        "product_reference": "eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch"
        },
        "product_reference": "eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch"
        },
        "product_reference": "eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch"
        },
        "product_reference": "eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 7 Server",
          "product_id": "7Server-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch"
        },
        "product_reference": "eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
        "relates_to_product_reference": "7Server-JBEAP-7.4-ELS"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2024-3884",
      "cwe": {
        "id": "CWE-20",
        "name": "Improper Input Validation"
      },
      "discovery_date": "2024-04-16T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2275287"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Undertow that can cause remote denial of service attacks. When the server uses the FormEncodedDataDefinition.doParse(StreamSourceChannel) method to parse large form data encoding with application/x-www-form-urlencoded, the method will cause an OutOfMemory issue. This flaw allows unauthorized users to cause a remote denial of service (DoS) attack.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "undertow: OutOfMemory when parsing form data encoding with application/x-www-form-urlencoded",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "Red Hat rates this as a Moderate impact since this requires the use of a specific form method by the server that must be externally available and the input is not sanitized by the given servlet or class implementing its use.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch"
        ],
        "known_not_affected": [
          "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-3884"
        },
        {
          "category": "external",
          "summary": "RHBZ#2275287",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2275287"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-3884",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-3884"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-3884",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-3884"
        }
      ],
      "release_date": "2025-12-03T16:50:50+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-03-18T13:17:52+00:00",
          "details": "Before applying the update, make sure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:4915"
        },
        {
          "category": "workaround",
          "details": "It is possible to mitigate the vulnerability by performing an upper-level verification to ensure the content size sent server side is within the allowed parameters.",
          "product_ids": [
            "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "undertow: OutOfMemory when parsing form data encoding with application/x-www-form-urlencoded"
    },
    {
      "cve": "CVE-2024-7254",
      "cwe": {
        "id": "CWE-770",
        "name": "Allocation of Resources Without Limits or Throttling"
      },
      "discovery_date": "2024-09-19T01:20:29.981665+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2313454"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Protocol Buffers (protobuf). This issue can allows an attacker to cause a StackOverflow via parsing untrusted Protocol Buffers data containing arbitrarily nested SGROUP tags, leading to unbounded recursion.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "protobuf: StackOverflow vulnerability in Protocol Buffers",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue represents a significant severity risk because unbounded recursion in Protocol Buffers parsing can be exploited to trigger stack overflows, leading to Denial of Service (DoS). When parsers, such as `DiscardUnknownFieldsParser` or the Java Protobuf Lite parser, encounter arbitrarily nested groups or deeply recursive map fields, the lack of recursion depth limits can result in uncontrolled stack growth. Attackers can craft malicious protobuf messages that deliberately exceed the stack\u0027s capacity, causing the application to crash or become unresponsive.\n\nThe protobuf package as shipped in RHEL does not include the affected java or kotlin bindings, therefore RHEL is Not Affected.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch"
        ],
        "known_not_affected": [
          "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-7254"
        },
        {
          "category": "external",
          "summary": "RHBZ#2313454",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2313454"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-7254",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-7254"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-7254",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-7254"
        },
        {
          "category": "external",
          "summary": "https://github.com/protocolbuffers/protobuf/commit/cc8b3483a5584b3301e3d43d17eb59704857ffaa",
          "url": "https://github.com/protocolbuffers/protobuf/commit/cc8b3483a5584b3301e3d43d17eb59704857ffaa"
        }
      ],
      "release_date": "2024-09-19T01:15:10.963000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-03-18T13:17:52+00:00",
          "details": "Before applying the update, make sure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:4915"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "protobuf: StackOverflow vulnerability in Protocol Buffers"
    },
    {
      "cve": "CVE-2025-4949",
      "cwe": {
        "id": "CWE-611",
        "name": "Improper Restriction of XML External Entity Reference"
      },
      "discovery_date": "2025-05-21T07:00:48.762597+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2367730"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Eclipse JGit. This vulnerability can allow information disclosure, denial of service, and other security issues when parsing XML files.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "org.eclipse.jgit: XXE vulnerability in Eclipse JGit",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability is rated Moderate for Red Hat products. A flaw in Eclipse JGit allows for XML External Entity (XXE) attacks when parsing specially crafted XML files. This can lead to local denial of service in affected Red Hat products that utilize JGit\u0027s ManifestParser or AmazonS3 class for git transport. The current 9.8 rating by NVD assumes a default, server-side exploitation path. However, the vulnerability resides in the experimental AmazonS3 transport class within Eclipse JGit, which is not enabled by default and requires non-standard configuration (Attack Complexity: High). Furthermore, exploitation typically occurs via client-side tools (e.g., repo) requiring active user participation (User Interaction: Required), limiting the primary risk to local Denial of Service rather than remote, unauthenticated compromise (Availability: High).",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch"
        ],
        "known_not_affected": [
          "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-4949"
        },
        {
          "category": "external",
          "summary": "RHBZ#2367730",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2367730"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-4949",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-4949"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-4949",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-4949"
        },
        {
          "category": "external",
          "summary": "https://gitlab.eclipse.org/security/cve-assignement/-/issues/64",
          "url": "https://gitlab.eclipse.org/security/cve-assignement/-/issues/64"
        },
        {
          "category": "external",
          "summary": "https://gitlab.eclipse.org/security/vulnerability-reports/-/issues/281",
          "url": "https://gitlab.eclipse.org/security/vulnerability-reports/-/issues/281"
        },
        {
          "category": "external",
          "summary": "https://projects.eclipse.org/projects/technology.jgit/releases/7.2.1",
          "url": "https://projects.eclipse.org/projects/technology.jgit/releases/7.2.1"
        }
      ],
      "release_date": "2025-05-21T06:47:19.777000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-03-18T13:17:52+00:00",
          "details": "Before applying the update, make sure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:4915"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 4.8,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "org.eclipse.jgit: XXE vulnerability in Eclipse JGit"
    },
    {
      "cve": "CVE-2025-9784",
      "cwe": {
        "id": "CWE-770",
        "name": "Allocation of Resources Without Limits or Throttling"
      },
      "discovery_date": "2025-09-01T06:19:20.938000+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2392306"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Undertow where malformed client requests can trigger server-side stream resets without triggering abuse counters. This issue, referred to as the \"MadeYouReset\" attack, allows malicious clients to induce excessive server workload by repeatedly causing server-side stream aborts. While not a protocol bug, this highlights a common implementation weakness that can be exploited to cause a denial of service (DoS).",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "undertow: Undertow MadeYouReset HTTP/2 DDoS Vulnerability",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability is rated with an Important severity. It is simple to exploit because it does not require authentication and could result in a Denial of Service (DoS). While some DoS flaws are classified as Moderate, \u201cMadeYouReset\u201d is Important because of the limited barriers (no specialized tooling or advanced scripting) to exploitation, which directly impacts service availability. The vulnerability arises from an implementation weakness in HTTP/2 stream reset handling \u2014 malformed client requests can trigger server-side resets without incrementing abuse counters, allowing an attacker to bypass built-in request throttling and overhead limits. Since these resets consume CPU and memory resources and can be generated at scale over a single TCP/TLS connection, a remote attacker could exhaust server capacity quickly, impacting all legitimate clients.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch"
        ],
        "known_not_affected": [
          "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-9784"
        },
        {
          "category": "external",
          "summary": "RHBZ#2392306",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2392306"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-9784",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-9784"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-9784",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-9784"
        },
        {
          "category": "external",
          "summary": "https://github.com/undertow-io/undertow/pull/1778",
          "url": "https://github.com/undertow-io/undertow/pull/1778"
        },
        {
          "category": "external",
          "summary": "https://github.com/undertow-io/undertow/releases/tag/2.2.38.Final",
          "url": "https://github.com/undertow-io/undertow/releases/tag/2.2.38.Final"
        },
        {
          "category": "external",
          "summary": "https://issues.redhat.com/browse/UNDERTOW-2598",
          "url": "https://issues.redhat.com/browse/UNDERTOW-2598"
        },
        {
          "category": "external",
          "summary": "https://kb.cert.org/vuls/id/767506",
          "url": "https://kb.cert.org/vuls/id/767506"
        }
      ],
      "release_date": "2025-09-01T06:21:54.614000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-03-18T13:17:52+00:00",
          "details": "Before applying the update, make sure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:4915"
        },
        {
          "category": "workaround",
          "details": "No mitigation is currently available that meets Red Hat Product Security\u2019s standards for usability, deployment, applicability, or stability.",
          "product_ids": [
            "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "undertow: Undertow MadeYouReset HTTP/2 DDoS Vulnerability"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Ahmet Artu\u00e7"
          ]
        }
      ],
      "cve": "CVE-2025-12543",
      "cwe": {
        "id": "CWE-20",
        "name": "Improper Input Validation"
      },
      "discovery_date": "2025-10-31T06:15:35.424000+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2408784"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the Undertow HTTP server core, which is used in WildFly, JBoss EAP, and other Java applications. The Undertow library fails to properly validate the Host header in incoming HTTP requests.As a result, requests containing malformed or malicious Host headers are processed without rejection, enabling attackers to poison caches, perform internal network scans, or hijack user sessions.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "undertow-core: Undertow HTTP Server Fails to Reject Malformed Host Headers Leading to Potential Cache Poisoning and SSRF",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability has an Important severity because it can be remotely exploited without authentication. However, limited user interaction is required for full impact. It could allow attackers to hijack additional accounts, steal credentials, or gain access to internal systems. The issue stems from improper input validation of HTTP Host headers, leading to serious breaches in confidentiality and integrity.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch"
        ],
        "known_not_affected": [
          "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-12543"
        },
        {
          "category": "external",
          "summary": "RHBZ#2408784",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2408784"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-12543",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-12543"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-12543",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-12543"
        }
      ],
      "release_date": "2026-01-08T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-03-18T13:17:52+00:00",
          "details": "Before applying the update, make sure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:4915"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use, applicability, or stability.",
          "product_ids": [
            "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 9.6,
            "baseSeverity": "CRITICAL",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:L",
            "version": "3.1"
          },
          "products": [
            "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "undertow-core: Undertow HTTP Server Fails to Reject Malformed Host Headers Leading to Potential Cache Poisoning and SSRF"
    },
    {
      "cve": "CVE-2025-48913",
      "cwe": {
        "id": "CWE-20",
        "name": "Improper Input Validation"
      },
      "discovery_date": "2025-08-08T10:00:54.007824+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2387221"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in org.apache.cxf/cxf, where untrusted users can configure JMS to allow the specification of RMI or LDAP URLs, possibly leading to code execution. This vulnerability allows an attacker to provide malicious protocol URLs during JMS configuration.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "org.apache.cxf/cxf: CXF JMS Code Execution Vulnerability",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This flaw should be considered Important because the impact goes beyond a simple denial of service or configuration misuse. By allowing untrusted users to configure JMS with RMI or LDAP URLs, attackers could achieve remote code execution by loading attacker-controlled classes or objects. Although this requires the precondition that the attacker has access to JMS configuration, in many enterprise deployments this may be exposed through integration layers or misconfigured permissions, making the attack surface broader than a purely local or limited-scope scenario.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch"
        ],
        "known_not_affected": [
          "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-48913"
        },
        {
          "category": "external",
          "summary": "RHBZ#2387221",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2387221"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-48913",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-48913"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-48913",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-48913"
        },
        {
          "category": "external",
          "summary": "https://lists.apache.org/thread/f1nv488ztc0js4g5ml2v88mzkzslyh83",
          "url": "https://lists.apache.org/thread/f1nv488ztc0js4g5ml2v88mzkzslyh83"
        }
      ],
      "release_date": "2025-08-08T09:21:22.208000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-03-18T13:17:52+00:00",
          "details": "Before applying the update, make sure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:4915"
        },
        {
          "category": "workaround",
          "details": "To reduce risk, deployments should restrict the allowed protocols in JMS configuration to trusted and expected values only. In particular, disallow the use of rmi:// and ldap:// URLs, which could be abused for remote class loading and code execution.",
          "product_ids": [
            "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 8.3,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L",
            "version": "3.1"
          },
          "products": [
            "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "org.apache.cxf/cxf: CXF JMS Code Execution Vulnerability"
    },
    {
      "cve": "CVE-2025-52999",
      "cwe": {
        "id": "CWE-121",
        "name": "Stack-based Buffer Overflow"
      },
      "discovery_date": "2025-06-25T18:00:54.693716+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2374804"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A nested data handling flaw was found in Jackson Core. When parsing particularly deeply nested data structures, a StackoverflowError can occur.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "com.fasterxml.jackson.core/jackson-core: jackson-core Potential StackoverflowError",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch"
        ],
        "known_not_affected": [
          "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-52999"
        },
        {
          "category": "external",
          "summary": "RHBZ#2374804",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2374804"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-52999",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-52999"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-52999",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-52999"
        },
        {
          "category": "external",
          "summary": "https://github.com/FasterXML/jackson-core/pull/943",
          "url": "https://github.com/FasterXML/jackson-core/pull/943"
        },
        {
          "category": "external",
          "summary": "https://github.com/FasterXML/jackson-core/security/advisories/GHSA-h46c-h94j-95f3",
          "url": "https://github.com/FasterXML/jackson-core/security/advisories/GHSA-h46c-h94j-95f3"
        }
      ],
      "release_date": "2025-06-25T17:02:57.428000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-03-18T13:17:52+00:00",
          "details": "Before applying the update, make sure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:4915"
        },
        {
          "category": "workaround",
          "details": "To mitigate this vulnerability, the recommendation is to avoid parsing input files from untrusted sources that may have excessively deep nested data structures; anything with a depth over 1000.",
          "product_ids": [
            "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "com.fasterxml.jackson.core/jackson-core: jackson-core Potential StackoverflowError"
    },
    {
      "cve": "CVE-2025-55163",
      "cwe": {
        "id": "CWE-770",
        "name": "Allocation of Resources Without Limits or Throttling"
      },
      "discovery_date": "2025-08-13T15:01:55.372237+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2388252"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Netty where malformed client requests can trigger server-side stream resets without triggering abuse counters. This issue, referred to as the \"MadeYouReset\" attack, allows malicious clients to induce excessive server workload by repeatedly causing server-side stream aborts. While not a protocol bug, this highlights a common implementation weakness that can be exploited to cause a denial of service (DoS).",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "netty: netty-codec-http2: Netty MadeYouReset HTTP/2 DDoS Vulnerability",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability is rated with an Important severity. It is simple to exploit because it does not require authentication and could result in a denial of service (DoS). While some DoS flaws are classified as Moderate, \u201cMadeYouReset\u201d is Important because of the limited barriers (no specialized tooling or advanced scripting) to exploitation, which directly impacts service availability. The vulnerability arises from an implementation weakness in HTTP/2 stream reset handling \u2014 malformed client requests can trigger server-side resets without incrementing abuse counters, allowing an attacker to bypass built-in request throttling and overhead limits. Since these resets consume CPU and memory resources and can be generated at scale over a single TCP/TLS connection, a remote attacker could exhaust server capacity quickly, impacting all legitimate clients.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch"
        ],
        "known_not_affected": [
          "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-55163"
        },
        {
          "category": "external",
          "summary": "RHBZ#2388252",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2388252"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-55163",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-55163"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-55163",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-55163"
        },
        {
          "category": "external",
          "summary": "https://github.com/netty/netty/security/advisories/GHSA-prj3-ccx8-p6x4",
          "url": "https://github.com/netty/netty/security/advisories/GHSA-prj3-ccx8-p6x4"
        },
        {
          "category": "external",
          "summary": "https://kb.cert.org/vuls/id/767506",
          "url": "https://kb.cert.org/vuls/id/767506"
        }
      ],
      "release_date": "2025-08-13T14:17:36.111000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-03-18T13:17:52+00:00",
          "details": "Before applying the update, make sure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:4915"
        },
        {
          "category": "workaround",
          "details": "No mitigation is currently available that meets Red Hat Product Security\u2019s standards for usability, deployment, applicability, or stability.",
          "product_ids": [
            "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "netty: netty-codec-http2: Netty MadeYouReset HTTP/2 DDoS Vulnerability"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Christiaan Swiers"
          ],
          "organization": "YouGina"
        },
        {
          "names": [
            "Tommy Williams"
          ],
          "organization": "HeroDevs"
        }
      ],
      "cve": "CVE-2026-0603",
      "cwe": {
        "id": "CWE-89",
        "name": "Improper Neutralization of Special Elements used in an SQL Command (\u0027SQL Injection\u0027)"
      },
      "discovery_date": "2026-01-05T13:12:29.816000+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2427147"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Hibernate. A remote attacker with low privileges could exploit a second-order SQL injection vulnerability by providing specially crafted, unsanitized non-alphanumeric characters in the ID column when the InlineIdsOrClauseBuilder is used. This could lead to sensitive information disclosure, such as reading system files, and allow for data manipulation or deletion within the application\u0027s database, resulting in an application level denial of service.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "org.hibernate/hibernate-core: Hibernate: Information disclosure and data deletion via second-order SQL injection",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability is rated Important for Red Hat products as it allows a remote attacker with low privileges to perform second-order SQL injection in applications using Hibernate\u0027s InlineIdsOrClauseBuilder with unsanitized non-alphanumeric characters in the ID column. This could lead to sensitive information disclosure and data manipulation or deletion.Affected Hibernate ORM versions are 5.2.8 through 5.6.15 (inclusive); earlier versions are not affected.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch"
        ],
        "known_not_affected": [
          "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.src",
          "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-0603"
        },
        {
          "category": "external",
          "summary": "RHBZ#2427147",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2427147"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-0603",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-0603"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-0603",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-0603"
        }
      ],
      "release_date": "2026-01-19T10:10:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-03-18T13:17:52+00:00",
          "details": "Before applying the update, make sure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:4915"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 8.3,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L",
            "version": "3.1"
          },
          "products": [
            "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el7eap.x86_64",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el7eap.src",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch",
            "7Server-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el7eap.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "org.hibernate/hibernate-core: Hibernate: Information disclosure and data deletion via second-order SQL injection"
    }
  ]
}

RHSA-2026:4916

Vulnerability from csaf_redhat - Published: 2026-03-18 13:17 - Updated: 2026-06-02 15:22

Summary

Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4.24 security update

Severity

Important

Notes

Topic: A security update is now available for Red Hat JBoss Enterprise Application Platform 7.4 for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

CVE-2024-3884

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-20 - Improper Input Validation

Affected products

Fixed 9 products

Product	Version	Remediation
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch	—	Vendor Fix fix Workaround

Known not affected 96 products

Product	Version	Remediation
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch	—	Workaround

Threats

Impact Moderate

CVE-2024-7254

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-770 - Allocation of Resources Without Limits or Throttling

Affected products

Fixed 10 products

Product	Version	Remediation
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch	—	Vendor Fix fix Workaround

Known not affected 95 products

Product	Version	Remediation
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch	—	Workaround

Threats

Impact Important

CVE-2025-4949

A flaw was found in Eclipse JGit. This vulnerability can allow information disclosure, denial of service, and other security issues when parsing XML files.

4.8 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:H

CWE-611 - Improper Restriction of XML External Entity Reference

Affected products

Fixed 9 products

Product	Version	Remediation
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.src	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.src	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch	—	Vendor Fix fix

Known not affected 96 products

Product	Identifier	Version	Remediation
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.src		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.src		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el8eap.src		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.src		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.src		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.src		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.src		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.src		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.src		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.src		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.src		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.src		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.src		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.src		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.src		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.src		—
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch		—

Threats

Impact Moderate

CVE-2025-9784

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-770 - Allocation of Resources Without Limits or Throttling

Affected products

Fixed 9 products

Product	Version	Remediation
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch	—	Vendor Fix fix Workaround

Known not affected 96 products

Product	Version	Remediation
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch	—	Workaround

Threats

Impact Important

CVE-2025-12543

9.6 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:L

CWE-20 - Improper Input Validation

Affected products

Fixed 9 products

Product	Version	Remediation
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch	—	Vendor Fix fix Workaround

Known not affected 96 products

Product	Version	Remediation
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch	—	Workaround

Threats

Impact Important

CVE-2025-48913

8.3 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L

CWE-20 - Improper Input Validation

Affected products

Fixed 12 products

Product	Version	Remediation
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch	—	Vendor Fix fix Workaround

Known not affected 93 products

Product	Version	Remediation
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch	—	Workaround

Threats

Impact Important

CVE-2025-52999

A nested data handling flaw was found in Jackson Core. When parsing particularly deeply nested data structures, a StackoverflowError can occur.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-121 - Stack-based Buffer Overflow

Affected products

Fixed 7 products

Product	Version	Remediation
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch	—	Vendor Fix fix Workaround

Known not affected 98 products

Product	Version	Remediation
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch	—	Workaround

Threats

Impact Important

CVE-2025-55163

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-770 - Allocation of Resources Without Limits or Throttling

Affected products

Fixed 37 products

Product	Version	Remediation
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch	—	Vendor Fix fix Workaround

Known not affected 68 products

Product	Version	Remediation
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch	—	Workaround

Threats

Impact Important

CVE-2026-0603

8.3 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L

CWE-89 - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

Affected products

Fixed 13 products

Product	Version	Remediation
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch	—	Vendor Fix fix Workaround

Known not affected 92 products

Product	Version	Remediation
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.src	—	Workaround
Unresolved product id: 8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch	—	Workaround

Threats

Impact Important

References

63 references

URL	Category
https://access.redhat.com/errata/RHSA-2026:4916	self
https://access.redhat.com/security/updates/classi…	external
https://docs.redhat.com/en/documentation/red_hat_…	external
https://docs.redhat.com/en/documentation/red_hat_…	external
https://bugzilla.redhat.com/show_bug.cgi?id=2275287	external
https://bugzilla.redhat.com/show_bug.cgi?id=2313454	external
https://bugzilla.redhat.com/show_bug.cgi?id=2367730	external
https://bugzilla.redhat.com/show_bug.cgi?id=2374804	external
https://bugzilla.redhat.com/show_bug.cgi?id=2387221	external
https://bugzilla.redhat.com/show_bug.cgi?id=2388252	external
https://bugzilla.redhat.com/show_bug.cgi?id=2392306	external
https://bugzilla.redhat.com/show_bug.cgi?id=2408784	external
https://bugzilla.redhat.com/show_bug.cgi?id=2427147	external
https://issues.redhat.com/browse/JBEAP-30075	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2024-3884	self
https://bugzilla.redhat.com/show_bug.cgi?id=2275287	external
https://www.cve.org/CVERecord?id=CVE-2024-3884	external
https://nvd.nist.gov/vuln/detail/CVE-2024-3884	external
https://access.redhat.com/security/cve/CVE-2024-7254	self
https://bugzilla.redhat.com/show_bug.cgi?id=2313454	external
https://www.cve.org/CVERecord?id=CVE-2024-7254	external
https://nvd.nist.gov/vuln/detail/CVE-2024-7254	external
https://github.com/protocolbuffers/protobuf/commi…	external
https://access.redhat.com/security/cve/CVE-2025-4949	self
https://bugzilla.redhat.com/show_bug.cgi?id=2367730	external
https://www.cve.org/CVERecord?id=CVE-2025-4949	external
https://nvd.nist.gov/vuln/detail/CVE-2025-4949	external
https://gitlab.eclipse.org/security/cve-assigneme…	external
https://gitlab.eclipse.org/security/vulnerability…	external
https://projects.eclipse.org/projects/technology.…	external
https://access.redhat.com/security/cve/CVE-2025-9784	self
https://bugzilla.redhat.com/show_bug.cgi?id=2392306	external
https://www.cve.org/CVERecord?id=CVE-2025-9784	external
https://nvd.nist.gov/vuln/detail/CVE-2025-9784	external
https://github.com/undertow-io/undertow/pull/1778	external
https://github.com/undertow-io/undertow/releases/…	external
https://issues.redhat.com/browse/UNDERTOW-2598	external
https://kb.cert.org/vuls/id/767506	external
https://access.redhat.com/security/cve/CVE-2025-12543	self
https://bugzilla.redhat.com/show_bug.cgi?id=2408784	external
https://www.cve.org/CVERecord?id=CVE-2025-12543	external
https://nvd.nist.gov/vuln/detail/CVE-2025-12543	external
https://access.redhat.com/security/cve/CVE-2025-48913	self
https://bugzilla.redhat.com/show_bug.cgi?id=2387221	external
https://www.cve.org/CVERecord?id=CVE-2025-48913	external
https://nvd.nist.gov/vuln/detail/CVE-2025-48913	external
https://lists.apache.org/thread/f1nv488ztc0js4g5m…	external
https://access.redhat.com/security/cve/CVE-2025-52999	self
https://bugzilla.redhat.com/show_bug.cgi?id=2374804	external
https://www.cve.org/CVERecord?id=CVE-2025-52999	external
https://nvd.nist.gov/vuln/detail/CVE-2025-52999	external
https://github.com/FasterXML/jackson-core/pull/943	external
https://github.com/FasterXML/jackson-core/securit…	external
https://access.redhat.com/security/cve/CVE-2025-55163	self
https://bugzilla.redhat.com/show_bug.cgi?id=2388252	external
https://www.cve.org/CVERecord?id=CVE-2025-55163	external
https://nvd.nist.gov/vuln/detail/CVE-2025-55163	external
https://github.com/netty/netty/security/advisorie…	external
https://access.redhat.com/security/cve/CVE-2026-0603	self
https://bugzilla.redhat.com/show_bug.cgi?id=2427147	external
https://www.cve.org/CVERecord?id=CVE-2026-0603	external
https://nvd.nist.gov/vuln/detail/CVE-2026-0603	external

Acknowledgments

Ahmet Artuç

YouGina Christiaan Swiers

HeroDevs Tommy Williams

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "A security update is now available for Red Hat JBoss Enterprise Application Platform 7.4 for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime. This release of Red Hat JBoss Enterprise Application Platform 7.4.24 serves as a replacement for Red Hat JBoss Enterprise Application Platform 7.4.23, and includes bug fixes and enhancements. See the Red Hat JBoss Enterprise Application Platform 7.4.24 Release Notes for information about the most significant bug fixes and enhancements included in this release.\n\nSecurity Fix(es):\n\n* jackson-core: jackson-core Potential StackoverflowError (CVE-2025-52999)\n\n* undertow-core: Undertow HTTP Server Fails to Reject Malformed Host Headers Leading to Potential Cache Poisoning and SSRF [eap-7.4.z] (CVE-2025-12543)\n\n* cxf: CXF JMS Code Execution Vulnerability [eap-7.4.z] (CVE-2025-48913)\n\n* netty-codec-http2: Netty MadeYouReset HTTP/2 DDoS Vulnerability (CVE-2025-55163)\n\n* org.eclipse.jgit: XXE vulnerability in Eclipse JGit [eap-7.4.z] (CVE-2025-4949)\n\n* hibernate-core: Hibernate: Information disclosure and data deletion via second-order SQL injection [eap-7.4.z] (CVE-2026-0603)\n\n* com.google.protobuf/protobuf-java: StackOverflow vulnerability in Protocol Buffers (CVE-2024-7254)\n\n* undertow: OutOfMemory when parsing form data encoding with application/x-www-form-urlencoded [eap-7.4.z] (CVE-2024-3884)\n\n* undertow-core: Undertow MadeYouReset HTTP/2 DDoS Vulnerability (CVE-2025-9784)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2026:4916",
        "url": "https://access.redhat.com/errata/RHSA-2026:4916"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "https://docs.redhat.com/en/documentation/red_hat_jboss_enterprise_application_platform/7.4",
        "url": "https://docs.redhat.com/en/documentation/red_hat_jboss_enterprise_application_platform/7.4"
      },
      {
        "category": "external",
        "summary": "https://docs.redhat.com/en/documentation/red_hat_jboss_enterprise_application_platform/7.4/html-single/installation_guide/index",
        "url": "https://docs.redhat.com/en/documentation/red_hat_jboss_enterprise_application_platform/7.4/html-single/installation_guide/index"
      },
      {
        "category": "external",
        "summary": "2275287",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2275287"
      },
      {
        "category": "external",
        "summary": "2313454",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2313454"
      },
      {
        "category": "external",
        "summary": "2367730",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2367730"
      },
      {
        "category": "external",
        "summary": "2374804",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2374804"
      },
      {
        "category": "external",
        "summary": "2387221",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2387221"
      },
      {
        "category": "external",
        "summary": "2388252",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2388252"
      },
      {
        "category": "external",
        "summary": "2392306",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2392306"
      },
      {
        "category": "external",
        "summary": "2408784",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2408784"
      },
      {
        "category": "external",
        "summary": "2427147",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2427147"
      },
      {
        "category": "external",
        "summary": "JBEAP-30075",
        "url": "https://issues.redhat.com/browse/JBEAP-30075"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_4916.json"
      }
    ],
    "title": "Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4.24 security update",
    "tracking": {
      "current_release_date": "2026-06-02T15:22:38+00:00",
      "generator": {
        "date": "2026-06-02T15:22:38+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.8.1"
        }
      },
      "id": "RHSA-2026:4916",
      "initial_release_date": "2026-03-18T13:17:47+00:00",
      "revision_history": [
        {
          "date": "2026-03-18T13:17:47+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2026-03-18T13:17:47+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-06-02T15:22:38+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat JBoss EAP 7.4 ELS for RHEL 8",
                "product": {
                  "name": "Red Hat JBoss EAP 7.4 ELS for RHEL 8",
                  "product_id": "8Base-JBEAP-7.4-ELS",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform_els:7.4::el8"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat JBoss Enterprise Application Platform"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.src",
                "product": {
                  "name": "eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.src",
                  "product_id": "eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly-elytron@1.15.27-1.Final_redhat_00002.1.el8eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.src",
                "product": {
                  "name": "eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.src",
                  "product_id": "eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jbossws-cxf@5.4.17-1.Final_redhat_00001.1.el8eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.src",
                "product": {
                  "name": "eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.src",
                  "product_id": "eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-hibernate-validator@6.0.23-4.SP2_redhat_00001.1.el8eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.src",
                "product": {
                  "name": "eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.src",
                  "product_id": "eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-glassfish-jsf@2.3.14-10.SP10_redhat_00001.1.el8eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.src",
                "product": {
                  "name": "eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.src",
                  "product_id": "eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-hal-console@3.3.27-2.Final_redhat_00001.1.el8eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.src",
                "product": {
                  "name": "eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.src",
                  "product_id": "eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-apache-cxf@3.5.11-1.SP1_redhat_00001.1.el8eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.src",
                "product": {
                  "name": "eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.src",
                  "product_id": "eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-ironjacamar@1.5.24-1.Final_redhat_00001.1.el8eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el8eap.src",
                "product": {
                  "name": "eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el8eap.src",
                  "product_id": "eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el8eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-elytron-web@1.9.6-2.Final_redhat_00001.1.el8eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.src",
                "product": {
                  "name": "eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.src",
                  "product_id": "eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-apache-commons-beanutils@1.11.0-2.redhat_00001.1.el8eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.src",
                "product": {
                  "name": "eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.src",
                  "product_id": "eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-hibernate@5.3.38-1.Final_redhat_00001.1.el8eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
                "product": {
                  "name": "eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
                  "product_id": "eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty@4.1.124-1.Final_redhat_00001.1.el8eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.src",
                "product": {
                  "name": "eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.src",
                  "product_id": "eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-undertow@2.2.39-1.Final_redhat_00001.1.el8eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.src",
                "product": {
                  "name": "eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.src",
                  "product_id": "eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jboss-marshalling@2.0.16-1.Final_redhat_00001.1.el8eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.src",
                "product": {
                  "name": "eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.src",
                  "product_id": "eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jboss-server-migration@1.10.0-43.Final_redhat_00043.1.el8eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.src",
                "product": {
                  "name": "eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.src",
                  "product_id": "eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy@3.15.11-1.Final_redhat_00001.1.el8eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.src",
                "product": {
                  "name": "eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.src",
                  "product_id": "eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-eclipse-jgit@5.13.5.202508271544-2.r_redhat_00001.1.el8eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.src",
                "product": {
                  "name": "eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.src",
                  "product_id": "eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly@7.4.24-4.GA_redhat_00002.1.el8eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
                "product": {
                  "name": "eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
                  "product_id": "eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-transport-native-epoll@4.1.124-1.Final_redhat_00001.1.el8eap?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch",
                "product": {
                  "name": "eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch",
                  "product_id": "eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly-elytron@1.15.27-1.Final_redhat_00002.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch",
                "product": {
                  "name": "eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch",
                  "product_id": "eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly-elytron-tool@1.15.27-1.Final_redhat_00002.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jbossws-cxf@5.4.17-1.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-hibernate-validator@6.0.23-4.SP2_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-hibernate-validator-cdi@6.0.23-4.SP2_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-glassfish-jsf@2.3.14-10.SP10_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-hal-console@3.3.27-2.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-apache-cxf@3.5.11-1.SP1_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-apache-cxf-rt@3.5.11-1.SP1_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-apache-cxf-services@3.5.11-1.SP1_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-apache-cxf-tools@3.5.11-1.SP1_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-ironjacamar@1.5.24-1.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-ironjacamar-common-api@1.5.24-1.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-ironjacamar-common-impl@1.5.24-1.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-ironjacamar-common-spi@1.5.24-1.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-ironjacamar-core-api@1.5.24-1.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-ironjacamar-core-impl@1.5.24-1.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-ironjacamar-deployers-common@1.5.24-1.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-ironjacamar-jdbc@1.5.24-1.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-ironjacamar-validator@1.5.24-1.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-undertow-server@1.9.6-2.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-apache-commons-beanutils@1.11.0-2.redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-hibernate@5.3.38-1.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-hibernate-core@5.3.38-1.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-hibernate-entitymanager@5.3.38-1.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-hibernate-envers@5.3.38-1.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-hibernate-java8@5.3.38-1.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty@4.1.124-1.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-all@4.1.124-1.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-buffer@4.1.124-1.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec@4.1.124-1.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-dns@4.1.124-1.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-haproxy@4.1.124-1.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-http@4.1.124-1.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-http2@4.1.124-1.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-memcache@4.1.124-1.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-mqtt@4.1.124-1.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-redis@4.1.124-1.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-smtp@4.1.124-1.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-socks@4.1.124-1.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-stomp@4.1.124-1.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-xml@4.1.124-1.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-common@4.1.124-1.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-handler@4.1.124-1.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-handler-proxy@4.1.124-1.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-resolver@4.1.124-1.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-resolver-dns@4.1.124-1.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-resolver-dns-classes-macos@4.1.124-1.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-transport@4.1.124-1.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-transport-classes-epoll@4.1.124-1.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-transport-classes-kqueue@4.1.124-1.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-transport-native-unix-common@4.1.124-1.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-transport-sctp@4.1.124-1.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-undertow@2.2.39-1.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jboss-marshalling@2.0.16-1.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jboss-marshalling-river@2.0.16-1.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
                "product": {
                  "name": "eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
                  "product_id": "eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jboss-server-migration@1.10.0-43.Final_redhat_00043.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
                "product": {
                  "name": "eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
                  "product_id": "eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jboss-server-migration-cli@1.10.0-43.Final_redhat_00043.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
                "product": {
                  "name": "eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
                  "product_id": "eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jboss-server-migration-core@1.10.0-43.Final_redhat_00043.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy@3.15.11-1.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-atom-provider@3.15.11-1.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-cdi@3.15.11-1.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-client@3.15.11-1.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-crypto@3.15.11-1.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-jackson-provider@3.15.11-1.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-jackson2-provider@3.15.11-1.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-jaxb-provider@3.15.11-1.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-jaxrs@3.15.11-1.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-jettison-provider@3.15.11-1.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-jose-jwt@3.15.11-1.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-jsapi@3.15.11-1.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-json-binding-provider@3.15.11-1.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-json-p-provider@3.15.11-1.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-multipart-provider@3.15.11-1.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-rxjava2@3.15.11-1.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-spring@3.15.11-1.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-validator-provider-11@3.15.11-1.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-yaml-provider@3.15.11-1.Final_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.noarch",
                "product": {
                  "name": "eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.noarch",
                  "product_id": "eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-eclipse-jgit@5.13.5.202508271544-2.r_redhat_00001.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
                "product": {
                  "name": "eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
                  "product_id": "eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly@7.4.24-4.GA_redhat_00002.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
                "product": {
                  "name": "eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
                  "product_id": "eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly-java-jdk11@7.4.24-4.GA_redhat_00002.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
                "product": {
                  "name": "eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
                  "product_id": "eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly-java-jdk17@7.4.24-4.GA_redhat_00002.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
                "product": {
                  "name": "eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
                  "product_id": "eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly-java-jdk8@7.4.24-4.GA_redhat_00002.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
                "product": {
                  "name": "eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
                  "product_id": "eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly-javadocs@7.4.24-4.GA_redhat_00002.1.el8eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
                "product": {
                  "name": "eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
                  "product_id": "eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly-modules@7.4.24-4.GA_redhat_00002.1.el8eap?arch=noarch"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
                "product": {
                  "name": "eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
                  "product_id": "eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-transport-native-epoll@4.1.124-1.Final_redhat_00001.1.el8eap?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
                "product": {
                  "name": "eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
                  "product_id": "eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-transport-native-epoll-debuginfo@4.1.124-1.Final_redhat_00001.1.el8eap?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.src as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.src"
        },
        "product_reference": "eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.src",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.src as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.src"
        },
        "product_reference": "eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.src",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.src as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.src"
        },
        "product_reference": "eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.src",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el8eap.src as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el8eap.src"
        },
        "product_reference": "eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el8eap.src",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.src as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.src"
        },
        "product_reference": "eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.src",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.src as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.src"
        },
        "product_reference": "eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.src",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.src as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.src"
        },
        "product_reference": "eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.src",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.src as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.src"
        },
        "product_reference": "eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.src",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.src as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.src"
        },
        "product_reference": "eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.src",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.src as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.src"
        },
        "product_reference": "eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.src",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch"
        },
        "product_reference": "eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.src as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.src"
        },
        "product_reference": "eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.src",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch"
        },
        "product_reference": "eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch"
        },
        "product_reference": "eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.src as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.src"
        },
        "product_reference": "eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.src",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.src as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.src"
        },
        "product_reference": "eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.src as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.src"
        },
        "product_reference": "eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64 as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64"
        },
        "product_reference": "eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64 as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64"
        },
        "product_reference": "eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.src as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.src"
        },
        "product_reference": "eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.src",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.src as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.src"
        },
        "product_reference": "eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.src",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el8eap.noarch"
        },
        "product_reference": "eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch"
        },
        "product_reference": "eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.src as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.src"
        },
        "product_reference": "eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.src",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch"
        },
        "product_reference": "eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.src as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.src"
        },
        "product_reference": "eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.src",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch"
        },
        "product_reference": "eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch"
        },
        "product_reference": "eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch"
        },
        "product_reference": "eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch"
        },
        "product_reference": "eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch"
        },
        "product_reference": "eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 8",
          "product_id": "8Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch"
        },
        "product_reference": "eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
        "relates_to_product_reference": "8Base-JBEAP-7.4-ELS"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2024-3884",
      "cwe": {
        "id": "CWE-20",
        "name": "Improper Input Validation"
      },
      "discovery_date": "2024-04-16T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2275287"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Undertow that can cause remote denial of service attacks. When the server uses the FormEncodedDataDefinition.doParse(StreamSourceChannel) method to parse large form data encoding with application/x-www-form-urlencoded, the method will cause an OutOfMemory issue. This flaw allows unauthorized users to cause a remote denial of service (DoS) attack.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "undertow: OutOfMemory when parsing form data encoding with application/x-www-form-urlencoded",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "Red Hat rates this as a Moderate impact since this requires the use of a specific form method by the server that must be externally available and the input is not sanitized by the given servlet or class implementing its use.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch"
        ],
        "known_not_affected": [
          "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-3884"
        },
        {
          "category": "external",
          "summary": "RHBZ#2275287",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2275287"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-3884",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-3884"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-3884",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-3884"
        }
      ],
      "release_date": "2025-12-03T16:50:50+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-03-18T13:17:47+00:00",
          "details": "Before applying the update, make sure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:4916"
        },
        {
          "category": "workaround",
          "details": "It is possible to mitigate the vulnerability by performing an upper-level verification to ensure the content size sent server side is within the allowed parameters.",
          "product_ids": [
            "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "undertow: OutOfMemory when parsing form data encoding with application/x-www-form-urlencoded"
    },
    {
      "cve": "CVE-2024-7254",
      "cwe": {
        "id": "CWE-770",
        "name": "Allocation of Resources Without Limits or Throttling"
      },
      "discovery_date": "2024-09-19T01:20:29.981665+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2313454"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Protocol Buffers (protobuf). This issue can allows an attacker to cause a StackOverflow via parsing untrusted Protocol Buffers data containing arbitrarily nested SGROUP tags, leading to unbounded recursion.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "protobuf: StackOverflow vulnerability in Protocol Buffers",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue represents a significant severity risk because unbounded recursion in Protocol Buffers parsing can be exploited to trigger stack overflows, leading to Denial of Service (DoS). When parsers, such as `DiscardUnknownFieldsParser` or the Java Protobuf Lite parser, encounter arbitrarily nested groups or deeply recursive map fields, the lack of recursion depth limits can result in uncontrolled stack growth. Attackers can craft malicious protobuf messages that deliberately exceed the stack\u0027s capacity, causing the application to crash or become unresponsive.\n\nThe protobuf package as shipped in RHEL does not include the affected java or kotlin bindings, therefore RHEL is Not Affected.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch"
        ],
        "known_not_affected": [
          "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-7254"
        },
        {
          "category": "external",
          "summary": "RHBZ#2313454",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2313454"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-7254",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-7254"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-7254",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-7254"
        },
        {
          "category": "external",
          "summary": "https://github.com/protocolbuffers/protobuf/commit/cc8b3483a5584b3301e3d43d17eb59704857ffaa",
          "url": "https://github.com/protocolbuffers/protobuf/commit/cc8b3483a5584b3301e3d43d17eb59704857ffaa"
        }
      ],
      "release_date": "2024-09-19T01:15:10.963000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-03-18T13:17:47+00:00",
          "details": "Before applying the update, make sure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:4916"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "protobuf: StackOverflow vulnerability in Protocol Buffers"
    },
    {
      "cve": "CVE-2025-4949",
      "cwe": {
        "id": "CWE-611",
        "name": "Improper Restriction of XML External Entity Reference"
      },
      "discovery_date": "2025-05-21T07:00:48.762597+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2367730"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Eclipse JGit. This vulnerability can allow information disclosure, denial of service, and other security issues when parsing XML files.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "org.eclipse.jgit: XXE vulnerability in Eclipse JGit",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability is rated Moderate for Red Hat products. A flaw in Eclipse JGit allows for XML External Entity (XXE) attacks when parsing specially crafted XML files. This can lead to local denial of service in affected Red Hat products that utilize JGit\u0027s ManifestParser or AmazonS3 class for git transport. The current 9.8 rating by NVD assumes a default, server-side exploitation path. However, the vulnerability resides in the experimental AmazonS3 transport class within Eclipse JGit, which is not enabled by default and requires non-standard configuration (Attack Complexity: High). Furthermore, exploitation typically occurs via client-side tools (e.g., repo) requiring active user participation (User Interaction: Required), limiting the primary risk to local Denial of Service rather than remote, unauthenticated compromise (Availability: High).",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch"
        ],
        "known_not_affected": [
          "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-4949"
        },
        {
          "category": "external",
          "summary": "RHBZ#2367730",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2367730"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-4949",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-4949"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-4949",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-4949"
        },
        {
          "category": "external",
          "summary": "https://gitlab.eclipse.org/security/cve-assignement/-/issues/64",
          "url": "https://gitlab.eclipse.org/security/cve-assignement/-/issues/64"
        },
        {
          "category": "external",
          "summary": "https://gitlab.eclipse.org/security/vulnerability-reports/-/issues/281",
          "url": "https://gitlab.eclipse.org/security/vulnerability-reports/-/issues/281"
        },
        {
          "category": "external",
          "summary": "https://projects.eclipse.org/projects/technology.jgit/releases/7.2.1",
          "url": "https://projects.eclipse.org/projects/technology.jgit/releases/7.2.1"
        }
      ],
      "release_date": "2025-05-21T06:47:19.777000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-03-18T13:17:47+00:00",
          "details": "Before applying the update, make sure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:4916"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 4.8,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "org.eclipse.jgit: XXE vulnerability in Eclipse JGit"
    },
    {
      "cve": "CVE-2025-9784",
      "cwe": {
        "id": "CWE-770",
        "name": "Allocation of Resources Without Limits or Throttling"
      },
      "discovery_date": "2025-09-01T06:19:20.938000+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2392306"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Undertow where malformed client requests can trigger server-side stream resets without triggering abuse counters. This issue, referred to as the \"MadeYouReset\" attack, allows malicious clients to induce excessive server workload by repeatedly causing server-side stream aborts. While not a protocol bug, this highlights a common implementation weakness that can be exploited to cause a denial of service (DoS).",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "undertow: Undertow MadeYouReset HTTP/2 DDoS Vulnerability",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability is rated with an Important severity. It is simple to exploit because it does not require authentication and could result in a Denial of Service (DoS). While some DoS flaws are classified as Moderate, \u201cMadeYouReset\u201d is Important because of the limited barriers (no specialized tooling or advanced scripting) to exploitation, which directly impacts service availability. The vulnerability arises from an implementation weakness in HTTP/2 stream reset handling \u2014 malformed client requests can trigger server-side resets without incrementing abuse counters, allowing an attacker to bypass built-in request throttling and overhead limits. Since these resets consume CPU and memory resources and can be generated at scale over a single TCP/TLS connection, a remote attacker could exhaust server capacity quickly, impacting all legitimate clients.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch"
        ],
        "known_not_affected": [
          "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-9784"
        },
        {
          "category": "external",
          "summary": "RHBZ#2392306",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2392306"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-9784",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-9784"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-9784",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-9784"
        },
        {
          "category": "external",
          "summary": "https://github.com/undertow-io/undertow/pull/1778",
          "url": "https://github.com/undertow-io/undertow/pull/1778"
        },
        {
          "category": "external",
          "summary": "https://github.com/undertow-io/undertow/releases/tag/2.2.38.Final",
          "url": "https://github.com/undertow-io/undertow/releases/tag/2.2.38.Final"
        },
        {
          "category": "external",
          "summary": "https://issues.redhat.com/browse/UNDERTOW-2598",
          "url": "https://issues.redhat.com/browse/UNDERTOW-2598"
        },
        {
          "category": "external",
          "summary": "https://kb.cert.org/vuls/id/767506",
          "url": "https://kb.cert.org/vuls/id/767506"
        }
      ],
      "release_date": "2025-09-01T06:21:54.614000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-03-18T13:17:47+00:00",
          "details": "Before applying the update, make sure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:4916"
        },
        {
          "category": "workaround",
          "details": "No mitigation is currently available that meets Red Hat Product Security\u2019s standards for usability, deployment, applicability, or stability.",
          "product_ids": [
            "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "undertow: Undertow MadeYouReset HTTP/2 DDoS Vulnerability"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Ahmet Artu\u00e7"
          ]
        }
      ],
      "cve": "CVE-2025-12543",
      "cwe": {
        "id": "CWE-20",
        "name": "Improper Input Validation"
      },
      "discovery_date": "2025-10-31T06:15:35.424000+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2408784"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the Undertow HTTP server core, which is used in WildFly, JBoss EAP, and other Java applications. The Undertow library fails to properly validate the Host header in incoming HTTP requests.As a result, requests containing malformed or malicious Host headers are processed without rejection, enabling attackers to poison caches, perform internal network scans, or hijack user sessions.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "undertow-core: Undertow HTTP Server Fails to Reject Malformed Host Headers Leading to Potential Cache Poisoning and SSRF",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability has an Important severity because it can be remotely exploited without authentication. However, limited user interaction is required for full impact. It could allow attackers to hijack additional accounts, steal credentials, or gain access to internal systems. The issue stems from improper input validation of HTTP Host headers, leading to serious breaches in confidentiality and integrity.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch"
        ],
        "known_not_affected": [
          "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-12543"
        },
        {
          "category": "external",
          "summary": "RHBZ#2408784",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2408784"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-12543",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-12543"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-12543",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-12543"
        }
      ],
      "release_date": "2026-01-08T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-03-18T13:17:47+00:00",
          "details": "Before applying the update, make sure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:4916"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use, applicability, or stability.",
          "product_ids": [
            "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 9.6,
            "baseSeverity": "CRITICAL",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:L",
            "version": "3.1"
          },
          "products": [
            "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "undertow-core: Undertow HTTP Server Fails to Reject Malformed Host Headers Leading to Potential Cache Poisoning and SSRF"
    },
    {
      "cve": "CVE-2025-48913",
      "cwe": {
        "id": "CWE-20",
        "name": "Improper Input Validation"
      },
      "discovery_date": "2025-08-08T10:00:54.007824+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2387221"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in org.apache.cxf/cxf, where untrusted users can configure JMS to allow the specification of RMI or LDAP URLs, possibly leading to code execution. This vulnerability allows an attacker to provide malicious protocol URLs during JMS configuration.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "org.apache.cxf/cxf: CXF JMS Code Execution Vulnerability",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This flaw should be considered Important because the impact goes beyond a simple denial of service or configuration misuse. By allowing untrusted users to configure JMS with RMI or LDAP URLs, attackers could achieve remote code execution by loading attacker-controlled classes or objects. Although this requires the precondition that the attacker has access to JMS configuration, in many enterprise deployments this may be exposed through integration layers or misconfigured permissions, making the attack surface broader than a purely local or limited-scope scenario.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch"
        ],
        "known_not_affected": [
          "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-48913"
        },
        {
          "category": "external",
          "summary": "RHBZ#2387221",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2387221"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-48913",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-48913"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-48913",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-48913"
        },
        {
          "category": "external",
          "summary": "https://lists.apache.org/thread/f1nv488ztc0js4g5ml2v88mzkzslyh83",
          "url": "https://lists.apache.org/thread/f1nv488ztc0js4g5ml2v88mzkzslyh83"
        }
      ],
      "release_date": "2025-08-08T09:21:22.208000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-03-18T13:17:47+00:00",
          "details": "Before applying the update, make sure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:4916"
        },
        {
          "category": "workaround",
          "details": "To reduce risk, deployments should restrict the allowed protocols in JMS configuration to trusted and expected values only. In particular, disallow the use of rmi:// and ldap:// URLs, which could be abused for remote class loading and code execution.",
          "product_ids": [
            "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 8.3,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L",
            "version": "3.1"
          },
          "products": [
            "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "org.apache.cxf/cxf: CXF JMS Code Execution Vulnerability"
    },
    {
      "cve": "CVE-2025-52999",
      "cwe": {
        "id": "CWE-121",
        "name": "Stack-based Buffer Overflow"
      },
      "discovery_date": "2025-06-25T18:00:54.693716+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2374804"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A nested data handling flaw was found in Jackson Core. When parsing particularly deeply nested data structures, a StackoverflowError can occur.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "com.fasterxml.jackson.core/jackson-core: jackson-core Potential StackoverflowError",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch"
        ],
        "known_not_affected": [
          "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-52999"
        },
        {
          "category": "external",
          "summary": "RHBZ#2374804",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2374804"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-52999",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-52999"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-52999",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-52999"
        },
        {
          "category": "external",
          "summary": "https://github.com/FasterXML/jackson-core/pull/943",
          "url": "https://github.com/FasterXML/jackson-core/pull/943"
        },
        {
          "category": "external",
          "summary": "https://github.com/FasterXML/jackson-core/security/advisories/GHSA-h46c-h94j-95f3",
          "url": "https://github.com/FasterXML/jackson-core/security/advisories/GHSA-h46c-h94j-95f3"
        }
      ],
      "release_date": "2025-06-25T17:02:57.428000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-03-18T13:17:47+00:00",
          "details": "Before applying the update, make sure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:4916"
        },
        {
          "category": "workaround",
          "details": "To mitigate this vulnerability, the recommendation is to avoid parsing input files from untrusted sources that may have excessively deep nested data structures; anything with a depth over 1000.",
          "product_ids": [
            "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "com.fasterxml.jackson.core/jackson-core: jackson-core Potential StackoverflowError"
    },
    {
      "cve": "CVE-2025-55163",
      "cwe": {
        "id": "CWE-770",
        "name": "Allocation of Resources Without Limits or Throttling"
      },
      "discovery_date": "2025-08-13T15:01:55.372237+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2388252"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Netty where malformed client requests can trigger server-side stream resets without triggering abuse counters. This issue, referred to as the \"MadeYouReset\" attack, allows malicious clients to induce excessive server workload by repeatedly causing server-side stream aborts. While not a protocol bug, this highlights a common implementation weakness that can be exploited to cause a denial of service (DoS).",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "netty: netty-codec-http2: Netty MadeYouReset HTTP/2 DDoS Vulnerability",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability is rated with an Important severity. It is simple to exploit because it does not require authentication and could result in a denial of service (DoS). While some DoS flaws are classified as Moderate, \u201cMadeYouReset\u201d is Important because of the limited barriers (no specialized tooling or advanced scripting) to exploitation, which directly impacts service availability. The vulnerability arises from an implementation weakness in HTTP/2 stream reset handling \u2014 malformed client requests can trigger server-side resets without incrementing abuse counters, allowing an attacker to bypass built-in request throttling and overhead limits. Since these resets consume CPU and memory resources and can be generated at scale over a single TCP/TLS connection, a remote attacker could exhaust server capacity quickly, impacting all legitimate clients.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch"
        ],
        "known_not_affected": [
          "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-55163"
        },
        {
          "category": "external",
          "summary": "RHBZ#2388252",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2388252"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-55163",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-55163"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-55163",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-55163"
        },
        {
          "category": "external",
          "summary": "https://github.com/netty/netty/security/advisories/GHSA-prj3-ccx8-p6x4",
          "url": "https://github.com/netty/netty/security/advisories/GHSA-prj3-ccx8-p6x4"
        },
        {
          "category": "external",
          "summary": "https://kb.cert.org/vuls/id/767506",
          "url": "https://kb.cert.org/vuls/id/767506"
        }
      ],
      "release_date": "2025-08-13T14:17:36.111000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-03-18T13:17:47+00:00",
          "details": "Before applying the update, make sure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:4916"
        },
        {
          "category": "workaround",
          "details": "No mitigation is currently available that meets Red Hat Product Security\u2019s standards for usability, deployment, applicability, or stability.",
          "product_ids": [
            "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "netty: netty-codec-http2: Netty MadeYouReset HTTP/2 DDoS Vulnerability"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Christiaan Swiers"
          ],
          "organization": "YouGina"
        },
        {
          "names": [
            "Tommy Williams"
          ],
          "organization": "HeroDevs"
        }
      ],
      "cve": "CVE-2026-0603",
      "cwe": {
        "id": "CWE-89",
        "name": "Improper Neutralization of Special Elements used in an SQL Command (\u0027SQL Injection\u0027)"
      },
      "discovery_date": "2026-01-05T13:12:29.816000+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2427147"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Hibernate. A remote attacker with low privileges could exploit a second-order SQL injection vulnerability by providing specially crafted, unsanitized non-alphanumeric characters in the ID column when the InlineIdsOrClauseBuilder is used. This could lead to sensitive information disclosure, such as reading system files, and allow for data manipulation or deletion within the application\u0027s database, resulting in an application level denial of service.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "org.hibernate/hibernate-core: Hibernate: Information disclosure and data deletion via second-order SQL injection",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability is rated Important for Red Hat products as it allows a remote attacker with low privileges to perform second-order SQL injection in applications using Hibernate\u0027s InlineIdsOrClauseBuilder with unsanitized non-alphanumeric characters in the ID column. This could lead to sensitive information disclosure and data manipulation or deletion.Affected Hibernate ORM versions are 5.2.8 through 5.6.15 (inclusive); earlier versions are not affected.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch"
        ],
        "known_not_affected": [
          "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.src",
          "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-0603"
        },
        {
          "category": "external",
          "summary": "RHBZ#2427147",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2427147"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-0603",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-0603"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-0603",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-0603"
        }
      ],
      "release_date": "2026-01-19T10:10:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-03-18T13:17:47+00:00",
          "details": "Before applying the update, make sure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:4916"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 8.3,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L",
            "version": "3.1"
          },
          "products": [
            "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-entitymanager-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-java8-0:5.3.38-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-all-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el8eap.x86_64",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el8eap.src",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch",
            "8Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el8eap.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "org.hibernate/hibernate-core: Hibernate: Information disclosure and data deletion via second-order SQL injection"
    }
  ]
}

RHSA-2026:4917

Vulnerability from csaf_redhat - Published: 2026-03-18 13:19 - Updated: 2026-06-02 15:22

Summary

Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4.24 security update

Severity

Important

Notes

Topic: A security update is now available for Red Hat JBoss Enterprise Application Platform 7.4 for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

CVE-2024-3884

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-20 - Improper Input Validation

Affected products

Fixed 9 products

Product	Version	Remediation
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch	—	Vendor Fix fix Workaround

Known not affected 93 products

Product	Version	Remediation
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch	—	Workaround

Threats

Impact Moderate

CVE-2024-7254

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-770 - Allocation of Resources Without Limits or Throttling

Affected products

Fixed 10 products

Product	Version	Remediation
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch	—	Vendor Fix fix Workaround

Known not affected 92 products

Product	Version	Remediation
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch	—	Workaround

Threats

Impact Important

CVE-2025-4949

A flaw was found in Eclipse JGit. This vulnerability can allow information disclosure, denial of service, and other security issues when parsing XML files.

4.8 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:H

CWE-611 - Improper Restriction of XML External Entity Reference

Affected products

Fixed 9 products

Product	Version	Remediation
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.src	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.src	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch	—	Vendor Fix fix
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch	—	Vendor Fix fix

Known not affected 93 products

Product	Identifier	Version	Remediation
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.src		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.src		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el9eap.src		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.src		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.src		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.src		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.src		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.src		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.src		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.src		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.src		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.src		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.src		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.src		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.src		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.src		—
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch		—

Threats

Impact Moderate

CVE-2025-9784

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-770 - Allocation of Resources Without Limits or Throttling

Affected products

Fixed 9 products

Product	Version	Remediation
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch	—	Vendor Fix fix Workaround

Known not affected 93 products

Product	Version	Remediation
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch	—	Workaround

Threats

Impact Important

CVE-2025-12543

9.6 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:L

CWE-20 - Improper Input Validation

Affected products

Fixed 9 products

Product	Version	Remediation
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch	—	Vendor Fix fix Workaround

Known not affected 93 products

Product	Version	Remediation
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch	—	Workaround

Threats

Impact Important

CVE-2025-48913

8.3 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L

CWE-20 - Improper Input Validation

Affected products

Fixed 12 products

Product	Version	Remediation
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch	—	Vendor Fix fix Workaround

Known not affected 90 products

Product	Version	Remediation
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch	—	Workaround

Threats

Impact Important

CVE-2025-52999

A nested data handling flaw was found in Jackson Core. When parsing particularly deeply nested data structures, a StackoverflowError can occur.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-121 - Stack-based Buffer Overflow

Affected products

Fixed 7 products

Product	Version	Remediation
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch	—	Vendor Fix fix Workaround

Known not affected 95 products

Product	Version	Remediation
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch	—	Workaround

Threats

Impact Important

CVE-2025-55163

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-770 - Allocation of Resources Without Limits or Throttling

Affected products

Fixed 36 products

Product	Version	Remediation
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch	—	Vendor Fix fix Workaround

Known not affected 66 products

Product	Version	Remediation
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch	—	Workaround

Threats

Impact Important

CVE-2026-0603

8.3 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L

CWE-89 - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

Affected products

Fixed 11 products

Product	Version	Remediation
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.src	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch	—	Vendor Fix fix Workaround

Known not affected 91 products

Product	Version	Remediation
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.src	—	Workaround
Unresolved product id: 9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch	—	Workaround

Threats

Impact Important

References

63 references

URL	Category
https://access.redhat.com/errata/RHSA-2026:4917	self
https://access.redhat.com/security/updates/classi…	external
https://docs.redhat.com/en/documentation/red_hat_…	external
https://docs.redhat.com/en/documentation/red_hat_…	external
https://bugzilla.redhat.com/show_bug.cgi?id=2275287	external
https://bugzilla.redhat.com/show_bug.cgi?id=2313454	external
https://bugzilla.redhat.com/show_bug.cgi?id=2367730	external
https://bugzilla.redhat.com/show_bug.cgi?id=2374804	external
https://bugzilla.redhat.com/show_bug.cgi?id=2387221	external
https://bugzilla.redhat.com/show_bug.cgi?id=2388252	external
https://bugzilla.redhat.com/show_bug.cgi?id=2392306	external
https://bugzilla.redhat.com/show_bug.cgi?id=2408784	external
https://bugzilla.redhat.com/show_bug.cgi?id=2427147	external
https://issues.redhat.com/browse/JBEAP-30076	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2024-3884	self
https://bugzilla.redhat.com/show_bug.cgi?id=2275287	external
https://www.cve.org/CVERecord?id=CVE-2024-3884	external
https://nvd.nist.gov/vuln/detail/CVE-2024-3884	external
https://access.redhat.com/security/cve/CVE-2024-7254	self
https://bugzilla.redhat.com/show_bug.cgi?id=2313454	external
https://www.cve.org/CVERecord?id=CVE-2024-7254	external
https://nvd.nist.gov/vuln/detail/CVE-2024-7254	external
https://github.com/protocolbuffers/protobuf/commi…	external
https://access.redhat.com/security/cve/CVE-2025-4949	self
https://bugzilla.redhat.com/show_bug.cgi?id=2367730	external
https://www.cve.org/CVERecord?id=CVE-2025-4949	external
https://nvd.nist.gov/vuln/detail/CVE-2025-4949	external
https://gitlab.eclipse.org/security/cve-assigneme…	external
https://gitlab.eclipse.org/security/vulnerability…	external
https://projects.eclipse.org/projects/technology.…	external
https://access.redhat.com/security/cve/CVE-2025-9784	self
https://bugzilla.redhat.com/show_bug.cgi?id=2392306	external
https://www.cve.org/CVERecord?id=CVE-2025-9784	external
https://nvd.nist.gov/vuln/detail/CVE-2025-9784	external
https://github.com/undertow-io/undertow/pull/1778	external
https://github.com/undertow-io/undertow/releases/…	external
https://issues.redhat.com/browse/UNDERTOW-2598	external
https://kb.cert.org/vuls/id/767506	external
https://access.redhat.com/security/cve/CVE-2025-12543	self
https://bugzilla.redhat.com/show_bug.cgi?id=2408784	external
https://www.cve.org/CVERecord?id=CVE-2025-12543	external
https://nvd.nist.gov/vuln/detail/CVE-2025-12543	external
https://access.redhat.com/security/cve/CVE-2025-48913	self
https://bugzilla.redhat.com/show_bug.cgi?id=2387221	external
https://www.cve.org/CVERecord?id=CVE-2025-48913	external
https://nvd.nist.gov/vuln/detail/CVE-2025-48913	external
https://lists.apache.org/thread/f1nv488ztc0js4g5m…	external
https://access.redhat.com/security/cve/CVE-2025-52999	self
https://bugzilla.redhat.com/show_bug.cgi?id=2374804	external
https://www.cve.org/CVERecord?id=CVE-2025-52999	external
https://nvd.nist.gov/vuln/detail/CVE-2025-52999	external
https://github.com/FasterXML/jackson-core/pull/943	external
https://github.com/FasterXML/jackson-core/securit…	external
https://access.redhat.com/security/cve/CVE-2025-55163	self
https://bugzilla.redhat.com/show_bug.cgi?id=2388252	external
https://www.cve.org/CVERecord?id=CVE-2025-55163	external
https://nvd.nist.gov/vuln/detail/CVE-2025-55163	external
https://github.com/netty/netty/security/advisorie…	external
https://access.redhat.com/security/cve/CVE-2026-0603	self
https://bugzilla.redhat.com/show_bug.cgi?id=2427147	external
https://www.cve.org/CVERecord?id=CVE-2026-0603	external
https://nvd.nist.gov/vuln/detail/CVE-2026-0603	external

Acknowledgments

Ahmet Artuç

YouGina Christiaan Swiers

HeroDevs Tommy Williams

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "A security update is now available for Red Hat JBoss Enterprise Application Platform 7.4 for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime. This release of Red Hat JBoss Enterprise Application Platform 7.4.24 serves as a replacement for Red Hat JBoss Enterprise Application Platform 7.4.23, and includes bug fixes and enhancements. See the Red Hat JBoss Enterprise Application Platform 7.4.24 Release Notes for information about the most significant bug fixes and enhancements included in this release.\n\nSecurity Fix(es):\n\n* jackson-core: jackson-core Potential StackoverflowError (CVE-2025-52999)\n\n* undertow-core: Undertow HTTP Server Fails to Reject Malformed Host Headers Leading to Potential Cache Poisoning and SSRF [eap-7.4.z] (CVE-2025-12543)\n\n* cxf: CXF JMS Code Execution Vulnerability [eap-7.4.z] (CVE-2025-48913)\n\n* netty-codec-http2: Netty MadeYouReset HTTP/2 DDoS Vulnerability (CVE-2025-55163)\n\n* org.eclipse.jgit: XXE vulnerability in Eclipse JGit [eap-7.4.z] (CVE-2025-4949)\n\n* hibernate-core: Hibernate: Information disclosure and data deletion via second-order SQL injection [eap-7.4.z] (CVE-2026-0603)\n\n* com.google.protobuf/protobuf-java: StackOverflow vulnerability in Protocol Buffers (CVE-2024-7254)\n\n* undertow: OutOfMemory when parsing form data encoding with application/x-www-form-urlencoded [eap-7.4.z] (CVE-2024-3884)\n\n* undertow-core: Undertow MadeYouReset HTTP/2 DDoS Vulnerability (CVE-2025-9784)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2026:4917",
        "url": "https://access.redhat.com/errata/RHSA-2026:4917"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "https://docs.redhat.com/en/documentation/red_hat_jboss_enterprise_application_platform/7.4",
        "url": "https://docs.redhat.com/en/documentation/red_hat_jboss_enterprise_application_platform/7.4"
      },
      {
        "category": "external",
        "summary": "https://docs.redhat.com/en/documentation/red_hat_jboss_enterprise_application_platform/7.4/html-single/installation_guide/index",
        "url": "https://docs.redhat.com/en/documentation/red_hat_jboss_enterprise_application_platform/7.4/html-single/installation_guide/index"
      },
      {
        "category": "external",
        "summary": "2275287",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2275287"
      },
      {
        "category": "external",
        "summary": "2313454",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2313454"
      },
      {
        "category": "external",
        "summary": "2367730",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2367730"
      },
      {
        "category": "external",
        "summary": "2374804",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2374804"
      },
      {
        "category": "external",
        "summary": "2387221",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2387221"
      },
      {
        "category": "external",
        "summary": "2388252",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2388252"
      },
      {
        "category": "external",
        "summary": "2392306",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2392306"
      },
      {
        "category": "external",
        "summary": "2408784",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2408784"
      },
      {
        "category": "external",
        "summary": "2427147",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2427147"
      },
      {
        "category": "external",
        "summary": "JBEAP-30076",
        "url": "https://issues.redhat.com/browse/JBEAP-30076"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_4917.json"
      }
    ],
    "title": "Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4.24 security update",
    "tracking": {
      "current_release_date": "2026-06-02T15:22:37+00:00",
      "generator": {
        "date": "2026-06-02T15:22:37+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.8.1"
        }
      },
      "id": "RHSA-2026:4917",
      "initial_release_date": "2026-03-18T13:19:11+00:00",
      "revision_history": [
        {
          "date": "2026-03-18T13:19:11+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2026-03-18T13:19:11+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-06-02T15:22:37+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat JBoss EAP 7.4 ELS for RHEL 9",
                "product": {
                  "name": "Red Hat JBoss EAP 7.4 ELS for RHEL 9",
                  "product_id": "9Base-JBEAP-7.4-ELS",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform_els:7.4::el9"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat JBoss Enterprise Application Platform"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.src",
                "product": {
                  "name": "eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.src",
                  "product_id": "eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jbossws-cxf@5.4.17-1.Final_redhat_00001.1.el9eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.src",
                "product": {
                  "name": "eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.src",
                  "product_id": "eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-glassfish-jsf@2.3.14-10.SP10_redhat_00001.1.el9eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.src",
                "product": {
                  "name": "eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.src",
                  "product_id": "eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-hibernate-validator@6.0.23-4.SP2_redhat_00001.1.el9eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.src",
                "product": {
                  "name": "eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.src",
                  "product_id": "eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly-elytron@1.15.27-1.Final_redhat_00002.1.el9eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el9eap.src",
                "product": {
                  "name": "eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el9eap.src",
                  "product_id": "eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el9eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-elytron-web@1.9.6-2.Final_redhat_00001.1.el9eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.src",
                "product": {
                  "name": "eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.src",
                  "product_id": "eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-hal-console@3.3.27-2.Final_redhat_00001.1.el9eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.src",
                "product": {
                  "name": "eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.src",
                  "product_id": "eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-apache-cxf@3.5.11-1.SP1_redhat_00001.1.el9eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.src",
                "product": {
                  "name": "eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.src",
                  "product_id": "eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-ironjacamar@1.5.24-1.Final_redhat_00001.1.el9eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.src",
                "product": {
                  "name": "eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.src",
                  "product_id": "eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-apache-commons-beanutils@1.11.0-2.redhat_00001.1.el9eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.src",
                "product": {
                  "name": "eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.src",
                  "product_id": "eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-hibernate@5.3.38-1.Final_redhat_00001.1.el9eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
                "product": {
                  "name": "eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
                  "product_id": "eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty@4.1.124-1.Final_redhat_00001.1.el9eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.src",
                "product": {
                  "name": "eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.src",
                  "product_id": "eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-undertow@2.2.39-1.Final_redhat_00001.1.el9eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.src",
                "product": {
                  "name": "eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.src",
                  "product_id": "eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jboss-marshalling@2.0.16-1.Final_redhat_00001.1.el9eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.src",
                "product": {
                  "name": "eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.src",
                  "product_id": "eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jboss-server-migration@1.10.0-43.Final_redhat_00043.1.el9eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.src",
                "product": {
                  "name": "eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.src",
                  "product_id": "eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy@3.15.11-1.Final_redhat_00001.1.el9eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.src",
                "product": {
                  "name": "eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.src",
                  "product_id": "eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-eclipse-jgit@5.13.5.202508271544-2.r_redhat_00001.1.el9eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.src",
                "product": {
                  "name": "eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.src",
                  "product_id": "eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly@7.4.24-4.GA_redhat_00002.1.el9eap?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
                "product": {
                  "name": "eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
                  "product_id": "eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-transport-native-epoll@4.1.124-1.Final_redhat_00001.1.el9eap?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jbossws-cxf@5.4.17-1.Final_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-glassfish-jsf@2.3.14-10.SP10_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-hibernate-validator@6.0.23-4.SP2_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-hibernate-validator-cdi@6.0.23-4.SP2_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch",
                "product": {
                  "name": "eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch",
                  "product_id": "eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly-elytron@1.15.27-1.Final_redhat_00002.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch",
                "product": {
                  "name": "eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch",
                  "product_id": "eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly-elytron-tool@1.15.27-1.Final_redhat_00002.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-undertow-server@1.9.6-2.Final_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-hal-console@3.3.27-2.Final_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-apache-cxf@3.5.11-1.SP1_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-apache-cxf-rt@3.5.11-1.SP1_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-apache-cxf-services@3.5.11-1.SP1_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-apache-cxf-tools@3.5.11-1.SP1_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-ironjacamar@1.5.24-1.Final_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-ironjacamar-common-api@1.5.24-1.Final_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-ironjacamar-common-impl@1.5.24-1.Final_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-ironjacamar-common-spi@1.5.24-1.Final_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-ironjacamar-core-api@1.5.24-1.Final_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-ironjacamar-core-impl@1.5.24-1.Final_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-ironjacamar-deployers-common@1.5.24-1.Final_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-ironjacamar-jdbc@1.5.24-1.Final_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-ironjacamar-validator@1.5.24-1.Final_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-apache-commons-beanutils@1.11.0-2.redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-hibernate@5.3.38-1.Final_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-hibernate-core@5.3.38-1.Final_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-hibernate-envers@5.3.38-1.Final_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty@4.1.124-1.Final_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-buffer@4.1.124-1.Final_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec@4.1.124-1.Final_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-dns@4.1.124-1.Final_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-haproxy@4.1.124-1.Final_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-http@4.1.124-1.Final_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-http2@4.1.124-1.Final_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-memcache@4.1.124-1.Final_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-mqtt@4.1.124-1.Final_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-redis@4.1.124-1.Final_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-smtp@4.1.124-1.Final_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-socks@4.1.124-1.Final_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-stomp@4.1.124-1.Final_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-codec-xml@4.1.124-1.Final_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-common@4.1.124-1.Final_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-handler@4.1.124-1.Final_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-handler-proxy@4.1.124-1.Final_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-resolver@4.1.124-1.Final_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-resolver-dns@4.1.124-1.Final_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-resolver-dns-classes-macos@4.1.124-1.Final_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-transport@4.1.124-1.Final_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-transport-classes-epoll@4.1.124-1.Final_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-transport-classes-kqueue@4.1.124-1.Final_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-transport-native-unix-common@4.1.124-1.Final_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-transport-sctp@4.1.124-1.Final_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-undertow@2.2.39-1.Final_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jboss-marshalling@2.0.16-1.Final_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jboss-marshalling-river@2.0.16-1.Final_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
                "product": {
                  "name": "eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
                  "product_id": "eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jboss-server-migration@1.10.0-43.Final_redhat_00043.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
                "product": {
                  "name": "eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
                  "product_id": "eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jboss-server-migration-cli@1.10.0-43.Final_redhat_00043.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
                "product": {
                  "name": "eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
                  "product_id": "eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-jboss-server-migration-core@1.10.0-43.Final_redhat_00043.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy@3.15.11-1.Final_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-atom-provider@3.15.11-1.Final_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-cdi@3.15.11-1.Final_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-client@3.15.11-1.Final_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-crypto@3.15.11-1.Final_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-jackson-provider@3.15.11-1.Final_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-jackson2-provider@3.15.11-1.Final_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-jaxb-provider@3.15.11-1.Final_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-jaxrs@3.15.11-1.Final_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-jettison-provider@3.15.11-1.Final_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-jose-jwt@3.15.11-1.Final_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-jsapi@3.15.11-1.Final_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-json-binding-provider@3.15.11-1.Final_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-json-p-provider@3.15.11-1.Final_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-multipart-provider@3.15.11-1.Final_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-rxjava2@3.15.11-1.Final_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-spring@3.15.11-1.Final_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-validator-provider-11@3.15.11-1.Final_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-resteasy-yaml-provider@3.15.11-1.Final_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.noarch",
                "product": {
                  "name": "eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.noarch",
                  "product_id": "eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-eclipse-jgit@5.13.5.202508271544-2.r_redhat_00001.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
                "product": {
                  "name": "eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
                  "product_id": "eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly@7.4.24-4.GA_redhat_00002.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
                "product": {
                  "name": "eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
                  "product_id": "eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly-java-jdk11@7.4.24-4.GA_redhat_00002.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
                "product": {
                  "name": "eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
                  "product_id": "eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly-java-jdk17@7.4.24-4.GA_redhat_00002.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
                "product": {
                  "name": "eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
                  "product_id": "eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly-java-jdk8@7.4.24-4.GA_redhat_00002.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
                "product": {
                  "name": "eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
                  "product_id": "eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly-javadocs@7.4.24-4.GA_redhat_00002.1.el9eap?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
                "product": {
                  "name": "eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
                  "product_id": "eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-wildfly-modules@7.4.24-4.GA_redhat_00002.1.el9eap?arch=noarch"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
                "product": {
                  "name": "eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
                  "product_id": "eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-transport-native-epoll@4.1.124-1.Final_redhat_00001.1.el9eap?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
                "product": {
                  "name": "eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
                  "product_id": "eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/eap7-netty-transport-native-epoll-debuginfo@4.1.124-1.Final_redhat_00001.1.el9eap?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.src as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.src"
        },
        "product_reference": "eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.src",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.src as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.src"
        },
        "product_reference": "eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.src",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.src as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.src"
        },
        "product_reference": "eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.src",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el9eap.src as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el9eap.src"
        },
        "product_reference": "eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el9eap.src",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.src as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.src"
        },
        "product_reference": "eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.src",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.src as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.src"
        },
        "product_reference": "eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.src",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.src as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.src"
        },
        "product_reference": "eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.src",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.src as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.src"
        },
        "product_reference": "eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.src",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.src as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.src"
        },
        "product_reference": "eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.src",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.src as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.src"
        },
        "product_reference": "eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.src",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch"
        },
        "product_reference": "eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.src as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.src"
        },
        "product_reference": "eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.src",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch"
        },
        "product_reference": "eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch"
        },
        "product_reference": "eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.src as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.src"
        },
        "product_reference": "eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.src",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.src as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.src"
        },
        "product_reference": "eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.src as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.src"
        },
        "product_reference": "eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64 as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64"
        },
        "product_reference": "eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64 as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64"
        },
        "product_reference": "eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.src as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.src"
        },
        "product_reference": "eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.src",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.src as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.src"
        },
        "product_reference": "eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.src",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el9eap.noarch"
        },
        "product_reference": "eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch"
        },
        "product_reference": "eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.src as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.src"
        },
        "product_reference": "eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.src",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch"
        },
        "product_reference": "eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.src as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.src"
        },
        "product_reference": "eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.src",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch"
        },
        "product_reference": "eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch"
        },
        "product_reference": "eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch"
        },
        "product_reference": "eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch"
        },
        "product_reference": "eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch"
        },
        "product_reference": "eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch as a component of Red Hat JBoss EAP 7.4 ELS for RHEL 9",
          "product_id": "9Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch"
        },
        "product_reference": "eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
        "relates_to_product_reference": "9Base-JBEAP-7.4-ELS"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2024-3884",
      "cwe": {
        "id": "CWE-20",
        "name": "Improper Input Validation"
      },
      "discovery_date": "2024-04-16T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2275287"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Undertow that can cause remote denial of service attacks. When the server uses the FormEncodedDataDefinition.doParse(StreamSourceChannel) method to parse large form data encoding with application/x-www-form-urlencoded, the method will cause an OutOfMemory issue. This flaw allows unauthorized users to cause a remote denial of service (DoS) attack.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "undertow: OutOfMemory when parsing form data encoding with application/x-www-form-urlencoded",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "Red Hat rates this as a Moderate impact since this requires the use of a specific form method by the server that must be externally available and the input is not sanitized by the given servlet or class implementing its use.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch"
        ],
        "known_not_affected": [
          "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-3884"
        },
        {
          "category": "external",
          "summary": "RHBZ#2275287",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2275287"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-3884",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-3884"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-3884",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-3884"
        }
      ],
      "release_date": "2025-12-03T16:50:50+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-03-18T13:19:11+00:00",
          "details": "Before applying the update, make sure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:4917"
        },
        {
          "category": "workaround",
          "details": "It is possible to mitigate the vulnerability by performing an upper-level verification to ensure the content size sent server side is within the allowed parameters.",
          "product_ids": [
            "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "undertow: OutOfMemory when parsing form data encoding with application/x-www-form-urlencoded"
    },
    {
      "cve": "CVE-2024-7254",
      "cwe": {
        "id": "CWE-770",
        "name": "Allocation of Resources Without Limits or Throttling"
      },
      "discovery_date": "2024-09-19T01:20:29.981665+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2313454"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Protocol Buffers (protobuf). This issue can allows an attacker to cause a StackOverflow via parsing untrusted Protocol Buffers data containing arbitrarily nested SGROUP tags, leading to unbounded recursion.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "protobuf: StackOverflow vulnerability in Protocol Buffers",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue represents a significant severity risk because unbounded recursion in Protocol Buffers parsing can be exploited to trigger stack overflows, leading to Denial of Service (DoS). When parsers, such as `DiscardUnknownFieldsParser` or the Java Protobuf Lite parser, encounter arbitrarily nested groups or deeply recursive map fields, the lack of recursion depth limits can result in uncontrolled stack growth. Attackers can craft malicious protobuf messages that deliberately exceed the stack\u0027s capacity, causing the application to crash or become unresponsive.\n\nThe protobuf package as shipped in RHEL does not include the affected java or kotlin bindings, therefore RHEL is Not Affected.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch"
        ],
        "known_not_affected": [
          "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-7254"
        },
        {
          "category": "external",
          "summary": "RHBZ#2313454",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2313454"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-7254",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-7254"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-7254",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-7254"
        },
        {
          "category": "external",
          "summary": "https://github.com/protocolbuffers/protobuf/commit/cc8b3483a5584b3301e3d43d17eb59704857ffaa",
          "url": "https://github.com/protocolbuffers/protobuf/commit/cc8b3483a5584b3301e3d43d17eb59704857ffaa"
        }
      ],
      "release_date": "2024-09-19T01:15:10.963000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-03-18T13:19:11+00:00",
          "details": "Before applying the update, make sure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:4917"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "protobuf: StackOverflow vulnerability in Protocol Buffers"
    },
    {
      "cve": "CVE-2025-4949",
      "cwe": {
        "id": "CWE-611",
        "name": "Improper Restriction of XML External Entity Reference"
      },
      "discovery_date": "2025-05-21T07:00:48.762597+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2367730"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Eclipse JGit. This vulnerability can allow information disclosure, denial of service, and other security issues when parsing XML files.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "org.eclipse.jgit: XXE vulnerability in Eclipse JGit",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability is rated Moderate for Red Hat products. A flaw in Eclipse JGit allows for XML External Entity (XXE) attacks when parsing specially crafted XML files. This can lead to local denial of service in affected Red Hat products that utilize JGit\u0027s ManifestParser or AmazonS3 class for git transport. The current 9.8 rating by NVD assumes a default, server-side exploitation path. However, the vulnerability resides in the experimental AmazonS3 transport class within Eclipse JGit, which is not enabled by default and requires non-standard configuration (Attack Complexity: High). Furthermore, exploitation typically occurs via client-side tools (e.g., repo) requiring active user participation (User Interaction: Required), limiting the primary risk to local Denial of Service rather than remote, unauthenticated compromise (Availability: High).",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch"
        ],
        "known_not_affected": [
          "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-4949"
        },
        {
          "category": "external",
          "summary": "RHBZ#2367730",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2367730"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-4949",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-4949"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-4949",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-4949"
        },
        {
          "category": "external",
          "summary": "https://gitlab.eclipse.org/security/cve-assignement/-/issues/64",
          "url": "https://gitlab.eclipse.org/security/cve-assignement/-/issues/64"
        },
        {
          "category": "external",
          "summary": "https://gitlab.eclipse.org/security/vulnerability-reports/-/issues/281",
          "url": "https://gitlab.eclipse.org/security/vulnerability-reports/-/issues/281"
        },
        {
          "category": "external",
          "summary": "https://projects.eclipse.org/projects/technology.jgit/releases/7.2.1",
          "url": "https://projects.eclipse.org/projects/technology.jgit/releases/7.2.1"
        }
      ],
      "release_date": "2025-05-21T06:47:19.777000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-03-18T13:19:11+00:00",
          "details": "Before applying the update, make sure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:4917"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 4.8,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "org.eclipse.jgit: XXE vulnerability in Eclipse JGit"
    },
    {
      "cve": "CVE-2025-9784",
      "cwe": {
        "id": "CWE-770",
        "name": "Allocation of Resources Without Limits or Throttling"
      },
      "discovery_date": "2025-09-01T06:19:20.938000+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2392306"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Undertow where malformed client requests can trigger server-side stream resets without triggering abuse counters. This issue, referred to as the \"MadeYouReset\" attack, allows malicious clients to induce excessive server workload by repeatedly causing server-side stream aborts. While not a protocol bug, this highlights a common implementation weakness that can be exploited to cause a denial of service (DoS).",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "undertow: Undertow MadeYouReset HTTP/2 DDoS Vulnerability",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability is rated with an Important severity. It is simple to exploit because it does not require authentication and could result in a Denial of Service (DoS). While some DoS flaws are classified as Moderate, \u201cMadeYouReset\u201d is Important because of the limited barriers (no specialized tooling or advanced scripting) to exploitation, which directly impacts service availability. The vulnerability arises from an implementation weakness in HTTP/2 stream reset handling \u2014 malformed client requests can trigger server-side resets without incrementing abuse counters, allowing an attacker to bypass built-in request throttling and overhead limits. Since these resets consume CPU and memory resources and can be generated at scale over a single TCP/TLS connection, a remote attacker could exhaust server capacity quickly, impacting all legitimate clients.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch"
        ],
        "known_not_affected": [
          "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-9784"
        },
        {
          "category": "external",
          "summary": "RHBZ#2392306",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2392306"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-9784",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-9784"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-9784",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-9784"
        },
        {
          "category": "external",
          "summary": "https://github.com/undertow-io/undertow/pull/1778",
          "url": "https://github.com/undertow-io/undertow/pull/1778"
        },
        {
          "category": "external",
          "summary": "https://github.com/undertow-io/undertow/releases/tag/2.2.38.Final",
          "url": "https://github.com/undertow-io/undertow/releases/tag/2.2.38.Final"
        },
        {
          "category": "external",
          "summary": "https://issues.redhat.com/browse/UNDERTOW-2598",
          "url": "https://issues.redhat.com/browse/UNDERTOW-2598"
        },
        {
          "category": "external",
          "summary": "https://kb.cert.org/vuls/id/767506",
          "url": "https://kb.cert.org/vuls/id/767506"
        }
      ],
      "release_date": "2025-09-01T06:21:54.614000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-03-18T13:19:11+00:00",
          "details": "Before applying the update, make sure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:4917"
        },
        {
          "category": "workaround",
          "details": "No mitigation is currently available that meets Red Hat Product Security\u2019s standards for usability, deployment, applicability, or stability.",
          "product_ids": [
            "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "undertow: Undertow MadeYouReset HTTP/2 DDoS Vulnerability"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Ahmet Artu\u00e7"
          ]
        }
      ],
      "cve": "CVE-2025-12543",
      "cwe": {
        "id": "CWE-20",
        "name": "Improper Input Validation"
      },
      "discovery_date": "2025-10-31T06:15:35.424000+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2408784"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the Undertow HTTP server core, which is used in WildFly, JBoss EAP, and other Java applications. The Undertow library fails to properly validate the Host header in incoming HTTP requests.As a result, requests containing malformed or malicious Host headers are processed without rejection, enabling attackers to poison caches, perform internal network scans, or hijack user sessions.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "undertow-core: Undertow HTTP Server Fails to Reject Malformed Host Headers Leading to Potential Cache Poisoning and SSRF",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability has an Important severity because it can be remotely exploited without authentication. However, limited user interaction is required for full impact. It could allow attackers to hijack additional accounts, steal credentials, or gain access to internal systems. The issue stems from improper input validation of HTTP Host headers, leading to serious breaches in confidentiality and integrity.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch"
        ],
        "known_not_affected": [
          "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-12543"
        },
        {
          "category": "external",
          "summary": "RHBZ#2408784",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2408784"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-12543",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-12543"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-12543",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-12543"
        }
      ],
      "release_date": "2026-01-08T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-03-18T13:19:11+00:00",
          "details": "Before applying the update, make sure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:4917"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use, applicability, or stability.",
          "product_ids": [
            "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 9.6,
            "baseSeverity": "CRITICAL",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:L",
            "version": "3.1"
          },
          "products": [
            "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "undertow-core: Undertow HTTP Server Fails to Reject Malformed Host Headers Leading to Potential Cache Poisoning and SSRF"
    },
    {
      "cve": "CVE-2025-48913",
      "cwe": {
        "id": "CWE-20",
        "name": "Improper Input Validation"
      },
      "discovery_date": "2025-08-08T10:00:54.007824+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2387221"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in org.apache.cxf/cxf, where untrusted users can configure JMS to allow the specification of RMI or LDAP URLs, possibly leading to code execution. This vulnerability allows an attacker to provide malicious protocol URLs during JMS configuration.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "org.apache.cxf/cxf: CXF JMS Code Execution Vulnerability",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This flaw should be considered Important because the impact goes beyond a simple denial of service or configuration misuse. By allowing untrusted users to configure JMS with RMI or LDAP URLs, attackers could achieve remote code execution by loading attacker-controlled classes or objects. Although this requires the precondition that the attacker has access to JMS configuration, in many enterprise deployments this may be exposed through integration layers or misconfigured permissions, making the attack surface broader than a purely local or limited-scope scenario.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch"
        ],
        "known_not_affected": [
          "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-48913"
        },
        {
          "category": "external",
          "summary": "RHBZ#2387221",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2387221"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-48913",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-48913"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-48913",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-48913"
        },
        {
          "category": "external",
          "summary": "https://lists.apache.org/thread/f1nv488ztc0js4g5ml2v88mzkzslyh83",
          "url": "https://lists.apache.org/thread/f1nv488ztc0js4g5ml2v88mzkzslyh83"
        }
      ],
      "release_date": "2025-08-08T09:21:22.208000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-03-18T13:19:11+00:00",
          "details": "Before applying the update, make sure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:4917"
        },
        {
          "category": "workaround",
          "details": "To reduce risk, deployments should restrict the allowed protocols in JMS configuration to trusted and expected values only. In particular, disallow the use of rmi:// and ldap:// URLs, which could be abused for remote class loading and code execution.",
          "product_ids": [
            "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 8.3,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L",
            "version": "3.1"
          },
          "products": [
            "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "org.apache.cxf/cxf: CXF JMS Code Execution Vulnerability"
    },
    {
      "cve": "CVE-2025-52999",
      "cwe": {
        "id": "CWE-121",
        "name": "Stack-based Buffer Overflow"
      },
      "discovery_date": "2025-06-25T18:00:54.693716+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2374804"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A nested data handling flaw was found in Jackson Core. When parsing particularly deeply nested data structures, a StackoverflowError can occur.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "com.fasterxml.jackson.core/jackson-core: jackson-core Potential StackoverflowError",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch"
        ],
        "known_not_affected": [
          "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-52999"
        },
        {
          "category": "external",
          "summary": "RHBZ#2374804",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2374804"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-52999",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-52999"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-52999",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-52999"
        },
        {
          "category": "external",
          "summary": "https://github.com/FasterXML/jackson-core/pull/943",
          "url": "https://github.com/FasterXML/jackson-core/pull/943"
        },
        {
          "category": "external",
          "summary": "https://github.com/FasterXML/jackson-core/security/advisories/GHSA-h46c-h94j-95f3",
          "url": "https://github.com/FasterXML/jackson-core/security/advisories/GHSA-h46c-h94j-95f3"
        }
      ],
      "release_date": "2025-06-25T17:02:57.428000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-03-18T13:19:11+00:00",
          "details": "Before applying the update, make sure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:4917"
        },
        {
          "category": "workaround",
          "details": "To mitigate this vulnerability, the recommendation is to avoid parsing input files from untrusted sources that may have excessively deep nested data structures; anything with a depth over 1000.",
          "product_ids": [
            "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "com.fasterxml.jackson.core/jackson-core: jackson-core Potential StackoverflowError"
    },
    {
      "cve": "CVE-2025-55163",
      "cwe": {
        "id": "CWE-770",
        "name": "Allocation of Resources Without Limits or Throttling"
      },
      "discovery_date": "2025-08-13T15:01:55.372237+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2388252"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Netty where malformed client requests can trigger server-side stream resets without triggering abuse counters. This issue, referred to as the \"MadeYouReset\" attack, allows malicious clients to induce excessive server workload by repeatedly causing server-side stream aborts. While not a protocol bug, this highlights a common implementation weakness that can be exploited to cause a denial of service (DoS).",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "netty: netty-codec-http2: Netty MadeYouReset HTTP/2 DDoS Vulnerability",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability is rated with an Important severity. It is simple to exploit because it does not require authentication and could result in a denial of service (DoS). While some DoS flaws are classified as Moderate, \u201cMadeYouReset\u201d is Important because of the limited barriers (no specialized tooling or advanced scripting) to exploitation, which directly impacts service availability. The vulnerability arises from an implementation weakness in HTTP/2 stream reset handling \u2014 malformed client requests can trigger server-side resets without incrementing abuse counters, allowing an attacker to bypass built-in request throttling and overhead limits. Since these resets consume CPU and memory resources and can be generated at scale over a single TCP/TLS connection, a remote attacker could exhaust server capacity quickly, impacting all legitimate clients.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch"
        ],
        "known_not_affected": [
          "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-55163"
        },
        {
          "category": "external",
          "summary": "RHBZ#2388252",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2388252"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-55163",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-55163"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-55163",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-55163"
        },
        {
          "category": "external",
          "summary": "https://github.com/netty/netty/security/advisories/GHSA-prj3-ccx8-p6x4",
          "url": "https://github.com/netty/netty/security/advisories/GHSA-prj3-ccx8-p6x4"
        },
        {
          "category": "external",
          "summary": "https://kb.cert.org/vuls/id/767506",
          "url": "https://kb.cert.org/vuls/id/767506"
        }
      ],
      "release_date": "2025-08-13T14:17:36.111000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-03-18T13:19:11+00:00",
          "details": "Before applying the update, make sure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:4917"
        },
        {
          "category": "workaround",
          "details": "No mitigation is currently available that meets Red Hat Product Security\u2019s standards for usability, deployment, applicability, or stability.",
          "product_ids": [
            "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "netty: netty-codec-http2: Netty MadeYouReset HTTP/2 DDoS Vulnerability"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Christiaan Swiers"
          ],
          "organization": "YouGina"
        },
        {
          "names": [
            "Tommy Williams"
          ],
          "organization": "HeroDevs"
        }
      ],
      "cve": "CVE-2026-0603",
      "cwe": {
        "id": "CWE-89",
        "name": "Improper Neutralization of Special Elements used in an SQL Command (\u0027SQL Injection\u0027)"
      },
      "discovery_date": "2026-01-05T13:12:29.816000+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2427147"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Hibernate. A remote attacker with low privileges could exploit a second-order SQL injection vulnerability by providing specially crafted, unsanitized non-alphanumeric characters in the ID column when the InlineIdsOrClauseBuilder is used. This could lead to sensitive information disclosure, such as reading system files, and allow for data manipulation or deletion within the application\u0027s database, resulting in an application level denial of service.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "org.hibernate/hibernate-core: Hibernate: Information disclosure and data deletion via second-order SQL injection",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability is rated Important for Red Hat products as it allows a remote attacker with low privileges to perform second-order SQL injection in applications using Hibernate\u0027s InlineIdsOrClauseBuilder with unsanitized non-alphanumeric characters in the ID column. This could lead to sensitive information disclosure and data manipulation or deletion.Affected Hibernate ORM versions are 5.2.8 through 5.6.15 (inclusive); earlier versions are not affected.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch"
        ],
        "known_not_affected": [
          "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.src",
          "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-0603"
        },
        {
          "category": "external",
          "summary": "RHBZ#2427147",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2427147"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-0603",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-0603"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-0603",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-0603"
        }
      ],
      "release_date": "2026-01-19T10:10:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-03-18T13:19:11+00:00",
          "details": "Before applying the update, make sure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258",
          "product_ids": [
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:4917"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 8.3,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L",
            "version": "3.1"
          },
          "products": [
            "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-commons-beanutils-0:1.11.0-2.redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-0:3.5.11-1.SP1_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-rt-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-services-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-apache-cxf-tools-0:3.5.11-1.SP1_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-eclipse-jgit-0:5.13.5.202508271544-2.r_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-elytron-web-0:1.9.6-2.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-glassfish-jsf-0:2.3.14-10.SP10_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hal-console-0:3.3.27-2.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-0:5.3.38-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-core-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-envers-0:5.3.38-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-0:6.0.23-4.SP2_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-hibernate-validator-cdi-0:6.0.23-4.SP2_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-0:1.5.24-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-common-spi-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-api-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-core-impl-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-deployers-common-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-jdbc-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-ironjacamar-validator-0:1.5.24-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-0:2.0.16-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-marshalling-river-0:2.0.16-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-0:1.10.0-43.Final_redhat_00043.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-cli-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jboss-server-migration-core-0:1.10.0-43.Final_redhat_00043.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-jbossws-cxf-0:5.4.17-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-buffer-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-haproxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-http2-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-memcache-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-mqtt-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-redis-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-smtp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-socks-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-stomp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-codec-xml-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-handler-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-handler-proxy-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-resolver-dns-classes-macos-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-classes-kqueue-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-epoll-debuginfo-0:4.1.124-1.Final_redhat_00001.1.el9eap.x86_64",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-native-unix-common-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-netty-transport-sctp-0:4.1.124-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-0:3.15.11-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-atom-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-cdi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-client-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-crypto-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jackson2-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxb-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jaxrs-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jettison-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jose-jwt-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-jsapi-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-binding-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-json-p-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-multipart-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-rxjava2-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-spring-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-validator-provider-11-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-resteasy-yaml-provider-0:3.15.11-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-0:2.2.39-1.Final_redhat_00001.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-undertow-server-0:1.9.6-2.Final_redhat_00001.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-0:7.4.24-4.GA_redhat_00002.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-0:1.15.27-1.Final_redhat_00002.1.el9eap.src",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-elytron-tool-0:1.15.27-1.Final_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk11-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk17-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-java-jdk8-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-javadocs-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch",
            "9Base-JBEAP-7.4-ELS:eap7-wildfly-modules-0:7.4.24-4.GA_redhat_00002.1.el9eap.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "org.hibernate/hibernate-core: Hibernate: Information disclosure and data deletion via second-order SQL injection"
    }
  ]
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2025-52999 (GCVE-0-2025-52999)

Tags

Sightings

Nomenclature