Risk Scores
CVSS v3.1
6.5
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
EPSS Score
0.20%
42.2th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Red Hat | Red Hat JBoss Enterprise Application Platform 7.4 for RHEL 9 | 0:7.4.13-8.GA_redhat_00001.1.el9eap |
| Red Hat | Red Hat JBoss Enterprise Application Platform 7.4 for RHEL 9 | 0:1.15.20-1.Final_redhat_00001.1.el9eap |
| Red Hat | Red Hat JBoss Enterprise Application Platform 7 | |
| redhat | wildfly_core | 0 |
| Red Hat | Red Hat JBoss Enterprise Application Platform 7.4 for RHEL 8 | 0:7.4.13-8.GA_redhat_00001.1.el8eap |
| Red Hat | Red Hat JBoss Enterprise Application Platform 7.4 on RHEL 7 | 0:7.4.13-8.GA_redhat_00001.1.el7eap |
| redhat | jboss_enterprise_application_platform | 7.4 |
| Maven | org.wildfly.core:wildfly-controller | 0 |
| Red Hat | Red Hat JBoss Enterprise Application Platform 8 | |
| Red Hat | Red Hat JBoss Enterprise Application Platform 7.4 on RHEL 7 | 0:1.15.20-1.Final_redhat_00001.1.el7eap |
| Red Hat | Red Hat JBoss Enterprise Application Platform 7.4 for RHEL 8 | 0:1.15.20-1.Final_redhat_00001.1.el8eap |
Timeline
- Nov 8, 2023 CVE Published
- Nov 8, 2023 EPSS Score
- Dec 8, 2023 EPSS Score
- Jan 7, 2024 EPSS Score
- Feb 6, 2024 EPSS Score
- Mar 6, 2024 EPSS Score
- Apr 5, 2024 EPSS Score
- May 5, 2024 EPSS Score
- Jun 4, 2024 EPSS Score
- Jul 5, 2024 EPSS Score
- Aug 4, 2024 EPSS Score
- Sep 3, 2024 EPSS Score
References
- RHSA-2023:5484 vendor-advisory
- RHSA-2023:5485 vendor-advisory
- RHSA-2023:5486 vendor-advisory
- RHSA-2023:5488 vendor-advisory
- https://access.redhat.com/security/cve/CVE-2023-4061 vdb
- RHBZ#2228608 issue
- https://nvd.nist.gov/vuln/detail/CVE-2023-4061 advisory
- https://github.com/wildfly/wildfly-core/pull/5703 url
- https://github.com/wildfly/wildfly-core/commit/25728f370c2e90969854717ba4bb5182727f3f49 url
- https://github.com/wildfly/wildfly-core package