VDB
CVE-2024-8391
CVE-2024-8391
PUBLISHED
Es bestehen mehrere Schwachstellen im Red Hat Build von Quarkus. Diese Fehler existieren in den Komponenten Undertow und Eclipse Vert.x, die die JBoss Enterprise Application Platform betreffen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen.
EPSS 0.36% · 58.6th percentile
Risk Scores
EPSS Score
0.36%
58.6th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Red Hat | Red Hat JBoss Enterprise Application Platform 7.1.0 | |
| Red Hat | Red Hat JBoss Enterprise Application Platform 8 | |
| Red Hat | Red Hat JBoss Enterprise Application Platform Quarkus <3.8.6 | |
| Red Hat | Red Hat Enterprise Linux | |
| Red Hat | Red Hat JBoss Enterprise Application Platform 7.4 |
Timeline
- Sep 4, 2024 CVE Published
- Sep 5, 2024 EPSS Score
- Sep 25, 2024 EPSS Score
- Oct 5, 2024 Coalition ESS Score
- Oct 15, 2024 EPSS Score
- Nov 4, 2024 EPSS Score
- Nov 24, 2024 EPSS Score
- Dec 15, 2024 EPSS Score
- Jan 4, 2025 EPSS Score
- Jan 21, 2025 CVE Updated
- Jan 24, 2025 EPSS Score
- Feb 13, 2025 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-2206.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-2206 advisory
- https://access.redhat.com/errata/RHSA-2024:6437 advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=2274437 advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=2309758 advisory
- https://access.redhat.com/errata/RHSA-2024:7052 advisory
- https://access.redhat.com/errata/RHSA-2024:8023 advisory
- https://access.redhat.com/errata/RHSA-2025:0542 advisory