VDB
RHSA-2016%3A1433
RHSA-2016%3A1433
PUBLISHED
CVSS 9.800000190734863 CRITICAL
Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 6.4.9 update
Risk Scores
CVSS 3.0
9.800000190734863
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Red Hat:jboss_enterprise_application_platform:6::el6 | jbossas-standalone | 0, 0 |
| Red Hat:jboss_enterprise_application_platform:6::el6 | jboss-as-sar | 0, 0 |
| Red Hat:jboss_enterprise_application_platform:6::el6 | jboss-as-mail | 0, 0 |
| Red Hat:jboss_enterprise_application_platform:6::el6 | glassfish-jsf-eap6 | 0, 0 |
| Red Hat:jboss_enterprise_application_platform:6::el6 | jbossas-modules-eap | 0, 0 |
| Red Hat:jboss_enterprise_application_platform:6::el6 | picketlink-federation | 0, 0 |
| Red Hat:jboss_enterprise_application_platform:6::el6 | jboss-as-threads | 0, 0 |
| Red Hat:jboss_enterprise_application_platform:6::el6 | jboss-as-weld | 0, 0 |
| Red Hat:jboss_enterprise_application_platform:6::el6 | jboss-as-ee | 0, 0 |
| Red Hat:jboss_enterprise_application_platform:6::el6 | jboss-as-jaxrs | 0, 0 |
| Red Hat:jboss_enterprise_application_platform:6::el6 | jboss-as-osgi-service | 0, 0 |
| Red Hat:jboss_enterprise_application_platform:6::el6 | jboss-as-cli | 0, 0 |
| Red Hat:jboss_enterprise_application_platform:6::el6 | jbossweb | 0, 0 |
| Red Hat:jboss_enterprise_application_platform:6::el6 | jboss-as-controller-client | 0, 0 |
| Red Hat:jboss_enterprise_application_platform:6::el6 | xalan-j2-eap6 | 0, 0 |
| Red Hat:jboss_enterprise_application_platform:6::el6 | jboss-as-deployment-scanner | 0, 0 |
| Red Hat:jboss_enterprise_application_platform:6::el6 | jboss-as-jsr77 | 0, 0 |
| Red Hat:jboss_enterprise_application_platform:6::el6 | jboss-as-domain-http | 0, 0 |
| Red Hat:jboss_enterprise_application_platform:6::el6 | jboss-as-network | 0, 0 |
| Red Hat:jboss_enterprise_application_platform:6::el6 | jboss-as-transactions | 0, 0 |
…and 54 more
Timeline
- Jul 18, 2016 CVE Published
- Apr 30, 2026 Distribution Patch
- Apr 30, 2026 Distribution Patch
- Apr 30, 2026 Security Advisory
- Apr 30, 2026 Security Advisory
- Apr 30, 2026 Security Advisory
- May 14, 2026 CVE Updated
References
- https://access.redhat.com/errata/RHSA-2016:1433 advisory
- https://access.redhat.com/security/updates/classification/#critical article
- https://access.redhat.com/documentation/en/red-hat-jboss-enterprise-application-platform/?version=6.4 article
- https://access.redhat.com/articles/2360521 article
- https://bugzilla.redhat.com/show_bug.cgi?id=1265698 report
- https://bugzilla.redhat.com/show_bug.cgi?id=1313589 report
- https://bugzilla.redhat.com/show_bug.cgi?id=1343602 report
- https://bugzilla.redhat.com/show_bug.cgi?id=1343605 report
- https://bugzilla.redhat.com/show_bug.cgi?id=1343610 report
- https://bugzilla.redhat.com/show_bug.cgi?id=1343620 report
- https://security.access.redhat.com/data/csaf/v2/advisories/2016/rhsa-2016_1433.json advisory
- https://access.redhat.com/security/cve/CVE-2015-5174 report
- https://www.cve.org/CVERecord?id=CVE-2015-5174 advisory
- https://nvd.nist.gov/vuln/detail/CVE-2015-5174 advisory
- http://seclists.org/bugtraq/2016/Feb/149 article
- https://access.redhat.com/security/cve/CVE-2016-2141 report
- https://www.cve.org/CVERecord?id=CVE-2016-2141 advisory
- https://nvd.nist.gov/vuln/detail/CVE-2016-2141 advisory