VDB
RHSA-2016%3A2068
RHSA-2016%3A2068
PUBLISHED
CVSS 7.5 HIGH
Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 6.4.11 update on RHEL 6
Risk Scores
CVSS 3.0
7.5
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Red Hat:jboss_enterprise_application_platform:6::el6 | jboss-as-modcluster | 0, 0 |
| Red Hat:jboss_enterprise_application_platform:6::el6 | jboss-as-osgi | 0, 0 |
| Red Hat:jboss_enterprise_application_platform:6::el6 | jbossas-modules-eap | 0, 0 |
| Red Hat:jboss_enterprise_application_platform:6::el6 | jboss-as-osgi-service | 0, 0 |
| Red Hat:jboss_enterprise_application_platform:6::el6 | jboss-as-security | 0, 0 |
| Red Hat:jboss_enterprise_application_platform:6::el6 | jboss-as-jpa | 0, 0 |
| Red Hat:jboss_enterprise_application_platform:6::el6 | jboss-as-domain-http | 0, 0 |
| Red Hat:jboss_enterprise_application_platform:6::el6 | jboss-as-core-security | 0, 0 |
| Red Hat:jboss_enterprise_application_platform:6::el6 | picketlink-federation | 0, 0 |
| Red Hat:jboss_enterprise_application_platform:6::el6 | jboss-as-appclient | 0, 0 |
| Red Hat:jboss_enterprise_application_platform:6::el6 | jbossts | 0, 0 |
| Red Hat:jboss_enterprise_application_platform:6::el6 | jbossweb | 0, 0 |
| Red Hat:jboss_enterprise_application_platform:6::el6 | jbossas-javadocs | 0, 0 |
| Red Hat:jboss_enterprise_application_platform:6::el6 | jboss-as-version | 0, 0 |
| Red Hat:jboss_enterprise_application_platform:6::el6 | jboss-as-jsf | 0, 0 |
| Red Hat:jboss_enterprise_application_platform:6::el6 | jboss-as-transactions | 0, 0 |
| Red Hat:jboss_enterprise_application_platform:6::el6 | jboss-as-threads | 0, 0 |
| Red Hat:jboss_enterprise_application_platform:6::el6 | jboss-as-deployment-scanner | 0, 0 |
| Red Hat:jboss_enterprise_application_platform:6::el6 | jboss-as-picketlink | 0, 0 |
| Red Hat:jboss_enterprise_application_platform:6::el6 | hornetq | 0, 0 |
…and 50 more
Timeline
- Oct 17, 2016 CVE Published
- Mar 4, 2026 CVE Updated
- Apr 30, 2026 Distribution Patch
- Apr 30, 2026 Distribution Patch
- Apr 30, 2026 Security Advisory
- Apr 30, 2026 Security Advisory
References
- https://access.redhat.com/errata/RHSA-2016:2068 advisory
- https://access.redhat.com/security/updates/classification/#moderate article
- https://access.redhat.com/documentation/en-US/JBoss_Enterprise_Application_Platform/6.4/index.html article
- https://bugzilla.redhat.com/show_bug.cgi?id=1349468 report
- https://bugzilla.redhat.com/show_bug.cgi?id=1375625 report
- https://bugzilla.redhat.com/show_bug.cgi?id=1376065 report
- https://bugzilla.redhat.com/show_bug.cgi?id=1376185 report
- https://security.access.redhat.com/data/csaf/v2/advisories/2016/rhsa-2016_2068.json advisory
- https://access.redhat.com/security/cve/CVE-2016-3092 report
- https://www.cve.org/CVERecord?id=CVE-2016-3092 advisory
- https://nvd.nist.gov/vuln/detail/CVE-2016-3092 advisory
- http://tomcat.apache.org/security-7.html article
- http://tomcat.apache.org/security-8.html article