VDB
RHSA-2017%3A0868
RHSA-2017%3A0868
PUBLISHED
CVSS 3.700000047683716 LOW
An update is now available for Red Hat JBoss Fuse and Red Hat JBoss A-MQ. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Risk Scores
CVSS 3.1
3.700000047683716
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Red Hat JBoss A-MQ 6.3 | ||
| Red Hat JBoss Fuse 6.3 |
Exploit Intelligence
- Elasticsearch 1.4.0 < 1.4.2 Remote Code Execution exploit and vulnerable container (github-poc-repo)
- Elasticsearch 1.4.0 < 1.4.2 Remote Code Execution exploit and vulnerable container (github-poc-repo)
- cyberharsh/Groovy-scripting-engine-CVE-2015-1427 (github-poc-repo)
- cyberharsh/Groovy-scripting-engine-CVE-2015-1427 (github-poc-repo)
- cve-2015-1427 (github-poc-repo)
- cve-2015-1427 (github-poc-repo)
- xpgdgit/CVE-2015-1427 (github-poc-repo)
- xpgdgit/CVE-2015-1427 (github-poc-repo)
- To test elasticsearch vulnerabillity on newer version of debian (github-poc-repo)
- To test elasticsearch vulnerabillity on newer version of debian (github-poc-repo)
…and 46 more exploits
Timeline
- Apr 3, 2017 CVE Published
- Mar 18, 2026 CVE Updated
- Apr 5, 2026 Distribution Patch
- Apr 5, 2026 Distribution Patch
- Apr 5, 2026 Security Advisory
- Apr 30, 2026 Security Advisory
- Apr 30, 2026 Security Advisory
- Apr 30, 2026 Security Advisory
- Apr 30, 2026 Security Advisory
- Apr 30, 2026 Security Advisory
- Apr 30, 2026 Security Advisory
- Apr 30, 2026 Security Advisory
References
- https://access.redhat.com/errata/RHSA-2017:0868 advisory
- https://access.redhat.com/security/updates/classification/#important url
- https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?downloadType=securityPatches&product=jboss.fuse&version=6.3 url
- https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?downloadType=securityPatches&product=jboss.amq.broker&version=6.3.0 url
- https://access.redhat.com/documentation/en/red-hat-jboss-fuse/ url
- https://bugzilla.redhat.com/show_bug.cgi?id=873317 url
- https://bugzilla.redhat.com/show_bug.cgi?id=1191969 url
- https://bugzilla.redhat.com/show_bug.cgi?id=1360275 url
- https://bugzilla.redhat.com/show_bug.cgi?id=1393607 url
- https://bugzilla.redhat.com/show_bug.cgi?id=1406810 url
- https://bugzilla.redhat.com/show_bug.cgi?id=1406811 url
- https://bugzilla.redhat.com/show_bug.cgi?id=1413466 url
- https://bugzilla.redhat.com/show_bug.cgi?id=1420834 url
- https://security.access.redhat.com/data/csaf/v2/advisories/2017/rhsa-2017_0868.json advisory