VDB
RHSA-2018%3A1448
RHSA-2018%3A1448
PUBLISHED
CVSS 6.599999904632568 MEDIUM
An update is now available for Red Hat JBoss Enterprise Application Platform 6.4 for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Risk Scores
CVSS 3.1
6.599999904632568
CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:L
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| jbossas | ||
| jboss | ||
| jbossts | ||
| jgroups | ||
| lucene | ||
| codehaus | ||
| jbossweb | ||
| picketbox | ||
| Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7 Server | ||
| hornetq |
Exploit Intelligence
- Struts2の脆弱性S2-045, S2-055 および Jackson の脆弱性 CVE-2017-7525, CVE-2017-15095 の調査報告 (github-poc-repo)
- Struts2の脆弱性S2-045, S2-055 および Jackson の脆弱性 CVE-2017-7525, CVE-2017-15095 の調査報告 (github-poc-repo)
- Struts2の脆弱性S2-045, S2-055 および Jackson の脆弱性 CVE-2017-7525, CVE-2017-15095 の調査報告 (github-poc-repo)
- tafamace/CVE-2017-17485 (github-poc-repo)
- tafamace/CVE-2017-17485 (github-poc-repo)
- tafamace/CVE-2017-17485 (github-poc-repo)
- cve-2017-17485 PoC (github-poc-repo)
- cve-2017-17485 PoC (github-poc-repo)
- cve-2017-17485 PoC (github-poc-repo)
- CVE-2017-17485:Jackson-databind RCE (github-poc-repo)
…and 37 more exploits
Timeline
- May 14, 2018 CVE Published
- Apr 10, 2026 Distribution Patch
- Apr 10, 2026 Distribution Patch
- Apr 10, 2026 Security Advisory
- Apr 30, 2026 Security Advisory
- Apr 30, 2026 Security Advisory
- Apr 30, 2026 Security Advisory
- Apr 30, 2026 Security Advisory
- Apr 30, 2026 Security Advisory
- Apr 30, 2026 Security Advisory
- Apr 30, 2026 Security Advisory
- May 14, 2026 CVE Updated
References
- https://access.redhat.com/errata/RHSA-2018:1448 advisory
- https://access.redhat.com/security/updates/classification/#important url
- https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/?version=6.4 url
- https://bugzilla.redhat.com/show_bug.cgi?id=1379207 url
- https://bugzilla.redhat.com/show_bug.cgi?id=1454783 url
- https://bugzilla.redhat.com/show_bug.cgi?id=1506612 url
- https://bugzilla.redhat.com/show_bug.cgi?id=1528565 url
- https://bugzilla.redhat.com/show_bug.cgi?id=1548289 url
- https://bugzilla.redhat.com/show_bug.cgi?id=1548909 url
- https://bugzilla.redhat.com/show_bug.cgi?id=1549276 url
- https://bugzilla.redhat.com/show_bug.cgi?id=1559010 url
- https://bugzilla.redhat.com/show_bug.cgi?id=1559013 url
- https://bugzilla.redhat.com/show_bug.cgi?id=1559018 url
- https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_1448.json advisory