VDB
RHSA-2019%3A0131
RHSA-2019%3A0131
PUBLISHED
CVSS 5.300000190734863 MEDIUM
Red Hat Security Advisory: Red Hat JBoss Web Server 3.1 Service Pack 6 security and bug fix update
Risk Scores
CVSS 3.0
5.300000190734863
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Red Hat:jboss_enterprise_web_server:3.1::el7 | tomcat-native-debuginfo | 0, 0 |
| Red Hat:jboss_enterprise_web_server:3.1::el7 | tomcat8-el-2.2-api | 0, 0 |
| Red Hat:jboss_enterprise_web_server:3.1::el6 | tomcat7 | 0, 0 |
| Red Hat:jboss_enterprise_web_server:3.1::el7 | tomcat8-jsp-2.3-api | 0, 0 |
| Red Hat:jboss_enterprise_web_server:3.1::el6 | tomcat8-selinux | 0, 0 |
| Red Hat:jboss_enterprise_web_server:3.1::el7 | tomcat7 | 0, 0 |
| Red Hat:jboss_enterprise_web_server:3.1::el6 | tomcat8-jsvc | 0, 0 |
| Red Hat:jboss_enterprise_web_server:3.1::el6 | tomcat7-lib | 0, 0 |
| Red Hat:jboss_enterprise_web_server:3.1::el7 | tomcat7-docs-webapp | 0, 0 |
| Red Hat:jboss_enterprise_web_server:3.1::el6 | tomcat8-javadoc | 0, 0 |
| Red Hat:jboss_enterprise_web_server:3.1::el6 | tomcat8-lib | 0, 0 |
| Red Hat:jboss_enterprise_web_server:3.1::el6 | tomcat8-el-2.2-api | 0, 0 |
| Red Hat:jboss_enterprise_web_server:3.1::el6 | tomcat8 | 0, 0 |
| Red Hat:jboss_enterprise_web_server:3.1::el6 | tomcat7-docs-webapp | 0, 0 |
| Red Hat:jboss_enterprise_web_server:3.1::el7 | tomcat8-log4j | 0, 0 |
| Red Hat:jboss_enterprise_web_server:3.1::el6 | tomcat-native-debuginfo | 0, 0 |
| Red Hat:jboss_enterprise_web_server:3.1::el7 | tomcat7-jsvc | 0, 0 |
| Red Hat:jboss_enterprise_web_server:3.1::el7 | tomcat7-el-2.2-api | 0, 0 |
| Red Hat:jboss_enterprise_web_server:3.1::el7 | tomcat7-selinux | 0, 0 |
| Red Hat:jboss_enterprise_web_server:3.1::el6 | tomcat7-log4j | 0, 0 |
…and 32 more
Timeline
- Jan 22, 2019 CVE Published
- Apr 30, 2026 Distribution Patch
- Apr 30, 2026 Distribution Patch
- Apr 30, 2026 Security Advisory
- Apr 30, 2026 Security Advisory
- Apr 30, 2026 Security Advisory
- May 14, 2026 CVE Updated
References
- https://access.redhat.com/errata/RHSA-2019:0131 advisory
- https://access.redhat.com/security/updates/classification/#moderate article
- https://bugzilla.redhat.com/show_bug.cgi?id=1607580 report
- https://bugzilla.redhat.com/show_bug.cgi?id=1636512 report
- https://issues.redhat.com/browse/JWS-1140 article
- https://security.access.redhat.com/data/csaf/v2/advisories/2019/rhsa-2019_0131.json advisory
- https://access.redhat.com/security/cve/CVE-2018-8034 report
- https://www.cve.org/CVERecord?id=CVE-2018-8034 advisory
- https://nvd.nist.gov/vuln/detail/CVE-2018-8034 advisory
- https://access.redhat.com/security/cve/CVE-2018-11784 report
- https://www.cve.org/CVERecord?id=CVE-2018-11784 advisory
- https://nvd.nist.gov/vuln/detail/CVE-2018-11784 advisory
- http://tomcat.apache.org/security-7.html#Fixed_in_Apache_Tomcat_7.0.91 article
- http://tomcat.apache.org/security-8.html#Fixed_in_Apache_Tomcat_8.5.34 article
- http://tomcat.apache.org/security-9.html#Fixed_in_Apache_Tomcat_9.0.12 article