VDB
RHSA-2020%3A2781
RHSA-2020%3A2781
PUBLISHED
CVSS 5.400000095367432 MEDIUM
An update is now available for Red Hat JBoss Enterprise Application Platform 6.4 for Red Hat Enterprise Linux 5. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Risk Scores
CVSS 3.1
5.400000095367432
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| hornetq | ||
| jboss | ||
| Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 5 Server | ||
| jbosgi | ||
| glassfish | ||
| ironjacamar | ||
| jbossweb | ||
| weld |
Exploit Intelligence
- Tomcat AJP文件读取/包含漏洞 (github-poc)
- Tomcat AJP文件读取/包含漏洞 (github-poc)
- Tomcat AJP文件读取/包含漏洞 (github-poc)
- Tomcat AJP文件读取/包含漏洞 (github-poc-repo)
- Tomcat AJP文件读取/包含漏洞 (github-poc-repo)
- Tomcat AJP文件读取/包含漏洞 (github-poc-repo)
- Modified version of auxiliary/admin/http/tomcat_ghostcat, it can Read any file (github-poc-repo)
- Modified version of auxiliary/admin/http/tomcat_ghostcat, it can Read any file (github-poc-repo)
- Modified version of auxiliary/admin/http/tomcat_ghostcat, it can Read any file (github-poc-repo)
- Exphub[漏洞利用脚本库] 包括Webloigc、Struts2、Tomcat、Nexus、Solr、Jboss、Drupal的漏洞利用脚本,最新添加CVE-2020-14882、CVE-2020-11444、CVE-2020-10204、CVE-2020-10199、CVE-2020-1938、CVE-2020-2551、CVE-2020-2555、CVE-2020-2883、CVE-2019-17558、CVE-2019-6340 (github-poc-repo)
…and 211 more exploits
Timeline
- Jul 1, 2020 CVE Published
- Nov 22, 2024 CVE Updated
- Apr 30, 2026 Distribution Patch
- Apr 30, 2026 Distribution Patch
- Apr 30, 2026 Security Advisory
- May 1, 2026 Security Advisory
- May 1, 2026 Security Advisory
References
- https://access.redhat.com/errata/RHSA-2020:2781 advisory
- https://access.redhat.com/security/updates/classification/#important url
- https://access.redhat.com/documentation/en-US/JBoss_Enterprise_Application_Platform/6.4/index.html url
- https://bugzilla.redhat.com/show_bug.cgi?id=1700855 url
- https://bugzilla.redhat.com/show_bug.cgi?id=1708467 url
- https://bugzilla.redhat.com/show_bug.cgi?id=1710432 url
- https://bugzilla.redhat.com/show_bug.cgi?id=1770615 url
- https://bugzilla.redhat.com/show_bug.cgi?id=1772542 url
- https://bugzilla.redhat.com/show_bug.cgi?id=1806398 url
- https://bugzilla.redhat.com/show_bug.cgi?id=1816579 url
- https://bugzilla.redhat.com/show_bug.cgi?id=1816629 url
- https://bugzilla.redhat.com/show_bug.cgi?id=1819214 url
- https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_2781.json advisory