VDB
RHSA-2020%3A4401
RHSA-2020%3A4401
PUBLISHED
CVSS 7.5 HIGH
An update is now available for Red Hat JBoss Enterprise Application Platform 7.3 for Red Hat Enterprise Linux 6, 7, and 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Risk Scores
CVSS 3.1
7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Red Hat JBoss EAP 7.3 for BaseOS-8 | ||
| eap7 | ||
| Red Hat JBoss EAP 7.3 for RHEL 7 Server | ||
| Red Hat JBoss EAP 7.3 for RHEL 6 Server |
Timeline
- Oct 28, 2020 CVE Published
- Feb 8, 2024 PoC Published
- Mar 18, 2026 CVE Updated
- Apr 22, 2026 Distribution Patch
- Apr 22, 2026 Distribution Patch
- Apr 22, 2026 Security Advisory
- May 1, 2026 Security Advisory
References
- https://access.redhat.com/errata/RHSA-2020:4401 advisory
- https://access.redhat.com/security/updates/classification/#important url
- https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/7.3/ url
- https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/7.3/html-single/installation_guide/ url
- https://bugzilla.redhat.com/show_bug.cgi?id=1887664 url
- https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_4401.json advisory