VDB
RHSA-2023%3A1855
RHSA-2023%3A1855
PUBLISHED
CVSS 7.5 HIGH
JBoss EAP XP 4.0.0.GA security release on the EAP 7.4.10 base is now available. See references for release notes. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Risk Scores
CVSS 3.1
7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Red Hat JBoss Enterprise Application Platform Expansion Pack |
Timeline
- Apr 18, 2023 CVE Published
- Nov 22, 2024 CVE Updated
- Apr 2, 2026 Distribution Patch
- Apr 2, 2026 Distribution Patch
- Apr 2, 2026 Security Advisory
- May 1, 2026 Security Advisory
- May 1, 2026 Security Advisory
- May 1, 2026 Security Advisory
References
- https://access.redhat.com/errata/RHSA-2023:1855 advisory
- https://access.redhat.com/security/updates/classification/#moderate url
- https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/7.4/html-single/red_hat_jboss_eap_xp_4.0.0_release_notes/index url
- https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/7.4/html-single/jboss_eap_xp_4.0_upgrade_and_migration_guide/index url
- https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/7.4/html-single/using_jboss_eap_xp_4.0.0/index url
- https://bugzilla.redhat.com/show_bug.cgi?id=2073401 url
- https://bugzilla.redhat.com/show_bug.cgi?id=2184161 url
- https://bugzilla.redhat.com/show_bug.cgi?id=2184176 url
- https://issues.redhat.com/browse/JBEAP-24683 url
- https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_1855.json advisory