VDB

RHSA-2024%3A2106

RHSA-2024%3A2106 PUBLISHED CVSS 7 HIGH

An update is now available for Red Hat build of Quarkus. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability. For more information, see the CVE links in the References section.

Risk Scores

CVSS 3.1
7
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected Products

VendorProductVersions
io.smallrye.reactive.smallrye
org.apache.james.apache
org.eclipse.angus.angus
org.freemarker.freemarker
org.elasticsearch.client.elasticsearch
com.apollographql.federation.federation
org.testcontainers.elasticsearch
org.apiguardian.apiguardian
org.jetbrains.annotations
org.mvnpm.emoji
org.antlr.antlr4
com.google.guava.failureaccess
org.mvnpm.es
com.google.errorprone.error_prone_annotations
aopalliance.aopalliance
org.ow2.asm.asm
Red Hat build of Quarkus 3.8.4.redhat
io.quarkus.arc.arc
io.agroal.agroal
org.mvnpm.ansi

…and 8 more

Timeline

  • May 7, 2024 CVE Published
  • Dec 1, 2024 CVE Updated
  • Apr 29, 2026 Distribution Patch
  • Apr 29, 2026 Distribution Patch
  • Apr 29, 2026 Security Advisory
Open in Interactive Console →
$ Console Community · 100/wk Open console ›