RHSA-2025%3A3452 — Vulnetix

RHSA-2025%3A3452 PUBLISHED CVSS 5.900000095367432 MEDIUM

An update is now available for Red Hat JBoss Core Services. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Risk Scores

CVSS 3.1

5.900000095367432

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected Products

Vendor	Product	Versions
	Red Hat JBoss Core Services on RHEL 8
	Red Hat JBoss Core Services on RHEL 7 Server
	jbcs

Exploit Intelligence

PoC - OpenSSL NPN Buffer Overread (github-poc-repo)
PoC - OpenSSL NPN Buffer Overread (github-poc-repo)
PoC - OpenSSL NPN Buffer Overread (github-poc-repo)
PoC - OpenSSL NPN Buffer Overread (github-poc)
PoC - OpenSSL NPN Buffer Overread (github-poc)
PoC - OpenSSL NPN Buffer Overread (github-poc)
https://bugzilla.redhat.com/show_bug.cgi?id=2273499 (circl)
https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_3452.json (circl)
https://bugzilla.redhat.com/show_bug.cgi?id=2295006 (circl)
https://bugzilla.redhat.com/show_bug.cgi?id=2294581 (circl)

…and 33 more exploits

Timeline

Apr 2, 2025 CVE Published
Apr 30, 2026 CVE Updated
Apr 30, 2026 Distribution Patch
Apr 30, 2026 Distribution Patch
Apr 30, 2026 Security Advisory
Apr 30, 2026 Security Advisory
Apr 30, 2026 Security Advisory
Apr 30, 2026 Security Advisory

References

Open in Interactive Console →