{"id":"RHSA-2023:7637","summary":"Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4.14 on RHEL 7 security update","modified":"2026-04-02T10:05:49Z","published":"2024-09-30T15:48:00Z","related":["GO-2023-2102"],"upstream":["CVE-2023-26048","CVE-2023-26049","CVE-2023-2976","CVE-2023-35887","CVE-2023-39410","CVE-2023-44487","CVE-2023-4503","CVE-2023-5685"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2023:7637"},{"type":"ARTICLE","url":"https://access.redhat.com/security/updates/classification/#important"},{"type":"ARTICLE","url":"https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"},{"type":"ARTICLE","url":"https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/7.4/"},{"type":"ARTICLE","url":"https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/7.4/html-single/installation_guide/"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2184751"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2215229"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2236340"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2236341"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2240036"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2242521"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2242803"},{"type":"ARTICLE","url":"https://issues.redhat.com/browse/JBEAP-25004"},{"type":"ARTICLE","url":"https://issues.redhat.com/browse/JBEAP-25085"},{"type":"ARTICLE","url":"https://issues.redhat.com/browse/JBEAP-25086"},{"type":"ARTICLE","url":"https://issues.redhat.com/browse/JBEAP-25378"},{"type":"ARTICLE","url":"https://issues.redhat.com/browse/JBEAP-25380"},{"type":"ARTICLE","url":"https://issues.redhat.com/browse/JBEAP-25419"},{"type":"ARTICLE","url":"https://issues.redhat.com/browse/JBEAP-25451"},{"type":"ARTICLE","url":"https://issues.redhat.com/browse/JBEAP-25457"},{"type":"ARTICLE","url":"https://issues.redhat.com/browse/JBEAP-25541"},{"type":"ARTICLE","url":"https://issues.redhat.com/browse/JBEAP-25547"},{"type":"ARTICLE","url":"https://issues.redhat.com/browse/JBEAP-25576"},{"type":"ARTICLE","url":"https://issues.redhat.com/browse/JBEAP-25594"},{"type":"ARTICLE","url":"https://issues.redhat.com/browse/JBEAP-25627"},{"type":"ARTICLE","url":"https://issues.redhat.com/browse/JBEAP-25657"},{"type":"ARTICLE","url":"https://issues.redhat.com/browse/JBEAP-25685"},{"type":"ARTICLE","url":"https://issues.redhat.com/browse/JBEAP-25700"},{"type":"ARTICLE","url":"https://issues.redhat.com/browse/JBEAP-25716"},{"type":"ARTICLE","url":"https://issues.redhat.com/browse/JBEAP-25726"},{"type":"ARTICLE","url":"https://issues.redhat.com/browse/JBEAP-25772"},{"type":"ARTICLE","url":"https://issues.redhat.com/browse/JBEAP-25779"},{"type":"ARTICLE","url":"https://issues.redhat.com/browse/JBEAP-25803"},{"type":"ARTICLE","url":"https://issues.redhat.com/browse/JBEAP-25838"},{"type":"ARTICLE","url":"https://issues.redhat.com/browse/JBEAP-26041"},{"type":"ADVISORY","url":"https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_7637.json"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-2976"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2023-2976"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-2976"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-4503"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2023-4503"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-4503"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-5685"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2241822"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2023-5685"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-5685"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-26048"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2023-26048"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-26048"},{"type":"ARTICLE","url":"https://github.com/eclipse/jetty.project/security/advisories/GHSA-qw69-rqj8-6qw8"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-26049"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2023-26049"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-26049"},{"type":"ARTICLE","url":"https://github.com/eclipse/jetty.project/security/advisories/GHSA-p26g-97m4-6q7c"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-35887"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2023-35887"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-35887"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-39410"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2023-39410"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-39410"},{"type":"ARTICLE","url":"https://issues.apache.org/jira/browse/AVRO-3819"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-44487"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2023-44487"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-44487"},{"type":"ARTICLE","url":"https://github.com/dotnet/announcements/issues/277"},{"type":"ADVISORY","url":"https://pkg.go.dev/vuln/GO-2023-2102"},{"type":"ARTICLE","url":"https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487"},{"type":"ARTICLE","url":"https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/"},{"type":"ARTICLE","url":"https://www.cisa.gov/known-exploited-vulnerabilities-catalog"}],"affected":[{"package":{"name":"eap7-guava","ecosystem":"Red Hat:jboss_enterprise_application_platform:7.4::el7","purl":"pkg:rpm/redhat/eap7-guava"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:32.1.1-2.jre_redhat_00001.1.el7eap"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7637.json"}},{"package":{"name":"eap7-guava-libraries","ecosystem":"Red Hat:jboss_enterprise_application_platform:7.4::el7","purl":"pkg:rpm/redhat/eap7-guava-libraries"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:32.1.1-2.jre_redhat_00001.1.el7eap"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7637.json"}},{"package":{"name":"eap7-undertow","ecosystem":"Red Hat:jboss_enterprise_application_platform:7.4::el7","purl":"pkg:rpm/redhat/eap7-undertow"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.2.28-1.SP1_redhat_00001.1.el7eap"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7637.json"}},{"package":{"name":"eap7-wildfly","ecosystem":"Red Hat:jboss_enterprise_application_platform:7.4::el7","purl":"pkg:rpm/redhat/eap7-wildfly"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.4.14-5.GA_redhat_00002.1.el7eap"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7637.json"}},{"package":{"name":"eap7-wildfly-java-jdk11","ecosystem":"Red Hat:jboss_enterprise_application_platform:7.4::el7","purl":"pkg:rpm/redhat/eap7-wildfly-java-jdk11"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.4.14-5.GA_redhat_00002.1.el7eap"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7637.json"}},{"package":{"name":"eap7-wildfly-java-jdk8","ecosystem":"Red Hat:jboss_enterprise_application_platform:7.4::el7","purl":"pkg:rpm/redhat/eap7-wildfly-java-jdk8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.4.14-5.GA_redhat_00002.1.el7eap"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7637.json"}},{"package":{"name":"eap7-wildfly-javadocs","ecosystem":"Red Hat:jboss_enterprise_application_platform:7.4::el7","purl":"pkg:rpm/redhat/eap7-wildfly-javadocs"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.4.14-5.GA_redhat_00002.1.el7eap"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7637.json"}},{"package":{"name":"eap7-wildfly-modules","ecosystem":"Red Hat:jboss_enterprise_application_platform:7.4::el7","purl":"pkg:rpm/redhat/eap7-wildfly-modules"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.4.14-5.GA_redhat_00002.1.el7eap"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7637.json"}},{"package":{"name":"eap7-jboss-xnio-base","ecosystem":"Red Hat:jboss_enterprise_application_platform:7.4::el7","purl":"pkg:rpm/redhat/eap7-jboss-xnio-base"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.8.11-1.SP1_redhat_00001.1.el7eap"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7637.json"}},{"package":{"name":"eap7-activemq-artemis","ecosystem":"Red Hat:jboss_enterprise_application_platform:7.4::el7","purl":"pkg:rpm/redhat/eap7-activemq-artemis"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.16.0-17.redhat_00051.1.el7eap"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7637.json"}},{"package":{"name":"eap7-activemq-artemis-cli","ecosystem":"Red Hat:jboss_enterprise_application_platform:7.4::el7","purl":"pkg:rpm/redhat/eap7-activemq-artemis-cli"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.16.0-17.redhat_00051.1.el7eap"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7637.json"}},{"package":{"name":"eap7-activemq-artemis-commons","ecosystem":"Red Hat:jboss_enterprise_application_platform:7.4::el7","purl":"pkg:rpm/redhat/eap7-activemq-artemis-commons"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.16.0-17.redhat_00051.1.el7eap"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7637.json"}},{"package":{"name":"eap7-activemq-artemis-core-client","ecosystem":"Red Hat:jboss_enterprise_application_platform:7.4::el7","purl":"pkg:rpm/redhat/eap7-activemq-artemis-core-client"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.16.0-17.redhat_00051.1.el7eap"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7637.json"}},{"package":{"name":"eap7-activemq-artemis-dto","ecosystem":"Red Hat:jboss_enterprise_application_platform:7.4::el7","purl":"pkg:rpm/redhat/eap7-activemq-artemis-dto"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.16.0-17.redhat_00051.1.el7eap"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7637.json"}},{"package":{"name":"eap7-activemq-artemis-hornetq-protocol","ecosystem":"Red Hat:jboss_enterprise_application_platform:7.4::el7","purl":"pkg:rpm/redhat/eap7-activemq-artemis-hornetq-protocol"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.16.0-17.redhat_00051.1.el7eap"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7637.json"}},{"package":{"name":"eap7-activemq-artemis-hqclient-protocol","ecosystem":"Red Hat:jboss_enterprise_application_platform:7.4::el7","purl":"pkg:rpm/redhat/eap7-activemq-artemis-hqclient-protocol"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.16.0-17.redhat_00051.1.el7eap"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7637.json"}},{"package":{"name":"eap7-activemq-artemis-jdbc-store","ecosystem":"Red Hat:jboss_enterprise_application_platform:7.4::el7","purl":"pkg:rpm/redhat/eap7-activemq-artemis-jdbc-store"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.16.0-17.redhat_00051.1.el7eap"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7637.json"}},{"package":{"name":"eap7-activemq-artemis-jms-client","ecosystem":"Red Hat:jboss_enterprise_application_platform:7.4::el7","purl":"pkg:rpm/redhat/eap7-activemq-artemis-jms-client"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.16.0-17.redhat_00051.1.el7eap"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7637.json"}},{"package":{"name":"eap7-activemq-artemis-jms-server","ecosystem":"Red Hat:jboss_enterprise_application_platform:7.4::el7","purl":"pkg:rpm/redhat/eap7-activemq-artemis-jms-server"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.16.0-17.redhat_00051.1.el7eap"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7637.json"}},{"package":{"name":"eap7-activemq-artemis-journal","ecosystem":"Red Hat:jboss_enterprise_application_platform:7.4::el7","purl":"pkg:rpm/redhat/eap7-activemq-artemis-journal"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.16.0-17.redhat_00051.1.el7eap"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7637.json"}},{"package":{"name":"eap7-activemq-artemis-ra","ecosystem":"Red Hat:jboss_enterprise_application_platform:7.4::el7","purl":"pkg:rpm/redhat/eap7-activemq-artemis-ra"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.16.0-17.redhat_00051.1.el7eap"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7637.json"}},{"package":{"name":"eap7-activemq-artemis-selector","ecosystem":"Red Hat:jboss_enterprise_application_platform:7.4::el7","purl":"pkg:rpm/redhat/eap7-activemq-artemis-selector"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.16.0-17.redhat_00051.1.el7eap"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7637.json"}},{"package":{"name":"eap7-activemq-artemis-server","ecosystem":"Red Hat:jboss_enterprise_application_platform:7.4::el7","purl":"pkg:rpm/redhat/eap7-activemq-artemis-server"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.16.0-17.redhat_00051.1.el7eap"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7637.json"}},{"package":{"name":"eap7-activemq-artemis-service-extensions","ecosystem":"Red Hat:jboss_enterprise_application_platform:7.4::el7","purl":"pkg:rpm/redhat/eap7-activemq-artemis-service-extensions"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.16.0-17.redhat_00051.1.el7eap"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7637.json"}},{"package":{"name":"eap7-activemq-artemis-tools","ecosystem":"Red Hat:jboss_enterprise_application_platform:7.4::el7","purl":"pkg:rpm/redhat/eap7-activemq-artemis-tools"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.16.0-17.redhat_00051.1.el7eap"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7637.json"}},{"package":{"name":"eap7-apache-sshd","ecosystem":"Red Hat:jboss_enterprise_application_platform:7.4::el7","purl":"pkg:rpm/redhat/eap7-apache-sshd"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.9.3-1.redhat_00001.1.el7eap"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7637.json"}},{"package":{"name":"eap7-avro","ecosystem":"Red Hat:jboss_enterprise_application_platform:7.4::el7","purl":"pkg:rpm/redhat/eap7-avro"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.11.3-1.redhat_00001.1.el7eap"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7637.json"}},{"package":{"name":"eap7-hal-console","ecosystem":"Red Hat:jboss_enterprise_application_platform:7.4::el7","purl":"pkg:rpm/redhat/eap7-hal-console"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.3.20-1.Final_redhat_00001.1.el7eap"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7637.json"}},{"package":{"name":"eap7-hibernate","ecosystem":"Red Hat:jboss_enterprise_application_platform:7.4::el7","purl":"pkg:rpm/redhat/eap7-hibernate"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:5.3.32-1.Final_redhat_00001.1.el7eap"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7637.json"}},{"package":{"name":"eap7-hibernate-core","ecosystem":"Red Hat:jboss_enterprise_application_platform:7.4::el7","purl":"pkg:rpm/redhat/eap7-hibernate-core"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:5.3.32-1.Final_redhat_00001.1.el7eap"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7637.json"}},{"package":{"name":"eap7-hibernate-entitymanager","ecosystem":"Red Hat:jboss_enterprise_application_platform:7.4::el7","purl":"pkg:rpm/redhat/eap7-hibernate-entitymanager"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:5.3.32-1.Final_redhat_00001.1.el7eap"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7637.json"}},{"package":{"name":"eap7-hibernate-envers","ecosystem":"Red Hat:jboss_enterprise_application_platform:7.4::el7","purl":"pkg:rpm/redhat/eap7-hibernate-envers"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:5.3.32-1.Final_redhat_00001.1.el7eap"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7637.json"}},{"package":{"name":"eap7-hibernate-java8","ecosystem":"Red Hat:jboss_enterprise_application_platform:7.4::el7","purl":"pkg:rpm/redhat/eap7-hibernate-java8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:5.3.32-1.Final_redhat_00001.1.el7eap"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7637.json"}},{"package":{"name":"eap7-infinispan","ecosystem":"Red Hat:jboss_enterprise_application_platform:7.4::el7","purl":"pkg:rpm/redhat/eap7-infinispan"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:11.0.18-1.Final_redhat_00001.1.el7eap"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7637.json"}},{"package":{"name":"eap7-infinispan-cachestore-jdbc","ecosystem":"Red Hat:jboss_enterprise_application_platform:7.4::el7","purl":"pkg:rpm/redhat/eap7-infinispan-cachestore-jdbc"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:11.0.18-1.Final_redhat_00001.1.el7eap"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7637.json"}},{"package":{"name":"eap7-infinispan-cachestore-remote","ecosystem":"Red Hat:jboss_enterprise_application_platform:7.4::el7","purl":"pkg:rpm/redhat/eap7-infinispan-cachestore-remote"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:11.0.18-1.Final_redhat_00001.1.el7eap"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7637.json"}},{"package":{"name":"eap7-infinispan-client-hotrod","ecosystem":"Red Hat:jboss_enterprise_application_platform:7.4::el7","purl":"pkg:rpm/redhat/eap7-infinispan-client-hotrod"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:11.0.18-1.Final_redhat_00001.1.el7eap"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7637.json"}},{"package":{"name":"eap7-infinispan-commons","ecosystem":"Red Hat:jboss_enterprise_application_platform:7.4::el7","purl":"pkg:rpm/redhat/eap7-infinispan-commons"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:11.0.18-1.Final_redhat_00001.1.el7eap"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7637.json"}},{"package":{"name":"eap7-infinispan-component-annotations","ecosystem":"Red Hat:jboss_enterprise_application_platform:7.4::el7","purl":"pkg:rpm/redhat/eap7-infinispan-component-annotations"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:11.0.18-1.Final_redhat_00001.1.el7eap"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7637.json"}},{"package":{"name":"eap7-infinispan-core","ecosystem":"Red Hat:jboss_enterprise_application_platform:7.4::el7","purl":"pkg:rpm/redhat/eap7-infinispan-core"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:11.0.18-1.Final_redhat_00001.1.el7eap"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7637.json"}},{"package":{"name":"eap7-infinispan-hibernate-cache-commons","ecosystem":"Red Hat:jboss_enterprise_application_platform:7.4::el7","purl":"pkg:rpm/redhat/eap7-infinispan-hibernate-cache-commons"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:11.0.18-1.Final_redhat_00001.1.el7eap"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7637.json"}},{"package":{"name":"eap7-infinispan-hibernate-cache-spi","ecosystem":"Red Hat:jboss_enterprise_application_platform:7.4::el7","purl":"pkg:rpm/redhat/eap7-infinispan-hibernate-cache-spi"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:11.0.18-1.Final_redhat_00001.1.el7eap"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7637.json"}},{"package":{"name":"eap7-infinispan-hibernate-cache-v53","ecosystem":"Red Hat:jboss_enterprise_application_platform:7.4::el7","purl":"pkg:rpm/redhat/eap7-infinispan-hibernate-cache-v53"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:11.0.18-1.Final_redhat_00001.1.el7eap"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7637.json"}},{"package":{"name":"eap7-jandex","ecosystem":"Red Hat:jboss_enterprise_application_platform:7.4::el7","purl":"pkg:rpm/redhat/eap7-jandex"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.4.4-1.Final_redhat_00001.1.el7eap"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7637.json"}},{"package":{"name":"eap7-jboss-jsp-api_2.3_spec","ecosystem":"Red Hat:jboss_enterprise_application_platform:7.4::el7","purl":"pkg:rpm/redhat/eap7-jboss-jsp-api_2.3_spec"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.0.1-1.Final_redhat_00001.1.el7eap"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7637.json"}},{"package":{"name":"eap7-jboss-marshalling","ecosystem":"Red Hat:jboss_enterprise_application_platform:7.4::el7","purl":"pkg:rpm/redhat/eap7-jboss-marshalling"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.0.14-1.SP1_redhat_00001.1.el7eap"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7637.json"}},{"package":{"name":"eap7-jboss-marshalling-river","ecosystem":"Red Hat:jboss_enterprise_application_platform:7.4::el7","purl":"pkg:rpm/redhat/eap7-jboss-marshalling-river"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.0.14-1.SP1_redhat_00001.1.el7eap"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7637.json"}},{"package":{"name":"eap7-jboss-server-migration","ecosystem":"Red Hat:jboss_enterprise_application_platform:7.4::el7","purl":"pkg:rpm/redhat/eap7-jboss-server-migration"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.10.0-33.Final_redhat_00032.1.el7eap"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7637.json"}},{"package":{"name":"eap7-jboss-server-migration-cli","ecosystem":"Red Hat:jboss_enterprise_application_platform:7.4::el7","purl":"pkg:rpm/redhat/eap7-jboss-server-migration-cli"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.10.0-33.Final_redhat_00032.1.el7eap"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7637.json"}},{"package":{"name":"eap7-jboss-server-migration-core","ecosystem":"Red Hat:jboss_enterprise_application_platform:7.4::el7","purl":"pkg:rpm/redhat/eap7-jboss-server-migration-core"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.10.0-33.Final_redhat_00032.1.el7eap"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7637.json"}},{"package":{"name":"eap7-jbossws-cxf","ecosystem":"Red Hat:jboss_enterprise_application_platform:7.4::el7","purl":"pkg:rpm/redhat/eap7-jbossws-cxf"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:5.4.9-1.Final_redhat_00001.1.el7eap"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7637.json"}},{"package":{"name":"eap7-jgroups","ecosystem":"Red Hat:jboss_enterprise_application_platform:7.4::el7","purl":"pkg:rpm/redhat/eap7-jgroups"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.2.23-1.Final_redhat_00001.1.el7eap"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7637.json"}},{"package":{"name":"eap7-weld-core","ecosystem":"Red Hat:jboss_enterprise_application_platform:7.4::el7","purl":"pkg:rpm/redhat/eap7-weld-core"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.1.10-2.Final_redhat_00001.1.el7eap"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7637.json"}},{"package":{"name":"eap7-weld-core-impl","ecosystem":"Red Hat:jboss_enterprise_application_platform:7.4::el7","purl":"pkg:rpm/redhat/eap7-weld-core-impl"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.1.10-2.Final_redhat_00001.1.el7eap"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7637.json"}},{"package":{"name":"eap7-weld-core-jsf","ecosystem":"Red Hat:jboss_enterprise_application_platform:7.4::el7","purl":"pkg:rpm/redhat/eap7-weld-core-jsf"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.1.10-2.Final_redhat_00001.1.el7eap"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7637.json"}},{"package":{"name":"eap7-weld-ejb","ecosystem":"Red Hat:jboss_enterprise_application_platform:7.4::el7","purl":"pkg:rpm/redhat/eap7-weld-ejb"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.1.10-2.Final_redhat_00001.1.el7eap"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7637.json"}},{"package":{"name":"eap7-weld-jta","ecosystem":"Red Hat:jboss_enterprise_application_platform:7.4::el7","purl":"pkg:rpm/redhat/eap7-weld-jta"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.1.10-2.Final_redhat_00001.1.el7eap"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7637.json"}},{"package":{"name":"eap7-weld-probe-core","ecosystem":"Red Hat:jboss_enterprise_application_platform:7.4::el7","purl":"pkg:rpm/redhat/eap7-weld-probe-core"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.1.10-2.Final_redhat_00001.1.el7eap"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7637.json"}},{"package":{"name":"eap7-weld-web","ecosystem":"Red Hat:jboss_enterprise_application_platform:7.4::el7","purl":"pkg:rpm/redhat/eap7-weld-web"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.1.10-2.Final_redhat_00001.1.el7eap"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7637.json"}},{"package":{"name":"eap7-wildfly-transaction-client","ecosystem":"Red Hat:jboss_enterprise_application_platform:7.4::el7","purl":"pkg:rpm/redhat/eap7-wildfly-transaction-client"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.1.16-1.Final_redhat_00001.1.el7eap"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7637.json"}},{"package":{"name":"eap7-yasson","ecosystem":"Red Hat:jboss_enterprise_application_platform:7.4::el7","purl":"pkg:rpm/redhat/eap7-yasson"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.0.11-4.redhat_00002.1.el7eap"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2023:7637.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}]}