{"id":"RHSA-2020:2781","summary":"Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 6.4.23 security update","modified":"2026-03-11T07:16:54.449929Z","published":"2024-09-29T17:25:49Z","upstream":["CVE-2019-14885","CVE-2020-1938"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2020:2781"},{"type":"ARTICLE","url":"https://access.redhat.com/security/updates/classification/#important"},{"type":"ARTICLE","url":"https://access.redhat.com/documentation/en-US/JBoss_Enterprise_Application_Platform/6.4/index.html"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1700855"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1708467"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1710432"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1770615"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1772542"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1806398"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1816579"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1816629"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1819214"},{"type":"ADVISORY","url":"https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_2781.json"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2019-14885"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2019-14885"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2019-14885"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-1938"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-1938"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-1938"},{"type":"ARTICLE","url":"https://meterpreter.org/cve-2020-1938-apache-tomcat-ajp-connector-remote-code-execution-vulnerability-alert/"},{"type":"ARTICLE","url":"https://tomcat.apache.org/security-7.html#Fixed_in_Apache_Tomcat_7.0.100"},{"type":"ARTICLE","url":"https://tomcat.apache.org/security-8.html#Fixed_in_Apache_Tomcat_8.5.51"},{"type":"ARTICLE","url":"https://tomcat.apache.org/security-9.html#Fixed_in_Apache_Tomcat_9.0.31"},{"type":"ARTICLE","url":"https://www.cnvd.org.cn/webinfo/show/5415"},{"type":"ARTICLE","url":"https://www.tenable.com/blog/cve-2020-1938-ghostcat-apache-tomcat-ajp-file-readinclusion-vulnerability-cnvd-2020-10487"},{"type":"ARTICLE","url":"https://www.cisa.gov/known-exploited-vulnerabilities-catalog"}],"affected":[{"package":{"name":"glassfish-jsf12-eap6","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/glassfish-jsf12-eap6"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.2.15-11.b01_SP2_redhat_2.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"hornetq","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/hornetq"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.3.25-29.SP31_redhat_00001.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"ironjacamar-common-api-eap6","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/ironjacamar-common-api-eap6"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.0.44-1.Final_redhat_00001.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"ironjacamar-common-impl-eap6","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/ironjacamar-common-impl-eap6"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.0.44-1.Final_redhat_00001.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"ironjacamar-common-spi-eap6","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/ironjacamar-common-spi-eap6"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.0.44-1.Final_redhat_00001.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"ironjacamar-core-api-eap6","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/ironjacamar-core-api-eap6"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.0.44-1.Final_redhat_00001.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"ironjacamar-core-impl-eap6","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/ironjacamar-core-impl-eap6"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.0.44-1.Final_redhat_00001.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"ironjacamar-deployers-common-eap6","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/ironjacamar-deployers-common-eap6"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.0.44-1.Final_redhat_00001.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"ironjacamar-eap6","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/ironjacamar-eap6"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.0.44-1.Final_redhat_00001.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"ironjacamar-jdbc-eap6","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/ironjacamar-jdbc-eap6"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.0.44-1.Final_redhat_00001.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"ironjacamar-spec-api-eap6","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/ironjacamar-spec-api-eap6"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.0.44-1.Final_redhat_00001.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"ironjacamar-validator-eap6","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/ironjacamar-validator-eap6"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.0.44-1.Final_redhat_00001.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jbosgi-repository","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jbosgi-repository"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.1.0-3.Final_redhat_3.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jboss-as-appclient","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jboss-as-appclient"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.23-3.Final_redhat_00002.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jboss-as-cli","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jboss-as-cli"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.23-3.Final_redhat_00002.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jboss-as-client-all","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jboss-as-client-all"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.23-3.Final_redhat_00002.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jboss-as-clustering","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jboss-as-clustering"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.23-3.Final_redhat_00002.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jboss-as-cmp","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jboss-as-cmp"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.23-3.Final_redhat_00002.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jboss-as-configadmin","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jboss-as-configadmin"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.23-3.Final_redhat_00002.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jboss-as-connector","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jboss-as-connector"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.23-3.Final_redhat_00002.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jboss-as-controller","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jboss-as-controller"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.23-3.Final_redhat_00002.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jboss-as-controller-client","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jboss-as-controller-client"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.23-3.Final_redhat_00002.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jboss-as-core-security","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jboss-as-core-security"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.23-3.Final_redhat_00002.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jboss-as-deployment-repository","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jboss-as-deployment-repository"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.23-3.Final_redhat_00002.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jboss-as-deployment-scanner","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jboss-as-deployment-scanner"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.23-3.Final_redhat_00002.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jboss-as-domain-http","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jboss-as-domain-http"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.23-3.Final_redhat_00002.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jboss-as-domain-management","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jboss-as-domain-management"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.23-3.Final_redhat_00002.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jboss-as-ee","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jboss-as-ee"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.23-3.Final_redhat_00002.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jboss-as-ee-deployment","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jboss-as-ee-deployment"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.23-3.Final_redhat_00002.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jboss-as-ejb3","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jboss-as-ejb3"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.23-3.Final_redhat_00002.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jboss-as-embedded","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jboss-as-embedded"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.23-3.Final_redhat_00002.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jboss-as-host-controller","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jboss-as-host-controller"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.23-3.Final_redhat_00002.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jboss-as-jacorb","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jboss-as-jacorb"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.23-3.Final_redhat_00002.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jboss-as-jaxr","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jboss-as-jaxr"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.23-3.Final_redhat_00002.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jboss-as-jaxrs","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jboss-as-jaxrs"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.23-3.Final_redhat_00002.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jboss-as-jdr","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jboss-as-jdr"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.23-3.Final_redhat_00002.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jboss-as-jmx","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jboss-as-jmx"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.23-3.Final_redhat_00002.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jboss-as-jpa","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jboss-as-jpa"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.23-3.Final_redhat_00002.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jboss-as-jsf","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jboss-as-jsf"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.23-3.Final_redhat_00002.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jboss-as-jsr77","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jboss-as-jsr77"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.23-3.Final_redhat_00002.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jboss-as-logging","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jboss-as-logging"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.23-3.Final_redhat_00002.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jboss-as-mail","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jboss-as-mail"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.23-3.Final_redhat_00002.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jboss-as-management-client-content","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jboss-as-management-client-content"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.23-3.Final_redhat_00002.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jboss-as-messaging","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jboss-as-messaging"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.23-3.Final_redhat_00002.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jboss-as-modcluster","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jboss-as-modcluster"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.23-3.Final_redhat_00002.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jboss-as-naming","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jboss-as-naming"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.23-3.Final_redhat_00002.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jboss-as-network","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jboss-as-network"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.23-3.Final_redhat_00002.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jboss-as-osgi","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jboss-as-osgi"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.23-3.Final_redhat_00002.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jboss-as-osgi-configadmin","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jboss-as-osgi-configadmin"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.23-3.Final_redhat_00002.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jboss-as-osgi-service","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jboss-as-osgi-service"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.23-3.Final_redhat_00002.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jboss-as-picketlink","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jboss-as-picketlink"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.23-3.Final_redhat_00002.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jboss-as-platform-mbean","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jboss-as-platform-mbean"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.23-3.Final_redhat_00002.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jboss-as-pojo","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jboss-as-pojo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.23-3.Final_redhat_00002.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jboss-as-process-controller","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jboss-as-process-controller"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.23-3.Final_redhat_00002.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jboss-as-protocol","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jboss-as-protocol"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.23-3.Final_redhat_00002.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jboss-as-remoting","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jboss-as-remoting"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.23-3.Final_redhat_00002.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jboss-as-sar","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jboss-as-sar"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.23-3.Final_redhat_00002.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jboss-as-security","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jboss-as-security"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.23-3.Final_redhat_00002.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jboss-as-server","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jboss-as-server"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.23-3.Final_redhat_00002.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jboss-as-system-jmx","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jboss-as-system-jmx"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.23-3.Final_redhat_00002.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jboss-as-threads","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jboss-as-threads"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.23-3.Final_redhat_00002.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jboss-as-transactions","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jboss-as-transactions"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.23-3.Final_redhat_00002.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jboss-as-version","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jboss-as-version"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.23-3.Final_redhat_00002.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jboss-as-web","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jboss-as-web"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.23-3.Final_redhat_00002.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jboss-as-webservices","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jboss-as-webservices"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.23-3.Final_redhat_00002.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jboss-as-weld","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jboss-as-weld"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.23-3.Final_redhat_00002.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jboss-as-xts","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jboss-as-xts"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.23-3.Final_redhat_00002.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jboss-remoting3-jmx","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jboss-remoting3-jmx"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.1.4-2.Final_redhat_00001.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jbossas-appclient","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jbossas-appclient"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.23-4.Final_redhat_00002.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jbossas-bundles","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jbossas-bundles"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.23-4.Final_redhat_00002.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jbossas-core","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jbossas-core"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.23-4.Final_redhat_00002.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jbossas-domain","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jbossas-domain"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.23-4.Final_redhat_00002.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jbossas-javadocs","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jbossas-javadocs"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.23-2.Final_redhat_00002.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jbossas-modules-eap","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jbossas-modules-eap"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.23-3.Final_redhat_00002.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jbossas-product-eap","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jbossas-product-eap"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.23-4.Final_redhat_00002.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jbossas-standalone","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jbossas-standalone"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.23-4.Final_redhat_00002.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jbossas-welcome-content-eap","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jbossas-welcome-content-eap"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.23-4.Final_redhat_00002.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"jbossweb","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/jbossweb"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.31-1.Final_redhat_1.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}},{"package":{"name":"weld-core","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el5","purl":"pkg:rpm/redhat/weld-core"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.1.34-2.Final_redhat_2.1.ep6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2781.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L"}]}