RHSA-2024:4976

Advisory lineage Upstream: 2 Downstream: 0
Published: 01 Oct 2024, 17:02
Last modified:18 Mar 2026, 11:35

Vulnerability Summary

Overall Risk (default)
medium
30/100
CVSS Score
7.5 HIGH
3.1 (osv_red_hat)
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

01 Oct 2024, 17:02
Published
Vulnerability first disclosed
18 Mar 2026, 11:35
Last Modified
Vulnerability information updated

Description

Red Hat Security Advisory: Red Hat JBoss Web Server 6.0.3 release and security update

CVSS Metrics

  • v3.1HIGHScore: 7.5CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected Systems

  • redhatjws6-tomcat

    < 0:10.1.8-10.redhat_00018.1.el8jws | < 0:10.1.8-10.redhat_00018.1.el9jws

  • redhatjws6-tomcat-admin-webapps

    < 0:10.1.8-10.redhat_00018.1.el8jws | < 0:10.1.8-10.redhat_00018.1.el9jws

  • redhatjws6-tomcat-docs-webapp

    < 0:10.1.8-10.redhat_00018.1.el8jws | < 0:10.1.8-10.redhat_00018.1.el9jws

  • redhatjws6-tomcat-el-5.0-api

    < 0:10.1.8-10.redhat_00018.1.el8jws | < 0:10.1.8-10.redhat_00018.1.el9jws

  • redhatjws6-tomcat-javadoc

    < 0:10.1.8-10.redhat_00018.1.el8jws | < 0:10.1.8-10.redhat_00018.1.el9jws

  • redhatjws6-tomcat-jsp-3.1-api

    < 0:10.1.8-10.redhat_00018.1.el8jws | < 0:10.1.8-10.redhat_00018.1.el9jws

  • redhatjws6-tomcat-lib

    < 0:10.1.8-10.redhat_00018.1.el8jws | < 0:10.1.8-10.redhat_00018.1.el9jws

  • redhatjws6-tomcat-selinux

    < 0:10.1.8-10.redhat_00018.1.el8jws | < 0:10.1.8-10.redhat_00018.1.el9jws

  • redhatjws6-tomcat-servlet-6.0-api

    < 0:10.1.8-10.redhat_00018.1.el8jws | < 0:10.1.8-10.redhat_00018.1.el9jws

  • redhatjws6-tomcat-webapps

    < 0:10.1.8-10.redhat_00018.1.el8jws | < 0:10.1.8-10.redhat_00018.1.el9jws

References (14)