RHSA-2025:9582

Advisory lineage Upstream: 14 Downstream: 0

Upstream

CVE-2020-10740 CVE-2020-13949 CVE-2020-25638 CVE-2020-25644 CVE-2020-27782 CVE-2020-36518

Published: 25 Jun 2025, 10:06

Last modified:15 May 2026, 10:12

Vulnerability Summary

Overall Risk (default)

medium

30/100

CVSS Score

7.5 HIGH

3.1 (osv_red_hat)

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

25 Jun 2025, 10:06

Published

Vulnerability first disclosed

15 May 2026, 10:12

Last Modified

Vulnerability information updated

Description

Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.1.11 on RHEL 7 security update

CVSS Metrics

v3.1•HIGH•Score: 7.5CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Affected Systems

redhat•eap7-glassfish-el
< 0:3.0.1-4.b08_redhat_00005.1.ep7.el7
redhat•eap7-glassfish-el-impl
< 0:3.0.1-4.b08_redhat_00005.1.ep7.el7
redhat•eap7-hibernate
< 0:5.1.17-3.Final_redhat_00004.1.ep7.el7
redhat•eap7-hibernate-core
< 0:5.1.17-3.Final_redhat_00004.1.ep7.el7
redhat•eap7-hibernate-entitymanager
< 0:5.1.17-3.Final_redhat_00004.1.ep7.el7
redhat•eap7-hibernate-envers
< 0:5.1.17-3.Final_redhat_00004.1.ep7.el7
redhat•eap7-hibernate-infinispan
< 0:5.1.17-3.Final_redhat_00004.1.ep7.el7
redhat•eap7-hibernate-java8
< 0:5.1.17-3.Final_redhat_00004.1.ep7.el7
redhat•eap7-jackson-databind
< 0:2.8.11.6-3.SP1_redhat_00003.1.ep7.el7
redhat•eap7-jboss-ejb-client
< 0:4.0.12-1.Final_redhat_00002.1.ep7.el7
redhat•eap7-netty
< 0:4.1.63-2.Final_redhat_00003.1.ep7.el7
redhat•eap7-netty-all
< 0:4.1.63-2.Final_redhat_00003.1.ep7.el7
redhat•eap7-undertow
< 0:1.4.18-16.SP14_redhat_00001.1.ep7.el7
redhat•eap7-wildfly
< 0:7.1.11-4.GA_redhat_00002.1.ep7.el7
redhat•eap7-wildfly-elytron
< 0:1.1.14-1.Final_redhat_00001.1.ep7.el7
redhat•eap7-wildfly-http-client
< 0:1.0.21-1.Final_redhat_00001.1.ep7.el7
redhat•eap7-wildfly-http-client-common
< 0:1.0.21-1.Final_redhat_00001.1.ep7.el7
redhat•eap7-wildfly-http-ejb-client
< 0:1.0.21-1.Final_redhat_00001.1.ep7.el7
redhat•eap7-wildfly-http-naming-client
< 0:1.0.21-1.Final_redhat_00001.1.ep7.el7
redhat•eap7-wildfly-http-transaction-client
< 0:1.0.21-1.Final_redhat_00001.1.ep7.el7
redhat•eap7-wildfly-modules
< 0:7.1.11-4.GA_redhat_00002.1.ep7.el7
redhat•eap7-wildfly-naming-client
< 0:1.0.13-1.Final_redhat_00001.1.ep7.el7
redhat•eap7-wildfly-openssl
< 0:1.0.12-1.Final_redhat_00001.1.ep7.el7
redhat•eap7-wildfly-openssl-java
< 0:1.0.12-1.Final_redhat_00001.1.ep7.el7
redhat•eap7-wildfly-openssl-linux
< 0:1.0.12-6.Final_redhat_00001.1.ep7.el7
redhat•eap7-wildfly-openssl-linux-debuginfo
< 0:1.0.12-6.Final_redhat_00001.1.ep7.el7