Red Hat JBoss Products Multiple Vulnerabilities
Last Update Date:
2 Oct 2019 10:48
Release Date:
2 Oct 2019
4384
Views
RISK: Medium Risk
TYPE: Servers - Internet App Servers
Multiple vulnerabilities were identified in Red Hat JBoss, a remote attacker could exploit these vulnerabilities to trigger denial of service, remote code execution and sensitive information disclosure on the targeted system.
Impact
- Denial of Service
- Remote Code Execution
- Information Disclosure
System / Technologies affected
- Red Hat JBoss Enterprise Application Platform 7.2.3
- Red Hat JBoss Core Services Apache HTTP Server 2.4.29 SP2
Solutions
Before installation of the software, please visit the vendor web-site for more details.
- Apply fixes issued by the vendor:
For detail, please refer to the links below:
https://access.redhat.com/errata/RHSA-2019:2935
https://access.redhat.com/errata/RHSA-2019:2936
https://access.redhat.com/errata/RHSA-2019:2937
https://access.redhat.com/errata/RHSA-2019:2938
https://access.redhat.com/errata/RHSA-2019:2950
Vulnerability Identifier
- CVE-2019-9516
- CVE-2019-9517
- CVE-2019-10184
- CVE-2019-10202
- CVE-2019-10212
- CVE-2019-12086
- CVE-2019-12384
- CVE-2019-12814
- CVE-2019-14379
Source
Related Link
- https://access.redhat.com/errata/RHSA-2019:2935
- https://access.redhat.com/errata/RHSA-2019:2936
- https://access.redhat.com/errata/RHSA-2019:2937
- https://access.redhat.com/errata/RHSA-2019:2938
- https://access.redhat.com/errata/RHSA-2019:2950
- https://www.auscert.org.au/bulletins/ESB-2019.3672/
- https://www.auscert.org.au/bulletins/ESB-2019.3689/
Share with