Threats Tagged 'cve-2024-28752'

Red Hat JBoss Enterprise Application Platform 8. 0. 3 includes multiple security fixes addressing vulnerabilities such as SSRF in Apache CXF, a timing attack variant in BouncyCastle, resource allocation issues in Netty, infinite loops in ED25519 verification, and denial of service via crafted EC certificates. These vulnerabilities affect the Java application platform based on WildFly runtime and have been rated with an overall security impact of Important by Red Hat. The update replaces version 8. 0. 2 and includes bug fixes and enhancements alongside security patches. No known exploits in the wild have been reported at this time.

Red Hat JBoss Enterprise Application Platform 8. 0. 3 includes multiple security fixes addressing vulnerabilities such as SSRF in Apache CXF, resource allocation issues in Netty, and several cryptographic flaws in BouncyCastle. These vulnerabilities could lead to denial of service, timing attacks, or server-side request forgery. The update replaces version 8. 0. 2 and is rated with an important security impact by Red Hat. No known exploits in the wild have been reported at this time.

Red Hat JBoss Enterprise Application Platform 8. 0. 3 includes multiple security fixes addressing vulnerabilities such as SSRF in Apache CXF, resource allocation issues in Netty, timing attacks and denial of service in BouncyCastle cryptographic libraries, and infinite loops during ED25519 verification. These vulnerabilities affect the platform's core components and cryptographic operations. The update replaces version 8. 0. 2 and is rated as having an important security impact by Red Hat. No known exploits in the wild have been reported. Users are advised to apply the update following Red Hat's guidance to mitigate these issues.