What is RHSA-2024:11255?

RHSA-2024:11255 is a security advisory published by Red Hat Product Security with High severity. Red Hat Security Advisory: Red Hat Trusted Profile Analyzer 1.2.1

Which CVE IDs does RHSA-2024:11255 cover?

RHSA-2024:11255 covers the following CVE IDs: CVE-2024-21536, CVE-2024-21538, CVE-2024-7254. Each CVE has its own detail page on EchelonGraph Pulse with the synthesized EG score.

What is the CVSS v3 score of RHSA-2024:11255?

RHSA-2024:11255 has a CVSS v3 base score of 7.5, published by Red Hat Product Security.

RHSA-2024:11255HighCVSS 7.5

Red Hat Security Advisory: Red Hat Trusted Profile Analyzer 1.2.1

Vendor

Red Hat Product Security

Published

December 17, 2024

Last Modified

June 2, 2026

🔗 CVE IDs covered (3)

CVE-2024-21536 →CVE-2024-21538 →CVE-2024-7254 →

📋 Description

CVE-2024-7254 — protobuf: StackOverflow vulnerability in Protocol Buffers CVE-2024-21536 — http-proxy-middleware: Denial of Service CVE-2024-21538 — cross-spawn: regular expression denial of service

🔗 References (19)

selfhttps://access.redhat.com/errata/RHSA-2024:11255
externalhttps://issues.redhat.com/browse/TC-1865
externalhttps://issues.redhat.com/browse/TC-1873
externalhttps://issues.redhat.com/browse/TC-1880
externalhttps://issues.redhat.com/browse/TC-1892
externalhttps://issues.redhat.com/browse/TC-1928
externalhttps://issues.redhat.com/browse/TC-1947
externalhttps://issues.redhat.com/browse/TC-1970
externalhttps://issues.redhat.com/browse/TC-1868
externalhttps://issues.redhat.com/browse/TC-1937
externalhttps://issues.redhat.com/browse/TC-1795
externalhttps://issues.redhat.com/browse/TC-1824
externalhttps://issues.redhat.com/browse/TC-1870
externalhttps://docs.redhat.com/en/documentation/red_hat_trusted_profile_analyzer/1.2.1/html/release_notes/index
externalhttps://access.redhat.com/security/cve/CVE-2024-21536
externalhttps://access.redhat.com/security/cve/CVE-2024-21538
externalhttps://access.redhat.com/security/cve/CVE-2024-7254
externalhttps://access.redhat.com/security/updates/classification/
selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_11255.json