What is RHSA-2024:8824?

RHSA-2024:8824 is a security advisory published by Red Hat Product Security with High severity. Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 8.0.4 Security update

Which CVE IDs does RHSA-2024:8824 cover?

RHSA-2024:8824 covers the following CVE IDs: CVE-2022-34169, CVE-2023-52428, CVE-2024-4029, CVE-2024-8698, CVE-2024-8883, CVE-2024-41172. Each CVE has its own detail page on EchelonGraph Pulse with the synthesized EG score.

What is the CVSS v3 score of RHSA-2024:8824?

RHSA-2024:8824 has a CVSS v3 base score of 7.7, published by Red Hat Product Security.

RHSA-2024:8824HighCVSS 7.7

Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 8.0.4 Security update

Vendor

Red Hat Product Security

Published

November 4, 2024

Last Modified

May 27, 2026

🔗 CVE IDs covered (6)

CVE-2022-34169 →CVE-2023-52428 →CVE-2024-4029 →CVE-2024-8698 →CVE-2024-8883 →CVE-2024-41172 →

📋 Description

CVE-2022-34169 — OpenJDK: integer truncation issue in Xalan-J (JAXP, 8285407) CVE-2023-52428 — nimbus-jose-jwt: large JWE p2c header value causes Denial of Service CVE-2024-4029 — wildfly: No timeout for EAP management interface may lead to Denial of Service (DoS) CVE-2024-8698 — keycloak-saml-core: Improper Verification of SAML Responses Leading to Privilege Escalation in Keycloak CVE-2024-8883 — Keycloak: Vulnerable Redirect URI Validation Results in Open Redirec CVE-2024-41172 — apache: cxf: org.apache.cxf:cxf-rt-transports-http: unrestricted memory consumption in CXF HTTP clients

🔗 References (28)

selfhttps://access.redhat.com/errata/RHSA-2024:8824
externalhttps://access.redhat.com/security/updates/classification/#important
externalhttps://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/8.0/
externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2108554
externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2278615
externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2298829
externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2309764
externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2311641
externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2312511
externalhttps://issues.redhat.com/browse/JBEAP-24945
externalhttps://issues.redhat.com/browse/JBEAP-25035
externalhttps://issues.redhat.com/browse/JBEAP-27002
externalhttps://issues.redhat.com/browse/JBEAP-27194
externalhttps://issues.redhat.com/browse/JBEAP-27248
externalhttps://issues.redhat.com/browse/JBEAP-27276
externalhttps://issues.redhat.com/browse/JBEAP-27293
externalhttps://issues.redhat.com/browse/JBEAP-27392
externalhttps://issues.redhat.com/browse/JBEAP-27543
externalhttps://issues.redhat.com/browse/JBEAP-27585
externalhttps://issues.redhat.com/browse/JBEAP-27643
externalhttps://issues.redhat.com/browse/JBEAP-27659
externalhttps://issues.redhat.com/browse/JBEAP-27688
externalhttps://issues.redhat.com/browse/JBEAP-27694
externalhttps://issues.redhat.com/browse/JBEAP-27957
externalhttps://issues.redhat.com/browse/JBEAP-28057
externalhttps://issues.redhat.com/browse/JBEAP-28278
externalhttps://issues.redhat.com/browse/JBEAP-28289
selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_8824.json