What is RHBA-2024:9054?

RHBA-2024:9054 is a security advisory published by Red Hat Product Security with High severity. Red Hat Bug Fix Advisory: Red Hat Developer Hub 1.3.1 bugfix release

Which CVE IDs does RHBA-2024:9054 cover?

RHBA-2024:9054 covers the following CVE IDs: CVE-2024-21536, CVE-2024-37890, CVE-2024-45590. Each CVE has its own detail page on EchelonGraph Pulse with the synthesized EG score.

What is the CVSS v3 score of RHBA-2024:9054?

RHBA-2024:9054 has a CVSS v3 base score of 7.5, published by Red Hat Product Security.

RHBA-2024:9054HighCVSS 7.5

Red Hat Bug Fix Advisory: Red Hat Developer Hub 1.3.1 bugfix release

Vendor

Red Hat Product Security

Published

November 11, 2024

Last Modified

June 2, 2026

🔗 CVE IDs covered (3)

CVE-2024-21536 →CVE-2024-37890 →CVE-2024-45590 →

📋 Description

CVE-2024-21536 — http-proxy-middleware: Denial of Service CVE-2024-37890 — nodejs-ws: denial of service when handling a request with many HTTP headers CVE-2024-45590 — body-parser: Denial of Service Vulnerability in body-parser

🔗 References (5)

selfhttps://access.redhat.com/errata/RHBA-2024:9054
externalhttps://docs.redhat.com/en/documentation/red_hat_developer_hub/1.3
externalhttps://issues.redhat.com/browse/RHIDP-4343
externalhttps://issues.redhat.com/browse/RHIDP-4344
selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2024/rhba-2024_9054.json