What is RHSA-2026:4915?

RHSA-2026:4915 is a security advisory published by Red Hat Product Security with High severity. Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4.24 security update

What is the CVSS v3 score of RHSA-2026:4915?

RHSA-2026:4915 has a CVSS v3 base score of 9.6, published by Red Hat Product Security.

RHSA-2026:4915HighCVSS 9.6

Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4.24 security update

Vendor

Red Hat Product Security

Published

March 18, 2026

Last Modified

June 2, 2026

🔗 CVE IDs covered (9)

CVE-2025-12543 →CVE-2025-48913 →CVE-2025-55163 →CVE-2026-0603 →CVE-2024-7254 →CVE-2025-4949 →CVE-2025-9784 →CVE-2025-52999 →CVE-2024-3884 →

📋 Description

CVE-2024-3884 — undertow: OutOfMemory when parsing form data encoding with application/x-www-form-urlencoded CVE-2024-7254 — protobuf: StackOverflow vulnerability in Protocol Buffers CVE-2025-4949 — org.eclipse.jgit: XXE vulnerability in Eclipse JGit CVE-2025-9784 — undertow: Undertow MadeYouReset HTTP/2 DDoS Vulnerability CVE-2025-12543 — undertow-core: Undertow HTTP Server Fails to Reject Malformed Host Headers Leading to Potential Cache Poisoning and SSRF CVE-2025-48913 — org.apache.cxf/cxf: CXF JMS Code Execution Vulnerability CVE-2025-52999 — com.fasterxml.jackson.core/jackson-core: jackson-core Potential StackoverflowError CVE-2025-55163 — netty: netty-codec-http2: Netty MadeYouReset HTTP/2 DDoS Vulnerability CVE-2026-0603 — org.hibernate/hibernate-core: Hibernate: Information disclosure and data deletion via second-order SQL injection

🔗 CVE IDs covered (9)

📋 Description

🔗 References (15)