Vulnerable hawkular and mysql modules present in JBoss EAP 7 container image

Solution Verified - Updated -

Issue

The following vulnerabilities have been identified as existing in JBoss EAP for OpenShift version 1.2-5

CVE ID  Compliance ID   Type    Severity        Packages        Source Package  Package Version
CVE-2013-4002   47      java    high    xerces_xercesImpl               2.11.0
CVE-2017-3523   47      java    high    mysql_mysql-connector-java              5.1.25

Environment

  • Red Hat JBoss Enterprise Application Platform (EAP)
    • 7.2
    • 7.3

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.

Current Customers and Partners

Log in for full access

Log In