Vulnerability Lookup

🛡️ RHSA-2020:4847

⚪ Unknown ✅ No Known Exploit OSV

N/A

CVSS Score

0 Low4 Medium7 High9 Critical10

Description

Red Hat Security Advisory: pki-core:10.6 and pki-deps:10.6 security, bug fix, and enhancement update

Details

Severity Unknown

CVSS Score N/A

CVSS Vector CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L

CWE N/A

Public Exploit ✅ No

Source OSV

Published 2024-10-21

Updated 2026-06-14

Modified 2026-06-13

Fix URL N/A

Affected Packages

Software	From version	Fixed in
apache-commons-collections	—	0:3.2.2-10.module+el8.1.0+3366+6dfb954c
apache-commons-lang	—	0:2.6-21.module+el8.1.0+3366+6dfb954c
apache-commons-net	—	0:3.6-3.module+el8.3.0+6805+72837426
bea-stax	—	0:1.2.0-16.module+el8.1.0+3366+6dfb954c
bea-stax-api	—	0:1.2.0-16.module+el8.1.0+3366+6dfb954c
glassfish-fastinfoset	—	0:1.2.13-9.module+el8.1.0+3366+6dfb954c
glassfish-jaxb	—	0:2.2.11-11.module+el8.1.0+3366+6dfb954c
glassfish-jaxb-api	—	0:2.2.12-8.module+el8.1.0+3366+6dfb954c
glassfish-jaxb-core	—	0:2.2.11-11.module+el8.1.0+3366+6dfb954c
glassfish-jaxb-runtime	—	0:2.2.11-11.module+el8.1.0+3366+6dfb954c
glassfish-jaxb-txw2	—	0:2.2.11-11.module+el8.1.0+3366+6dfb954c
jackson-annotations	—	0:2.10.0-1.module+el8.2.0+5059+3eb3af25
jackson-core	—	0:2.10.0-1.module+el8.2.0+5059+3eb3af25
jackson-databind	—	0:2.10.0-1.module+el8.2.0+5059+3eb3af25
jackson-jaxrs-json-provider	—	0:2.9.9-1.module+el8.1.0+3832+9784644d
jackson-jaxrs-providers	—	0:2.9.9-1.module+el8.1.0+3832+9784644d
jackson-module-jaxb-annotations	—	0:2.7.6-4.module+el8.1.0+3366+6dfb954c
jakarta-commons-httpclient	—	1:3.1-28.module+el8.1.0+3366+6dfb954c
javassist	—	0:3.18.1-8.module+el8.1.0+3366+6dfb954c
javassist-javadoc	—	0:3.18.1-8.module+el8.1.0+3366+6dfb954c
jss	—	0:4.7.3-1.module+el8.3.0+8058+d5cd4219
jss-debuginfo	—	0:4.7.3-1.module+el8.3.0+8058+d5cd4219
jss-debugsource	—	0:4.7.3-1.module+el8.3.0+8058+d5cd4219
jss-javadoc	—	0:4.7.3-1.module+el8.3.0+8058+d5cd4219
ldapjdk	—	0:4.22.0-1.module+el8.3.0+6784+6e1e4c62
ldapjdk-javadoc	—	0:4.22.0-1.module+el8.3.0+6784+6e1e4c62
pki-base	—	0:10.9.4-1.module+el8.3.0+8058+d5cd4219
pki-base-java	—	0:10.9.4-1.module+el8.3.0+8058+d5cd4219
pki-ca	—	0:10.9.4-1.module+el8.3.0+8058+d5cd4219
pki-core	—	0:10.9.4-1.module+el8.3.0+8058+d5cd4219
pki-core-debuginfo	—	0:10.9.4-1.module+el8.3.0+8058+d5cd4219
pki-core-debugsource	—	0:10.9.4-1.module+el8.3.0+8058+d5cd4219
pki-kra	—	0:10.9.4-1.module+el8.3.0+8058+d5cd4219
pki-server	—	0:10.9.4-1.module+el8.3.0+8058+d5cd4219
pki-servlet-4.0-api	—	1:9.0.30-1.module+el8.3.0+6730+8f9c6254
pki-servlet-engine	—	1:9.0.30-1.module+el8.3.0+6730+8f9c6254
pki-symkey	—	0:10.9.4-1.module+el8.3.0+8058+d5cd4219
pki-symkey-debuginfo	—	0:10.9.4-1.module+el8.3.0+8058+d5cd4219
pki-tools	—	0:10.9.4-1.module+el8.3.0+8058+d5cd4219
pki-tools-debuginfo	—	0:10.9.4-1.module+el8.3.0+8058+d5cd4219
python-nss	—	0:1.0.1-10.module+el8.1.0+3366+6dfb954c
python-nss-debugsource	—	0:1.0.1-10.module+el8.1.0+3366+6dfb954c
python-nss-doc	—	0:1.0.1-10.module+el8.1.0+3366+6dfb954c
python3-nss	—	0:1.0.1-10.module+el8.1.0+3366+6dfb954c
python3-nss-debuginfo	—	0:1.0.1-10.module+el8.1.0+3366+6dfb954c
python3-pki	—	0:10.9.4-1.module+el8.3.0+8058+d5cd4219
relaxngdatatype	—	0:2011.1-7.module+el8.1.0+3366+6dfb954c
resteasy	—	0:3.0.26-3.module+el8.2.0+5723+4574fbff
slf4j	—	0:1.7.25-4.module+el8.1.0+3366+6dfb954c
slf4j-jdk14	—	0:1.7.25-4.module+el8.1.0+3366+6dfb954c
stax-ex	—	0:1.7.7-8.module+el8.2.0+5723+4574fbff
tomcatjss	—	0:7.5.0-1.module+el8.3.0+7355+c59bcbd9
velocity	—	0:1.7-24.module+el8.1.0+3366+6dfb954c
xalan-j2	—	0:2.7.1-38.module+el8.1.0+3366+6dfb954c
xerces-j2	—	0:2.11.0-34.module+el8.1.0+3366+6dfb954c
xml-commons-apis	—	0:1.4.01-25.module+el8.1.0+3366+6dfb954c
xml-commons-resolver	—	0:1.2-26.module+el8.1.0+3366+6dfb954c
xmlstreambuffer	—	0:1.5.4-8.module+el8.2.0+5723+4574fbff
xsom	—	0:0-19.20110809svn.module+el8.1.0+3366+6dfb954c

References

ADVISORY https://access.redhat.com/errata/RHSA-2020:4847

ARTICLE https://access.redhat.com/security/updates/classification/#moderate

ARTICLE https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.3_release_notes/

REPORT https://bugzilla.redhat.com/show_bug.cgi?id=1376706

REPORT https://bugzilla.redhat.com/show_bug.cgi?id=1399546

REPORT https://bugzilla.redhat.com/show_bug.cgi?id=1406505

REPORT https://bugzilla.redhat.com/show_bug.cgi?id=1601614

REPORT https://bugzilla.redhat.com/show_bug.cgi?id=1601617

REPORT https://bugzilla.redhat.com/show_bug.cgi?id=1666907

REPORT https://bugzilla.redhat.com/show_bug.cgi?id=1668097

REPORT https://bugzilla.redhat.com/show_bug.cgi?id=1686454

REPORT https://bugzilla.redhat.com/show_bug.cgi?id=1695901

REPORT https://bugzilla.redhat.com/show_bug.cgi?id=1701972

REPORT https://bugzilla.redhat.com/show_bug.cgi?id=1706521

REPORT https://bugzilla.redhat.com/show_bug.cgi?id=1710171

REPORT https://bugzilla.redhat.com/show_bug.cgi?id=1721684

REPORT https://bugzilla.redhat.com/show_bug.cgi?id=1724433

REPORT https://bugzilla.redhat.com/show_bug.cgi?id=1732565

REPORT https://bugzilla.redhat.com/show_bug.cgi?id=1732981

REPORT https://bugzilla.redhat.com/show_bug.cgi?id=1777579

REPORT https://bugzilla.redhat.com/show_bug.cgi?id=1805541

REPORT https://bugzilla.redhat.com/show_bug.cgi?id=1817247

REPORT https://bugzilla.redhat.com/show_bug.cgi?id=1821851

REPORT https://bugzilla.redhat.com/show_bug.cgi?id=1822246

REPORT https://bugzilla.redhat.com/show_bug.cgi?id=1824939

REPORT https://bugzilla.redhat.com/show_bug.cgi?id=1824948

REPORT https://bugzilla.redhat.com/show_bug.cgi?id=1825998

REPORT https://bugzilla.redhat.com/show_bug.cgi?id=1828406

REPORT https://bugzilla.redhat.com/show_bug.cgi?id=1842734

REPORT https://bugzilla.redhat.com/show_bug.cgi?id=1842736

REPORT https://bugzilla.redhat.com/show_bug.cgi?id=1843537

REPORT https://bugzilla.redhat.com/show_bug.cgi?id=1845447

REPORT https://bugzilla.redhat.com/show_bug.cgi?id=1850004

REPORT https://bugzilla.redhat.com/show_bug.cgi?id=1854043

REPORT https://bugzilla.redhat.com/show_bug.cgi?id=1854959

REPORT https://bugzilla.redhat.com/show_bug.cgi?id=1855273

REPORT https://bugzilla.redhat.com/show_bug.cgi?id=1855319

REPORT https://bugzilla.redhat.com/show_bug.cgi?id=1856368

REPORT https://bugzilla.redhat.com/show_bug.cgi?id=1857933

REPORT https://bugzilla.redhat.com/show_bug.cgi?id=1861911

REPORT https://bugzilla.redhat.com/show_bug.cgi?id=1869893

REPORT https://bugzilla.redhat.com/show_bug.cgi?id=1871064

REPORT https://bugzilla.redhat.com/show_bug.cgi?id=1873235

ADVISORY https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_4847.json

REPORT https://access.redhat.com/security/cve/CVE-2015-9251

ADVISORY https://www.cve.org/CVERecord?id=CVE-2015-9251

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2015-9251

REPORT https://access.redhat.com/security/cve/CVE-2016-10735

ADVISORY https://www.cve.org/CVERecord?id=CVE-2016-10735

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2016-10735

REPORT https://access.redhat.com/security/cve/CVE-2018-14040

ADVISORY https://www.cve.org/CVERecord?id=CVE-2018-14040

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2018-14040

REPORT https://access.redhat.com/security/cve/CVE-2018-14042

ADVISORY https://www.cve.org/CVERecord?id=CVE-2018-14042

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2018-14042

REPORT https://access.redhat.com/security/cve/CVE-2019-8331

ADVISORY https://www.cve.org/CVERecord?id=CVE-2019-8331

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2019-8331

REPORT https://access.redhat.com/security/cve/CVE-2019-10146

ADVISORY https://www.cve.org/CVERecord?id=CVE-2019-10146

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2019-10146

REPORT https://access.redhat.com/security/cve/CVE-2019-10179

ADVISORY https://www.cve.org/CVERecord?id=CVE-2019-10179

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2019-10179

REPORT https://access.redhat.com/security/cve/CVE-2019-10221

ADVISORY https://www.cve.org/CVERecord?id=CVE-2019-10221

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2019-10221

REPORT https://access.redhat.com/security/cve/CVE-2019-11358

ADVISORY https://www.cve.org/CVERecord?id=CVE-2019-11358

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2019-11358

ARTICLE https://blog.jquery.com/2019/04/10/jquery-3-4-0-released/

ARTICLE https://www.drupal.org/sa-core-2019-006

REPORT https://access.redhat.com/security/cve/CVE-2020-1721

ADVISORY https://www.cve.org/CVERecord?id=CVE-2020-1721

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2020-1721

REPORT https://access.redhat.com/security/cve/CVE-2020-1935

REPORT https://bugzilla.redhat.com/show_bug.cgi?id=1806835

ADVISORY https://www.cve.org/CVERecord?id=CVE-2020-1935

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2020-1935

ARTICLE https://tomcat.apache.org/security-7.html#Fixed_in_Apache_Tomcat_7.0.100

ARTICLE https://tomcat.apache.org/security-8.html#Fixed_in_Apache_Tomcat_8.5.51

ARTICLE https://tomcat.apache.org/security-9.html#Fixed_in_Apache_Tomcat_9.0.31

REPORT https://access.redhat.com/security/cve/CVE-2020-1938

REPORT https://bugzilla.redhat.com/show_bug.cgi?id=1806398

ADVISORY https://www.cve.org/CVERecord?id=CVE-2020-1938

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2020-1938

ARTICLE https://meterpreter.org/cve-2020-1938-apache-tomcat-ajp-connector-remote-code-execution-vulnerability-alert/

ARTICLE https://www.cnvd.org.cn/webinfo/show/5415

ARTICLE https://www.tenable.com/blog/cve-2020-1938-ghostcat-apache-tomcat-ajp-file-readinclusion-vulnerability-cnvd-2020-10487

ARTICLE https://www.cisa.gov/known-exploited-vulnerabilities-catalog

REPORT https://access.redhat.com/security/cve/CVE-2020-11022

ADVISORY https://www.cve.org/CVERecord?id=CVE-2020-11022

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2020-11022

ADVISORY https://github.com/advisories/GHSA-gxr4-xjj5-5px2

REPORT https://access.redhat.com/security/cve/CVE-2020-11023

ADVISORY https://www.cve.org/CVERecord?id=CVE-2020-11023

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2020-11023

ARTICLE https://blog.jquery.com/2020/04/10/jquery-3-5-0-released/

REPORT https://access.redhat.com/security/cve/CVE-2020-15720

ADVISORY https://www.cve.org/CVERecord?id=CVE-2020-15720

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2020-15720

REPORT https://access.redhat.com/security/cve/CVE-2020-25715

REPORT https://bugzilla.redhat.com/show_bug.cgi?id=1891016

ADVISORY https://www.cve.org/CVERecord?id=CVE-2020-25715

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2020-25715

REPORT https://access.redhat.com/security/cve/CVE-2022-25762

REPORT https://bugzilla.redhat.com/show_bug.cgi?id=2085304

ADVISORY https://www.cve.org/CVERecord?id=CVE-2022-25762

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2022-25762

ARTICLE https://tomcat.apache.org/security-8.html#Fixed_in_Apache_Tomcat_8.5.76

🔗 NVD 🔗 Mitre

Similar Threats

Free Vulnerability Check

Is your WordPress site affected?

BotEraser helps you identify potentially vulnerable plugins and themes by checking your installation against known CVE records.

Scan My Site Free →

No credit card required · Results in minutes

ⓘ Data Notice: The information presented above has been compiled from publicly available internet sources. Boteraser aggregates this data solely for informational purposes and does not independently classify, evaluate, or endorse any findings about the vulnerabilities listed. The accuracy and completeness of this information is the sole responsibility of the original publishers. Boteraser and its operators accept no liability for any decisions made based on this data.

Is your WordPress site affected?

Company

Resources

Services

Trusted

Subscribe