Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2023:1285
HistoryMar 16, 2023 - 7:48 a.m.

(RHSA-2023:1285) Important: Migration Toolkit for Runtimes security bug fix and enhancement update

2023-03-1607:48:56
access.redhat.com
31
migration toolkit
runtimes
security fix
cve-2022-3782
cve-2022-31690
cve-2022-46364
privilege escalation
ssrf vulnerability
unix

0.042 Low

EPSS

Percentile

92.3%

JSON

Migration Toolkit for Runtimes 1.0.2 ZIP artifacts

Security Fix(es):

  • keycloak: path traversal via double URL encoding (CVE-2022-3782)

  • spring-security-oauth2-client: Privilege Escalation in spring-security-oauth2-client (CVE-2022-31690)

  • Apache CXF: SSRF Vulnerability (CVE-2022-46364)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Related

nvd 3
cve 3
ibm 43
prion 3
osv 6
spring 1
veracode 3
redhatcve 3
github 3
ubuntucve 1
cvelist 3
nessus 17
redhat 30
qualysblog 2
oracle 5
nvd
nvd
CVE-2022-31690
2022-10-31 20:15:12
CVE-2022-46364
2022-12-13 17:15:17
CVE-2022-3782
2023-01-13 06:15:11
cve
cve
CVE-2022-31690
2022-10-31 20:15:12
CVE-2022-46364
2022-12-13 17:15:17
CVE-2022-3782
2023-01-13 06:15:11
ibm
ibm
Security Bulletin: IBM Sterling Partner Engagement Manager is vulnerable unauthorized privilege escalation due to Spring Security (CVE-2022-31690)
2023-01-10 10:39:55
Security Bulletin: Vulnerability in Spring Security affects IBM Process Mining . CVE-2022-31690
2023-05-05 15:10:51
Security Bulletin: Apache CXF is vulnerable to CVE-2022-46364 used in IBM Maximo Application Suite - Monitor Component
2023-05-09 18:17:20
prion
prion
Authorization
2022-10-31 20:15:00
Server side request forgery (ssrf)
2022-12-13 17:15:00
Path traversal
2023-01-13 06:15:00
osv
osv
spring-security-oauth2-client vulnerable to Privilege Escalation
2022-11-01 12:00:37
CVE-2022-31690
2022-10-31 20:15:12
CVE-2022-46364
2022-12-13 17:15:17
spring
spring
CVE-2022-31690: Privilege Escalation in spring-security-oauth2-client
2022-10-31 16:41:00
veracode
veracode
Privilege Escalation
2022-11-04 06:12:45
Server-side Request Forgery (SSRF)
2022-12-14 02:50:22
Path Traversal
2022-12-14 06:05:22
redhatcve
redhatcve
CVE-2022-31690
2023-01-19 05:35:06
CVE-2022-46364
2022-12-21 22:01:38
CVE-2022-3782
2022-12-12 17:04:55
github
github
spring-security-oauth2-client vulnerable to Privilege Escalation
2022-11-01 12:00:37
Apache CXF Server-Side Request Forgery vulnerability
2022-12-13 18:30:26
Keycloak vulnerable to path traversal via double URL encoding
2022-12-13 19:44:56
ubuntucve
ubuntucve
CVE-2022-31690
2022-10-31 00:00:00
cvelist
cvelist
CVE-2022-31690
2022-10-31 00:00:00
CVE-2022-46364 Apache CXF SSRF Vulnerability
2022-12-13 16:20:26
CVE-2022-3782
2023-01-11 16:58:10
nessus
nessus
RHEL 7 / 9 : Red Hat JBoss Enterprise Application Platform 7.4 (RHSA-2023:0163)
2023-01-13 00:00:00
RHEL 8 : Red Hat Single Sign-On 7.6.1 security update on RHEL 8 (Important) (RHSA-2022:8962)
2022-12-13 00:00:00
RHEL 7 : Red Hat Single Sign-On 7.6.1 security update on RHEL 7 (Important) (RHSA-2022:8961)
2022-12-13 00:00:00
redhat
redhat
(RHSA-2023:0164) Important: Red Hat JBoss Enterprise Application Platform 7.4 security update
2023-01-12 20:48:48
(RHSA-2023:0163) Important: Red Hat JBoss Enterprise Application Platform 7.4 security update
2023-01-12 20:48:45
(RHSA-2022:8962) Important: Red Hat Single Sign-On 7.6.1 security update on RHEL 8
2022-12-13 13:57:11
qualysblog
qualysblog
Oracle Patch Tuesday April 2023 Security Update Review
2023-04-19 11:47:21
Oracle Patch Tuesday, July 2023 Security Update Review
2023-07-19 15:56:06
oracle
oracle
Oracle Critical Patch Update Advisory - July 2023
2023-07-18 00:00:00
Oracle Critical Patch Update Advisory - April 2023
2023-04-18 00:00:00
Oracle Critical Patch Update Advisory - January 2024
2024-01-16 00:00:00

0.042 Low

EPSS

Percentile

92.3%

JSON
Related for RHSA-2023:1285
nvd3cve3ibm43prion3osv6spring1veracode3redhatcve3github3ubuntucve1cvelist3nessus17redhat30qualysblog2oracle5