CVE & CISA-KEV Catalog

CVE-2022-36033

MEDIUM
6.1
CVSS v3
NVD

Description

jsoup is a Java HTML parser, built for HTML editing, cleaning, scraping, and cross-site scripting (XSS) safety. jsoup may incorrectly sanitize HTML including `javascript:` URL expressions, which could allow XSS attacks when a reader subsequently clicks that link. If the non-default `SafeList.preserveRelativeLinks` option is enabled, HTML including `javascript:` URLs that have been crafted with control characters will not be sanitized. If the site that this HTML is published on does not set a Content Security Policy, an XSS attack is then possible. This issue is patched in jsoup 1.15.3. Users should upgrade to this version. Additionally, as the unsanitized input may have been persisted, old content should be cleaned again using the updated version. To remediate this issue without immediately upgrading: - disable `SafeList.preserveRelativeLinks`, which will rewrite input URLs as absolute URLs - ensure an appropriate Content Security Policy is defined. (This should be used regardless of upgrading, as a defence-in-depth best practice.)

How to fix

Remediation Available
jsoupDebian
Fixed in:1.15.3-1CVE-2022-36033
Fixed in:1.15.3-1CVE-2022-36033
Fixed in:1.15.3-1CVE-2022-36033
eap7-hal-consoleRocky
Fixed in:0:3.3.24-1.Final_redhat_00001.1.el7eapRHSA-2024:8075
Fixed in:0:3.3.24-1.Final_redhat_00001.1.el7eapRHSA-2024:8075
Fixed in:0:3.3.24-1.Final_redhat_00001.1.el8eapRHSA-2024:8076
Fixed in:0:3.3.24-1.Final_redhat_00001.1.el8eapRHSA-2024:8076
Fixed in:0:3.3.24-1.Final_redhat_00001.1.el9eapRHSA-2024:8077
Fixed in:0:3.3.24-1.Final_redhat_00001.1.el9eapRHSA-2024:8077
eap7-hal-consoleRed Hat / RHEL
Fixed in:0:3.3.24-1.Final_redhat_00001.1.el7eapRHSA-2024:8075
Fixed in:0:3.3.24-1.Final_redhat_00001.1.el7eapRHSA-2024:8075
Fixed in:0:3.3.24-1.Final_redhat_00001.1.el8eapRHSA-2024:8076
Fixed in:0:3.3.24-1.Final_redhat_00001.1.el8eapRHSA-2024:8076
Fixed in:0:3.3.24-1.Final_redhat_00001.1.el9eapRHSA-2024:8077
Fixed in:0:3.3.24-1.Final_redhat_00001.1.el9eapRHSA-2024:8077
eap7-hibernate-validatorRocky
Fixed in:0:6.0.23-2.SP1_redhat_00001.1.el7eapRHSA-2024:8075
Fixed in:0:6.0.23-2.SP1_redhat_00001.1.el7eapRHSA-2024:8075
Fixed in:0:6.0.23-2.SP1_redhat_00001.1.el8eapRHSA-2024:8076
Fixed in:0:6.0.23-2.SP1_redhat_00001.1.el8eapRHSA-2024:8076
Fixed in:0:6.0.23-2.SP1_redhat_00001.1.el9eapRHSA-2024:8077
Fixed in:0:6.0.23-2.SP1_redhat_00001.1.el9eapRHSA-2024:8077
eap7-hibernate-validatorRed Hat / RHEL
Fixed in:0:6.0.23-2.SP1_redhat_00001.1.el7eapRHSA-2024:8075
Fixed in:0:6.0.23-2.SP1_redhat_00001.1.el7eapRHSA-2024:8075
Fixed in:0:6.0.23-2.SP1_redhat_00001.1.el8eapRHSA-2024:8076
Fixed in:0:6.0.23-2.SP1_redhat_00001.1.el8eapRHSA-2024:8076
Fixed in:0:6.0.23-2.SP1_redhat_00001.1.el9eapRHSA-2024:8077
Fixed in:0:6.0.23-2.SP1_redhat_00001.1.el9eapRHSA-2024:8077
eap7-hibernate-validator-cdiRocky
Fixed in:0:6.0.23-2.SP1_redhat_00001.1.el7eapRHSA-2024:8075
Fixed in:0:6.0.23-2.SP1_redhat_00001.1.el8eapRHSA-2024:8076
Fixed in:0:6.0.23-2.SP1_redhat_00001.1.el9eapRHSA-2024:8077
eap7-hibernate-validator-cdiRed Hat / RHEL
Fixed in:0:6.0.23-2.SP1_redhat_00001.1.el7eapRHSA-2024:8075
Fixed in:0:6.0.23-2.SP1_redhat_00001.1.el8eapRHSA-2024:8076
Fixed in:0:6.0.23-2.SP1_redhat_00001.1.el9eapRHSA-2024:8077
eap7-insights-java-clientRed Hat / RHEL
Fixed in:0:1.1.3-1.redhat_00001.1.el7eapRHSA-2024:8075
Fixed in:0:1.1.3-1.redhat_00001.1.el7eapRHSA-2024:8075
Fixed in:0:1.1.3-1.redhat_00001.1.el8eapRHSA-2024:8076
Fixed in:0:1.1.3-1.redhat_00001.1.el8eapRHSA-2024:8076
Fixed in:0:1.1.3-1.redhat_00001.1.el9eapRHSA-2024:8077
Fixed in:0:1.1.3-1.redhat_00001.1.el9eapRHSA-2024:8077
eap7-insights-java-clientRocky
Fixed in:0:1.1.3-1.redhat_00001.1.el7eapRHSA-2024:8075
Fixed in:0:1.1.3-1.redhat_00001.1.el7eapRHSA-2024:8075
Fixed in:0:1.1.3-1.redhat_00001.1.el8eapRHSA-2024:8076
Fixed in:0:1.1.3-1.redhat_00001.1.el8eapRHSA-2024:8076
Fixed in:0:1.1.3-1.redhat_00001.1.el9eapRHSA-2024:8077
Fixed in:0:1.1.3-1.redhat_00001.1.el9eapRHSA-2024:8077
eap7-ironjacamarRocky
Fixed in:0:1.5.18-1.Final_redhat_00001.1.el7eapRHSA-2024:8075
Fixed in:0:1.5.18-1.Final_redhat_00001.1.el7eapRHSA-2024:8075
Fixed in:0:1.5.18-1.Final_redhat_00001.1.el8eapRHSA-2024:8076
Fixed in:0:1.5.18-1.Final_redhat_00001.1.el8eapRHSA-2024:8076
Fixed in:0:1.5.18-1.Final_redhat_00001.1.el9eapRHSA-2024:8077
Fixed in:0:1.5.18-1.Final_redhat_00001.1.el9eapRHSA-2024:8077
eap7-ironjacamarRed Hat / RHEL
Fixed in:0:1.5.18-1.Final_redhat_00001.1.el7eapRHSA-2024:8075
Fixed in:0:1.5.18-1.Final_redhat_00001.1.el7eapRHSA-2024:8075
Fixed in:0:1.5.18-1.Final_redhat_00001.1.el8eapRHSA-2024:8076
Fixed in:0:1.5.18-1.Final_redhat_00001.1.el8eapRHSA-2024:8076
Fixed in:0:1.5.18-1.Final_redhat_00001.1.el9eapRHSA-2024:8077
Fixed in:0:1.5.18-1.Final_redhat_00001.1.el9eapRHSA-2024:8077
eap7-ironjacamar-common-apiRocky
Fixed in:0:1.5.18-1.Final_redhat_00001.1.el7eapRHSA-2024:8075
Fixed in:0:1.5.18-1.Final_redhat_00001.1.el8eapRHSA-2024:8076
Fixed in:0:1.5.18-1.Final_redhat_00001.1.el9eapRHSA-2024:8077
eap7-ironjacamar-common-apiRed Hat / RHEL
Fixed in:0:1.5.18-1.Final_redhat_00001.1.el7eapRHSA-2024:8075
Fixed in:0:1.5.18-1.Final_redhat_00001.1.el8eapRHSA-2024:8076
Fixed in:0:1.5.18-1.Final_redhat_00001.1.el9eapRHSA-2024:8077
eap7-ironjacamar-common-implRocky
Fixed in:0:1.5.18-1.Final_redhat_00001.1.el7eapRHSA-2024:8075
Fixed in:0:1.5.18-1.Final_redhat_00001.1.el8eapRHSA-2024:8076
Fixed in:0:1.5.18-1.Final_redhat_00001.1.el9eapRHSA-2024:8077
eap7-ironjacamar-common-implRed Hat / RHEL
Fixed in:0:1.5.18-1.Final_redhat_00001.1.el7eapRHSA-2024:8075
Fixed in:0:1.5.18-1.Final_redhat_00001.1.el8eapRHSA-2024:8076
Fixed in:0:1.5.18-1.Final_redhat_00001.1.el9eapRHSA-2024:8077
eap7-ironjacamar-common-spiRocky
Fixed in:0:1.5.18-1.Final_redhat_00001.1.el7eapRHSA-2024:8075
Fixed in:0:1.5.18-1.Final_redhat_00001.1.el8eapRHSA-2024:8076
Fixed in:0:1.5.18-1.Final_redhat_00001.1.el9eapRHSA-2024:8077
eap7-ironjacamar-common-spiRed Hat / RHEL
Fixed in:0:1.5.18-1.Final_redhat_00001.1.el7eapRHSA-2024:8075
Fixed in:0:1.5.18-1.Final_redhat_00001.1.el8eapRHSA-2024:8076
Fixed in:0:1.5.18-1.Final_redhat_00001.1.el9eapRHSA-2024:8077
eap7-ironjacamar-core-apiRocky
Fixed in:0:1.5.18-1.Final_redhat_00001.1.el7eapRHSA-2024:8075
Fixed in:0:1.5.18-1.Final_redhat_00001.1.el8eapRHSA-2024:8076
Fixed in:0:1.5.18-1.Final_redhat_00001.1.el9eapRHSA-2024:8077
eap7-ironjacamar-core-apiRed Hat / RHEL
Fixed in:0:1.5.18-1.Final_redhat_00001.1.el7eapRHSA-2024:8075
Fixed in:0:1.5.18-1.Final_redhat_00001.1.el8eapRHSA-2024:8076
Fixed in:0:1.5.18-1.Final_redhat_00001.1.el9eapRHSA-2024:8077
eap7-ironjacamar-core-implRed Hat / RHEL
Fixed in:0:1.5.18-1.Final_redhat_00001.1.el7eapRHSA-2024:8075
Fixed in:0:1.5.18-1.Final_redhat_00001.1.el8eapRHSA-2024:8076
Fixed in:0:1.5.18-1.Final_redhat_00001.1.el9eapRHSA-2024:8077
eap7-ironjacamar-core-implRocky
Fixed in:0:1.5.18-1.Final_redhat_00001.1.el7eapRHSA-2024:8075
Fixed in:0:1.5.18-1.Final_redhat_00001.1.el8eapRHSA-2024:8076
Fixed in:0:1.5.18-1.Final_redhat_00001.1.el9eapRHSA-2024:8077
eap7-ironjacamar-deployers-commonRed Hat / RHEL
Fixed in:0:1.5.18-1.Final_redhat_00001.1.el7eapRHSA-2024:8075
Fixed in:0:1.5.18-1.Final_redhat_00001.1.el8eapRHSA-2024:8076
Fixed in:0:1.5.18-1.Final_redhat_00001.1.el9eapRHSA-2024:8077
eap7-ironjacamar-deployers-commonRocky
Fixed in:0:1.5.18-1.Final_redhat_00001.1.el7eapRHSA-2024:8075
Fixed in:0:1.5.18-1.Final_redhat_00001.1.el8eapRHSA-2024:8076
Fixed in:0:1.5.18-1.Final_redhat_00001.1.el9eapRHSA-2024:8077
eap7-ironjacamar-jdbcRed Hat / RHEL
Fixed in:0:1.5.18-1.Final_redhat_00001.1.el7eapRHSA-2024:8075
Fixed in:0:1.5.18-1.Final_redhat_00001.1.el8eapRHSA-2024:8076
Fixed in:0:1.5.18-1.Final_redhat_00001.1.el9eapRHSA-2024:8077
eap7-ironjacamar-jdbcRocky
Fixed in:0:1.5.18-1.Final_redhat_00001.1.el7eapRHSA-2024:8075
Fixed in:0:1.5.18-1.Final_redhat_00001.1.el8eapRHSA-2024:8076
Fixed in:0:1.5.18-1.Final_redhat_00001.1.el9eapRHSA-2024:8077
eap7-ironjacamar-validatorRed Hat / RHEL
Fixed in:0:1.5.18-1.Final_redhat_00001.1.el7eapRHSA-2024:8075
Fixed in:0:1.5.18-1.Final_redhat_00001.1.el8eapRHSA-2024:8076
Fixed in:0:1.5.18-1.Final_redhat_00001.1.el9eapRHSA-2024:8077
eap7-ironjacamar-validatorRocky
Fixed in:0:1.5.18-1.Final_redhat_00001.1.el7eapRHSA-2024:8075
Fixed in:0:1.5.18-1.Final_redhat_00001.1.el8eapRHSA-2024:8076
Fixed in:0:1.5.18-1.Final_redhat_00001.1.el9eapRHSA-2024:8077
eap7-jboss-cert-helperRocky
Fixed in:0:1.1.3-1.redhat_00001.1.el7eapRHSA-2024:8075
Fixed in:0:1.1.3-1.redhat_00001.1.el7eapRHSA-2024:8075
Fixed in:0:1.1.3-1.redhat_00001.1.el8eapRHSA-2024:8076
Fixed in:0:1.1.3-1.redhat_00001.1.el8eapRHSA-2024:8076
Fixed in:0:1.1.3-1.redhat_00001.1.el9eapRHSA-2024:8077
Fixed in:0:1.1.3-1.redhat_00001.1.el9eapRHSA-2024:8077
eap7-jboss-cert-helperRed Hat / RHEL
Fixed in:0:1.1.3-1.redhat_00001.1.el7eapRHSA-2024:8075
Fixed in:0:1.1.3-1.redhat_00001.1.el7eapRHSA-2024:8075
Fixed in:0:1.1.3-1.redhat_00001.1.el8eapRHSA-2024:8076
Fixed in:0:1.1.3-1.redhat_00001.1.el8eapRHSA-2024:8076
Fixed in:0:1.1.3-1.redhat_00001.1.el9eapRHSA-2024:8077
Fixed in:0:1.1.3-1.redhat_00001.1.el9eapRHSA-2024:8077
eap7-jboss-cert-helper-debuginfoRocky
Fixed in:0:1.1.3-1.redhat_00001.1.el7eapRHSA-2024:8075
eap7-jboss-cert-helper-debuginfoRed Hat / RHEL
Fixed in:0:1.1.3-1.redhat_00001.1.el7eapRHSA-2024:8075
eap7-jboss-ejb-clientRocky
Fixed in:0:4.0.55-1.Final_redhat_00001.1.el7eapRHSA-2024:8075
Fixed in:0:4.0.55-1.Final_redhat_00001.1.el7eapRHSA-2024:8075
Fixed in:0:4.0.55-1.Final_redhat_00001.1.el8eapRHSA-2024:8076
Fixed in:0:4.0.55-1.Final_redhat_00001.1.el8eapRHSA-2024:8076
Fixed in:0:4.0.55-1.Final_redhat_00001.1.el9eapRHSA-2024:8077
Fixed in:0:4.0.55-1.Final_redhat_00001.1.el9eapRHSA-2024:8077
eap7-jboss-ejb-clientRed Hat / RHEL
Fixed in:0:4.0.55-1.Final_redhat_00001.1.el7eapRHSA-2024:8075
Fixed in:0:4.0.55-1.Final_redhat_00001.1.el7eapRHSA-2024:8075
Fixed in:0:4.0.55-1.Final_redhat_00001.1.el8eapRHSA-2024:8076
Fixed in:0:4.0.55-1.Final_redhat_00001.1.el8eapRHSA-2024:8076
Fixed in:0:4.0.55-1.Final_redhat_00001.1.el9eapRHSA-2024:8077
Fixed in:0:4.0.55-1.Final_redhat_00001.1.el9eapRHSA-2024:8077
eap7-jboss-server-migrationRocky
Fixed in:0:1.10.0-39.Final_redhat_00039.1.el7eapRHSA-2024:8075
Fixed in:0:1.10.0-39.Final_redhat_00039.1.el7eapRHSA-2024:8075
Fixed in:0:1.10.0-39.Final_redhat_00039.1.el8eapRHSA-2024:8076
Fixed in:0:1.10.0-39.Final_redhat_00039.1.el8eapRHSA-2024:8076
Fixed in:0:1.10.0-39.Final_redhat_00039.1.el9eapRHSA-2024:8077
Fixed in:0:1.10.0-39.Final_redhat_00039.1.el9eapRHSA-2024:8077
eap7-jboss-server-migrationRed Hat / RHEL
Fixed in:0:1.10.0-39.Final_redhat_00039.1.el7eapRHSA-2024:8075
Fixed in:0:1.10.0-39.Final_redhat_00039.1.el7eapRHSA-2024:8075
Fixed in:0:1.10.0-39.Final_redhat_00039.1.el8eapRHSA-2024:8076
Fixed in:0:1.10.0-39.Final_redhat_00039.1.el8eapRHSA-2024:8076
Fixed in:0:1.10.0-39.Final_redhat_00039.1.el9eapRHSA-2024:8077
Fixed in:0:1.10.0-39.Final_redhat_00039.1.el9eapRHSA-2024:8077
eap7-jboss-server-migration-cliRocky
Fixed in:0:1.10.0-39.Final_redhat_00039.1.el7eapRHSA-2024:8075
Fixed in:0:1.10.0-39.Final_redhat_00039.1.el8eapRHSA-2024:8076
Fixed in:0:1.10.0-39.Final_redhat_00039.1.el9eapRHSA-2024:8077
eap7-jboss-server-migration-cliRed Hat / RHEL
Fixed in:0:1.10.0-39.Final_redhat_00039.1.el7eapRHSA-2024:8075
Fixed in:0:1.10.0-39.Final_redhat_00039.1.el8eapRHSA-2024:8076
Fixed in:0:1.10.0-39.Final_redhat_00039.1.el9eapRHSA-2024:8077
eap7-jboss-server-migration-coreRed Hat / RHEL
Fixed in:0:1.10.0-39.Final_redhat_00039.1.el7eapRHSA-2024:8075
Fixed in:0:1.10.0-39.Final_redhat_00039.1.el8eapRHSA-2024:8076
Fixed in:0:1.10.0-39.Final_redhat_00039.1.el9eapRHSA-2024:8077
eap7-jboss-server-migration-coreRocky
Fixed in:0:1.10.0-39.Final_redhat_00039.1.el7eapRHSA-2024:8075
Fixed in:0:1.10.0-39.Final_redhat_00039.1.el8eapRHSA-2024:8076
Fixed in:0:1.10.0-39.Final_redhat_00039.1.el9eapRHSA-2024:8077
eap7-jbossws-cxfRed Hat / RHEL
Fixed in:0:5.4.12-1.Final_redhat_00001.1.el7eapRHSA-2024:8075
Fixed in:0:5.4.12-1.Final_redhat_00001.1.el7eapRHSA-2024:8075
Fixed in:0:5.4.12-1.Final_redhat_00001.1.el8eapRHSA-2024:8076
Fixed in:0:5.4.12-1.Final_redhat_00001.1.el8eapRHSA-2024:8076
Fixed in:0:5.4.12-1.Final_redhat_00001.1.el9eapRHSA-2024:8077
Fixed in:0:5.4.12-1.Final_redhat_00001.1.el9eapRHSA-2024:8077
eap7-jbossws-cxfRocky
Fixed in:0:5.4.12-1.Final_redhat_00001.1.el7eapRHSA-2024:8075
Fixed in:0:5.4.12-1.Final_redhat_00001.1.el7eapRHSA-2024:8075
Fixed in:0:5.4.12-1.Final_redhat_00001.1.el8eapRHSA-2024:8076
Fixed in:0:5.4.12-1.Final_redhat_00001.1.el8eapRHSA-2024:8076
Fixed in:0:5.4.12-1.Final_redhat_00001.1.el9eapRHSA-2024:8077
Fixed in:0:5.4.12-1.Final_redhat_00001.1.el9eapRHSA-2024:8077
eap7-jsoupRed Hat / RHEL
Fixed in:0:1.15.4-1.redhat_00003.1.el7eapRHSA-2024:8075
Fixed in:0:1.15.4-1.redhat_00003.1.el7eapRHSA-2024:8075
Fixed in:0:1.15.4-1.redhat_00003.1.el8eapRHSA-2024:8076
Fixed in:0:1.15.4-1.redhat_00003.1.el8eapRHSA-2024:8076
Fixed in:0:1.15.4-1.redhat_00003.1.el9eapRHSA-2024:8077
Fixed in:0:1.15.4-1.redhat_00003.1.el9eapRHSA-2024:8077
eap7-jsoupRocky
Fixed in:0:1.15.4-1.redhat_00003.1.el7eapRHSA-2024:8075
Fixed in:0:1.15.4-1.redhat_00003.1.el7eapRHSA-2024:8075
Fixed in:0:1.15.4-1.redhat_00003.1.el8eapRHSA-2024:8076
Fixed in:0:1.15.4-1.redhat_00003.1.el8eapRHSA-2024:8076
Fixed in:0:1.15.4-1.redhat_00003.1.el9eapRHSA-2024:8077
Fixed in:0:1.15.4-1.redhat_00003.1.el9eapRHSA-2024:8077
eap7-undertow-jastowRocky
Fixed in:0:2.0.15-1.Final_redhat_00001.1.el7eapRHSA-2024:8075
Fixed in:0:2.0.15-1.Final_redhat_00001.1.el7eapRHSA-2024:8075
Fixed in:0:2.0.15-1.Final_redhat_00001.1.el8eapRHSA-2024:8076
Fixed in:0:2.0.15-1.Final_redhat_00001.1.el8eapRHSA-2024:8076
Fixed in:0:2.0.15-1.Final_redhat_00001.1.el9eapRHSA-2024:8077
Fixed in:0:2.0.15-1.Final_redhat_00001.1.el9eapRHSA-2024:8077
eap7-undertow-jastowRed Hat / RHEL
Fixed in:0:2.0.15-1.Final_redhat_00001.1.el7eapRHSA-2024:8075
Fixed in:0:2.0.15-1.Final_redhat_00001.1.el7eapRHSA-2024:8075
Fixed in:0:2.0.15-1.Final_redhat_00001.1.el8eapRHSA-2024:8076
Fixed in:0:2.0.15-1.Final_redhat_00001.1.el8eapRHSA-2024:8076
Fixed in:0:2.0.15-1.Final_redhat_00001.1.el9eapRHSA-2024:8077
Fixed in:0:2.0.15-1.Final_redhat_00001.1.el9eapRHSA-2024:8077
eap7-wildflyRocky
Fixed in:0:7.4.19-1.GA_redhat_00002.1.el7eapRHSA-2024:8075
Fixed in:0:7.4.19-1.GA_redhat_00002.1.el7eapRHSA-2024:8075
Fixed in:0:7.4.19-1.GA_redhat_00002.1.el8eapRHSA-2024:8076
Fixed in:0:7.4.19-1.GA_redhat_00002.1.el8eapRHSA-2024:8076
Fixed in:0:7.4.19-1.GA_redhat_00002.1.el9eapRHSA-2024:8077
Fixed in:0:7.4.19-1.GA_redhat_00002.1.el9eapRHSA-2024:8077
eap7-wildflyRed Hat / RHEL
Fixed in:0:7.4.19-1.GA_redhat_00002.1.el7eapRHSA-2024:8075
Fixed in:0:7.4.19-1.GA_redhat_00002.1.el7eapRHSA-2024:8075
Fixed in:0:7.4.19-1.GA_redhat_00002.1.el8eapRHSA-2024:8076
Fixed in:0:7.4.19-1.GA_redhat_00002.1.el8eapRHSA-2024:8076
Fixed in:0:7.4.19-1.GA_redhat_00002.1.el9eapRHSA-2024:8077
Fixed in:0:7.4.19-1.GA_redhat_00002.1.el9eapRHSA-2024:8077
eap7-wildfly-java-jdk11Red Hat / RHEL
Fixed in:0:7.4.19-1.GA_redhat_00002.1.el7eapRHSA-2024:8075
Fixed in:0:7.4.19-1.GA_redhat_00002.1.el8eapRHSA-2024:8076
Fixed in:0:7.4.19-1.GA_redhat_00002.1.el9eapRHSA-2024:8077
eap7-wildfly-java-jdk11Rocky
Fixed in:0:7.4.19-1.GA_redhat_00002.1.el7eapRHSA-2024:8075
Fixed in:0:7.4.19-1.GA_redhat_00002.1.el8eapRHSA-2024:8076
Fixed in:0:7.4.19-1.GA_redhat_00002.1.el9eapRHSA-2024:8077
eap7-wildfly-java-jdk17Rocky
Fixed in:0:7.4.19-1.GA_redhat_00002.1.el8eapRHSA-2024:8076
Fixed in:0:7.4.19-1.GA_redhat_00002.1.el9eapRHSA-2024:8077
eap7-wildfly-java-jdk17Red Hat / RHEL
Fixed in:0:7.4.19-1.GA_redhat_00002.1.el8eapRHSA-2024:8076
Fixed in:0:7.4.19-1.GA_redhat_00002.1.el9eapRHSA-2024:8077
eap7-wildfly-java-jdk8Red Hat / RHEL
Fixed in:0:7.4.19-1.GA_redhat_00002.1.el7eapRHSA-2024:8075
Fixed in:0:7.4.19-1.GA_redhat_00002.1.el8eapRHSA-2024:8076
Fixed in:0:7.4.19-1.GA_redhat_00002.1.el9eapRHSA-2024:8077
eap7-wildfly-java-jdk8Rocky
Fixed in:0:7.4.19-1.GA_redhat_00002.1.el7eapRHSA-2024:8075
Fixed in:0:7.4.19-1.GA_redhat_00002.1.el8eapRHSA-2024:8076
Fixed in:0:7.4.19-1.GA_redhat_00002.1.el9eapRHSA-2024:8077
eap7-wildfly-javadocsRocky
Fixed in:0:7.4.19-1.GA_redhat_00002.1.el7eapRHSA-2024:8075
Fixed in:0:7.4.19-1.GA_redhat_00002.1.el8eapRHSA-2024:8076
Fixed in:0:7.4.19-1.GA_redhat_00002.1.el9eapRHSA-2024:8077
eap7-wildfly-javadocsRed Hat / RHEL
Fixed in:0:7.4.19-1.GA_redhat_00002.1.el7eapRHSA-2024:8075
Fixed in:0:7.4.19-1.GA_redhat_00002.1.el8eapRHSA-2024:8076
Fixed in:0:7.4.19-1.GA_redhat_00002.1.el9eapRHSA-2024:8077
eap7-wildfly-modulesRed Hat / RHEL
Fixed in:0:7.4.19-1.GA_redhat_00002.1.el7eapRHSA-2024:8075
Fixed in:0:7.4.19-1.GA_redhat_00002.1.el8eapRHSA-2024:8076
Fixed in:0:7.4.19-1.GA_redhat_00002.1.el9eapRHSA-2024:8077
eap7-wildfly-modulesRocky
Fixed in:0:7.4.19-1.GA_redhat_00002.1.el7eapRHSA-2024:8075
Fixed in:0:7.4.19-1.GA_redhat_00002.1.el8eapRHSA-2024:8076
Fixed in:0:7.4.19-1.GA_redhat_00002.1.el9eapRHSA-2024:8077
eap7-xalan-j2Red Hat / RHEL
Fixed in:0:2.7.1-37.redhat_00015.1.el7eapRHSA-2024:8075
Fixed in:0:2.7.1-37.redhat_00015.1.el7eapRHSA-2024:8075
Fixed in:0:2.7.1-37.redhat_00015.1.el8eapRHSA-2024:8076
Fixed in:0:2.7.1-37.redhat_00015.1.el8eapRHSA-2024:8076
Fixed in:0:2.7.1-37.redhat_00015.1.el9eapRHSA-2024:8077
Fixed in:0:2.7.1-37.redhat_00015.1.el9eapRHSA-2024:8077
eap7-xalan-j2Rocky
Fixed in:0:2.7.1-37.redhat_00015.1.el7eapRHSA-2024:8075
Fixed in:0:2.7.1-37.redhat_00015.1.el7eapRHSA-2024:8075
Fixed in:0:2.7.1-37.redhat_00015.1.el8eapRHSA-2024:8076
Fixed in:0:2.7.1-37.redhat_00015.1.el8eapRHSA-2024:8076
Fixed in:0:2.7.1-37.redhat_00015.1.el9eapRHSA-2024:8077
Fixed in:0:2.7.1-37.redhat_00015.1.el9eapRHSA-2024:8077
mtr/mtrRed Hat / RHEL
Fixed in:operator-bundle@sha256:75ebbef1804fbcb83ee23b2e65ea2a70612ecc6d4db5185274944c9651cedbfd_arm64RHSA-2024:6656
Fixed in:operator-bundle@sha256:190a6fa2a6a9b6b182cdf9cab18814d05c203b54ca18dc533e553fa5dcca779e_amd64RHSA-2024:6656
Fixed in:rhel8-operator@sha256:7d50eab932d763330b1ce37d36842598f110884c1af798e1f2f5629c5d223e52_amd64RHSA-2024:6656
Fixed in:rhel8-operator@sha256:1ea56096b9b1101e226f1f9bf08a04f7c9a34e926004ad385db47c0ea6de1e73_arm64RHSA-2024:6656
Fixed in:operator-bundle@sha256:d21a3b40cd89103a1d280ea8d91f17b55d0ab31c340510989c296d9d6b207a63_ppc64leRHSA-2024:6656
Fixed in:rhel8-operator@sha256:6d9f1cd11c62b093d0998ada19d570d2dc2aa81548e6bacb9b1a141d58d53c0c_ppc64leRHSA-2024:6656
Fixed in:operator-bundle@sha256:d3049bd81b789e1e6139f65482f2a561e2f3951ff23a2053fe3aea1c920171c1_s390xRHSA-2024:6656
Fixed in:rhel8-operator@sha256:dffa2b0c8da17f275ddbb7c93d298fa863e223c9135838b5cf305ae09a1b99c1_s390xRHSA-2024:6656
mtr/mtrRocky
Fixed in:operator-bundle@sha256:190a6fa2a6a9b6b182cdf9cab18814d05c203b54ca18dc533e553fa5dcca779e_amd64RHSA-2024:6656
Fixed in:rhel8-operator@sha256:7d50eab932d763330b1ce37d36842598f110884c1af798e1f2f5629c5d223e52_amd64RHSA-2024:6656
Fixed in:operator-bundle@sha256:75ebbef1804fbcb83ee23b2e65ea2a70612ecc6d4db5185274944c9651cedbfd_arm64RHSA-2024:6656
Fixed in:rhel8-operator@sha256:1ea56096b9b1101e226f1f9bf08a04f7c9a34e926004ad385db47c0ea6de1e73_arm64RHSA-2024:6656
Fixed in:operator-bundle@sha256:d21a3b40cd89103a1d280ea8d91f17b55d0ab31c340510989c296d9d6b207a63_ppc64leRHSA-2024:6656
Fixed in:rhel8-operator@sha256:6d9f1cd11c62b093d0998ada19d570d2dc2aa81548e6bacb9b1a141d58d53c0c_ppc64leRHSA-2024:6656
Fixed in:operator-bundle@sha256:d3049bd81b789e1e6139f65482f2a561e2f3951ff23a2053fe3aea1c920171c1_s390xRHSA-2024:6656
Fixed in:rhel8-operator@sha256:dffa2b0c8da17f275ddbb7c93d298fa863e223c9135838b5cf305ae09a1b99c1_s390xRHSA-2024:6656
mtr/mtr-webRocky
Fixed in:container-rhel8@sha256:0a0662d4d8215057624af15121f03206d13665df318ca1075a5fe605b49d8ead_ppc64leRHSA-2024:6656
Fixed in:container-rhel8@sha256:487d22a14ff07e7fb2c1c16e054481bbd5e59b3de9dabb871c75885f7b9e3801_amd64RHSA-2024:6656
Fixed in:container-rhel8@sha256:0fba106644240713f8ebbad92089b4e63a8030ecb4671ab12cd21cdd47d10459_s390xRHSA-2024:6656
mtr/mtr-webRed Hat / RHEL
Fixed in:container-rhel8@sha256:487d22a14ff07e7fb2c1c16e054481bbd5e59b3de9dabb871c75885f7b9e3801_amd64RHSA-2024:6656
Fixed in:container-rhel8@sha256:0a0662d4d8215057624af15121f03206d13665df318ca1075a5fe605b49d8ead_ppc64leRHSA-2024:6656
Fixed in:container-rhel8@sha256:0fba106644240713f8ebbad92089b4e63a8030ecb4671ab12cd21cdd47d10459_s390xRHSA-2024:6656
mtr/mtr-web-executorRed Hat / RHEL
Fixed in:container-rhel8@sha256:607c54e52652334be36ef3b10745df01c42dc9f95787ca3e9e472a10d3982cf3_arm64RHSA-2024:6656
Fixed in:container-rhel8@sha256:a7e78424a9f361181f5d07f17ace0659be0d2f1156cf3457836a94a116e75839_s390xRHSA-2024:6656
Fixed in:container-rhel8@sha256:61cc20767de585645674ba9754872e2a8195a17d2a2406c2465621fcf9750bda_ppc64leRHSA-2024:6656
Fixed in:container-rhel8@sha256:df22ed74f2ef56af2192da45fa02e1e4ab76e2106b4b42740a1160df06b9d259_amd64RHSA-2024:6656
mtr/mtr-web-executorRocky
Fixed in:container-rhel8@sha256:a7e78424a9f361181f5d07f17ace0659be0d2f1156cf3457836a94a116e75839_s390xRHSA-2024:6656
Fixed in:container-rhel8@sha256:607c54e52652334be36ef3b10745df01c42dc9f95787ca3e9e472a10d3982cf3_arm64RHSA-2024:6656
Fixed in:container-rhel8@sha256:61cc20767de585645674ba9754872e2a8195a17d2a2406c2465621fcf9750bda_ppc64leRHSA-2024:6656
Fixed in:container-rhel8@sha256:df22ed74f2ef56af2192da45fa02e1e4ab76e2106b4b42740a1160df06b9d259_amd64RHSA-2024:6656

Remediation is compiled from vendor and distribution security advisories. Always confirm against the linked source for your exact version and platform.

CVSS v3 Vector

Exploitability

Attack VectorNetwork
Attack ComplexityLow
Privileges RequiredNone
User InteractionRequired
ScopeChanged

Impact

ConfidentialityLow
IntegrityLow
AvailabilityNone

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Exploit Intelligence

1.21%probability of exploitation in 30 days
65thpercentile

Moderate risk: more likely to be exploited than 65% of all known CVEs.

References

Exploit1
Vendor Advisory1
Third-Party Advisory2
Embed a live status badge for CVE-2022-36033
CVE-2022-36033 severity badge

Markdown

[![CVE-2022-36033](https://tridentstack.com/cve/badge/CVE-2022-36033.svg)](https://tridentstack.com/cve/CVE-2022-36033)

HTML

<a href="https://tridentstack.com/cve/CVE-2022-36033"><img src="https://tridentstack.com/cve/badge/CVE-2022-36033.svg" alt="CVE-2022-36033"></a>

Find and fix vulnerabilities across your fleet

TridentStack Control continuously scans your Windows, macOS, and Linux fleet for known vulnerabilities, prioritizes them by severity and active exploitation, and patches them automatically.

Start free

This product uses NVD data but is not endorsed or certified by the NVD. EPSS scores courtesy of FIRST.org (https://www.first.org/epss). Source: CISA KEV Catalog. Data as of 2024-11-21.