{
  "schema_version": "1.7.0",
  "id": "RHSA-2026:36342",
  "related": [],
  "upstream": [
    "CVE-2025-12799"
  ],
  "published": "2026-07-08T10:09:24Z",
  "modified": "2026-07-08T10:09:24Z",
  "summary": "Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 8.1.7 security update",
  "severity": [
    {
      "type": "CVSS_V3",
      "score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:H/A:N"
    }
  ],
  "affected": [
    {
      "package": {
        "name": "eap8-apache-cxf",
        "ecosystem": "Red Hat:jboss_enterprise_application_platform:8.1::el8",
        "purl": "pkg:rpm/redhat/eap8-apache-cxf"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "0:4.0.10-3.redhat_00001.1.el8eap"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "name": "eap8-apache-cxf-rt",
        "ecosystem": "Red Hat:jboss_enterprise_application_platform:8.1::el8",
        "purl": "pkg:rpm/redhat/eap8-apache-cxf-rt"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "0:4.0.10-3.redhat_00001.1.el8eap"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "name": "eap8-apache-cxf-services",
        "ecosystem": "Red Hat:jboss_enterprise_application_platform:8.1::el8",
        "purl": "pkg:rpm/redhat/eap8-apache-cxf-services"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "0:4.0.10-3.redhat_00001.1.el8eap"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "name": "eap8-apache-cxf-tools",
        "ecosystem": "Red Hat:jboss_enterprise_application_platform:8.1::el8",
        "purl": "pkg:rpm/redhat/eap8-apache-cxf-tools"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "0:4.0.10-3.redhat_00001.1.el8eap"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "name": "eap8-artemis-wildfly-integration",
        "ecosystem": "Red Hat:jboss_enterprise_application_platform:8.1::el8",
        "purl": "pkg:rpm/redhat/eap8-artemis-wildfly-integration"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "0:2.0.4-1.Final_redhat_00001.1.el8eap"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "name": "eap8-eap-product-conf-parent",
        "ecosystem": "Red Hat:jboss_enterprise_application_platform:8.1::el8",
        "purl": "pkg:rpm/redhat/eap8-eap-product-conf-parent"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "0:801.7.0-1.GA_redhat_00001.1.el8eap"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "name": "eap8-eap-product-conf-wildfly-ee-feature-pack",
        "ecosystem": "Red Hat:jboss_enterprise_application_platform:8.1::el8",
        "purl": "pkg:rpm/redhat/eap8-eap-product-conf-wildfly-ee-feature-pack"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "0:801.7.0-1.GA_redhat_00001.1.el8eap"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "name": "eap8-hibernate",
        "ecosystem": "Red Hat:jboss_enterprise_application_platform:8.1::el8",
        "purl": "pkg:rpm/redhat/eap8-hibernate"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "0:6.6.50-1.Final_redhat_00001.1.el8eap"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "name": "eap8-hibernate-core",
        "ecosystem": "Red Hat:jboss_enterprise_application_platform:8.1::el8",
        "purl": "pkg:rpm/redhat/eap8-hibernate-core"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "0:6.6.50-1.Final_redhat_00001.1.el8eap"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "name": "eap8-hibernate-envers",
        "ecosystem": "Red Hat:jboss_enterprise_application_platform:8.1::el8",
        "purl": "pkg:rpm/redhat/eap8-hibernate-envers"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "0:6.6.50-1.Final_redhat_00001.1.el8eap"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "name": "eap8-jbossws-cxf",
        "ecosystem": "Red Hat:jboss_enterprise_application_platform:8.1::el8",
        "purl": "pkg:rpm/redhat/eap8-jbossws-cxf"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "0:7.3.8-1.Final_redhat_00001.1.el8eap"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "name": "eap8-jgroups",
        "ecosystem": "Red Hat:jboss_enterprise_application_platform:8.1::el8",
        "purl": "pkg:rpm/redhat/eap8-jgroups"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "1:5.3.23-1.Final_redhat_00001.1.el8eap"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "name": "eap8-undertow",
        "ecosystem": "Red Hat:jboss_enterprise_application_platform:8.1::el8",
        "purl": "pkg:rpm/redhat/eap8-undertow"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "0:2.3.24-4.SP3_redhat_00001.1.el8eap"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "name": "eap8-undertow-jastow",
        "ecosystem": "Red Hat:jboss_enterprise_application_platform:8.1::el8",
        "purl": "pkg:rpm/redhat/eap8-undertow-jastow"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "0:2.2.9-1.SP1_redhat_00001.1.el8eap"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "name": "eap8-wildfly",
        "ecosystem": "Red Hat:jboss_enterprise_application_platform:8.1::el8",
        "purl": "pkg:rpm/redhat/eap8-wildfly"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "0:8.1.7-4.GA_redhat_00003.1.el8eap"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "name": "eap8-wildfly-elytron",
        "ecosystem": "Red Hat:jboss_enterprise_application_platform:8.1::el8",
        "purl": "pkg:rpm/redhat/eap8-wildfly-elytron"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "0:2.6.9-1.Final_redhat_00001.1.el8eap"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "name": "eap8-wildfly-elytron-tool",
        "ecosystem": "Red Hat:jboss_enterprise_application_platform:8.1::el8",
        "purl": "pkg:rpm/redhat/eap8-wildfly-elytron-tool"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "0:2.6.9-1.Final_redhat_00001.1.el8eap"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "name": "eap8-wildfly-java-jdk17",
        "ecosystem": "Red Hat:jboss_enterprise_application_platform:8.1::el8",
        "purl": "pkg:rpm/redhat/eap8-wildfly-java-jdk17"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "0:8.1.7-4.GA_redhat_00003.1.el8eap"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "name": "eap8-wildfly-java-jdk21",
        "ecosystem": "Red Hat:jboss_enterprise_application_platform:8.1::el8",
        "purl": "pkg:rpm/redhat/eap8-wildfly-java-jdk21"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "0:8.1.7-4.GA_redhat_00003.1.el8eap"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "name": "eap8-wildfly-javadocs",
        "ecosystem": "Red Hat:jboss_enterprise_application_platform:8.1::el8",
        "purl": "pkg:rpm/redhat/eap8-wildfly-javadocs"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "0:8.1.1-11.GA_redhat_00019.1.el8eap"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "name": "eap8-wildfly-modules",
        "ecosystem": "Red Hat:jboss_enterprise_application_platform:8.1::el8",
        "purl": "pkg:rpm/redhat/eap8-wildfly-modules"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "0:8.1.7-4.GA_redhat_00003.1.el8eap"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    }
  ],
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://access.redhat.com/errata/RHSA-2026:36342"
    },
    {
      "type": "ARTICLE",
      "url": "https://access.redhat.com/security/updates/classification/#moderate"
    },
    {
      "type": "ARTICLE",
      "url": "https://docs.redhat.com/en/documentation/red_hat_jboss_enterprise_application_platform/8.1"
    },
    {
      "type": "ARTICLE",
      "url": "https://docs.redhat.com/en/documentation/red_hat_jboss_enterprise_application_platform/8.1/html/release_notes_for_red_hat_jboss_enterprise_application_platform_8.1/index"
    },
    {
      "type": "ARTICLE",
      "url": "https://docs.redhat.com/en/documentation/red_hat_jboss_enterprise_application_platform/8.1/html/red_hat_jboss_enterprise_application_platform_installation_methods/index"
    },
    {
      "type": "ARTICLE",
      "url": "https://access.redhat.com/articles/7134190"
    },
    {
      "type": "REPORT",
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2413071"
    },
    {
      "type": "ARTICLE",
      "url": "https://issues.redhat.com/browse/JBEAP-31549"
    },
    {
      "type": "ARTICLE",
      "url": "https://issues.redhat.com/browse/JBEAP-32062"
    },
    {
      "type": "ARTICLE",
      "url": "https://issues.redhat.com/browse/JBEAP-32488"
    },
    {
      "type": "ARTICLE",
      "url": "https://issues.redhat.com/browse/JBEAP-32528"
    },
    {
      "type": "ARTICLE",
      "url": "https://issues.redhat.com/browse/JBEAP-32838"
    },
    {
      "type": "ARTICLE",
      "url": "https://issues.redhat.com/browse/JBEAP-32871"
    },
    {
      "type": "ARTICLE",
      "url": "https://issues.redhat.com/browse/JBEAP-32962"
    },
    {
      "type": "ARTICLE",
      "url": "https://issues.redhat.com/browse/JBEAP-32963"
    },
    {
      "type": "ARTICLE",
      "url": "https://issues.redhat.com/browse/JBEAP-33022"
    },
    {
      "type": "ARTICLE",
      "url": "https://issues.redhat.com/browse/JBEAP-33158"
    },
    {
      "type": "ARTICLE",
      "url": "https://issues.redhat.com/browse/JBEAP-33551"
    },
    {
      "type": "ADVISORY",
      "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_36342.json"
    },
    {
      "type": "REPORT",
      "url": "https://access.redhat.com/security/cve/CVE-2025-12799"
    },
    {
      "type": "ADVISORY",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-12799"
    },
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-12799"
    }
  ]
}