RHSA-2020:3678: Important: Red Hat Process Automation Manager 7.8.1 Security Update
Red Hat Process Automation Manager is an open source business process management suite that combines process management and decision service management and enables business and IT users to create, manage, validate, and deploy process applications and decision services.This release of Red Hat Process Automation Manager 7.8.1 serves as an update to Red Hat Process Automation Manager 7.8.0, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References.Security Fix(es): jdbc-postgresql: postgresql-jdbc: XML external entity (XXE) vulnerability in PgSQLXML (CVE-2020-13692) keycloak: Lack of checks in ObjectInputStream leading to Remote Code Execution (CVE-2020-1714) For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
Affected Software
Remediation
Event History
Frequently Asked Questions
What is the severity of RHSA-2020:3678?
The severity of RHSA-2020:3678 is classified as important.
How do I fix RHSA-2020:3678?
To fix RHSA-2020:3678, you should apply the recommended updates as specified in the advisory.
Which versions of Red Hat Process Automation Manager are affected by RHSA-2020:3678?
RHSA-2020:3678 affects certain versions of Red Hat Process Automation Manager that are specified in the advisory.
Is there a workaround for RHSA-2020:3678?
There are no officially documented workarounds for RHSA-2020:3678; the best solution is to apply the update.
Can RHSA-2020:3678 lead to data breaches?
Yes, if left unaddressed, vulnerabilities like RHSA-2020:3678 could potentially lead to data breaches or unauthorized access.