Red Hat WildFly Core 7.0.0 Alpha 3

CPE Details

Red Hat WildFly Core 7.0.0 Alpha 3
redhat
wildfly_core
7.0.0
2019-09-17
17h03 +00:00
2019-09-17
17h03 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:redhat:wildfly_core:7.0.0:alpha3:*:*:*:*:*:*

Informations

Vendor

redhat

Product

wildfly_core

Version

7.0.0

Update

alpha3

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2023-4061 2023-11-08 00h56 +00:00 A flaw was found in wildfly-core. A management user could use the resolve-expression in the HAL Interface to read possible sensitive information from the Wildfly system. This issue could allow a malicious user to access the system and obtain possible sensitive information from the system.
6.5
Medium
CVE-2021-3629 2022-05-24 16h19 +00:00 A flaw was found in Undertow. A potential security issue in flow control handling by the browser over http/2 may potentially cause overhead or a denial of service in the server. The highest threat from this vulnerability is availability. This flaw affects Undertow versions prior to 2.0.40.Final and prior to 2.2.11.Final.
5.9
Medium
CVE-2021-3717 2022-05-24 16h18 +00:00 A flaw was found in Wildfly. An incorrect JBOSS_LOCAL_USER challenge location when using the elytron configuration may lead to JBOSS_LOCAL_USER access to all users on the machine. The highest threat from this vulnerability is to confidentiality, integrity, and availability. This flaw affects wildfly-core versions prior to 17.0.
7.8
High
CVE-2019-14838 2019-10-14 12h32 +00:00 A flaw was found in wildfly-core before 7.2.5.GA. The Management users with Monitor, Auditor and Deployer Roles should not be allowed to modify the runtime state of the server
4.9
Medium