A flaw was found in Soteria prior to 1.0.1, in a way that multiple requests occurring concurrently causing security identity corruption across concurrent threads when using EE Security with WildFly Elytron which can lead to the possibility of being handled using the identity from another request.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
redhat soteria |
||
redhat jboss enterprise application platform 7.0.0 |
||
redhat openshift application runtimes - |
||
redhat jboss enterprise application platform continuous delivery - |