A flaw was found in Wildfly. An incorrect JBOSS_LOCAL_USER challenge location when using the elytron configuration may lead to JBOSS_LOCAL_USER access to all users on the machine. The highest threat from this vulnerability is to confidentiality, integrity, and availability. This flaw affects wildfly-core versions before 17.0.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
redhat single sign-on - |
||
redhat jboss enterprise application platform - |
||
redhat wildfly core |
||
redhat jboss_enterprise_application_platform 7.4 |
||
redhat jboss_enterprise_application_platform 7.3 |