An Elevated Privileges issue exists in JBoss AS 7 Community Release due to the improper implementation in the security context propagation, A threat gets reused from the thread pool that still retains the security context from the process last used, which lets a local user obtain elevated privileges.
CPE | Name | Operator | Version |
---|---|---|---|
jboss_application_server | eq | 7.1.1 | |
jboss_application_server | eq | 7.1.0 | |
jboss_enterprise_application_platform | eq | 6.0.0 beta |