Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2019/10/08 6:1 a.m.34 views

CVE-2019-3894

It was discovered that the ElytronManagedThread in Wildfly's Elytron subsystem stores a SecurityIdentity to run the thread with that security identity. As these threads do not necessarily terminate if the 'keep alive' time has not expired, this could allow a shared thread to use the wrong securit...

8.8CVSS2.4AI score0.01509EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2019/05/13 12:0 a.m.39 views

RHEL 7 : Red Hat JBoss Enterprise Application Platform 7.2.1 on RHEL 7 (RHSA-2019:1108)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2019:1108 advisory. Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on JBoss Application Server 7. This release of Red...

10CVSS7.5AI score0.10458EPSS
Exploits0References57
RedHat Linux
RedHat Linux
added 2019/05/09 6:14 p.m.142 views

Important: Red Hat Security Advisory: Red Hat Single Sign-On 7.3.1 security update

A security update is now available for Red Hat Single Sign-On 7.3 from the Customer Portal. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

10CVSS6.9AI score0.10458EPSS
Exploits0References12
RedHat Linux
RedHat Linux
added 2019/05/08 12:12 p.m.132 views

Important: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.2.1 on RHEL 7 security update

An update is now available for Red Hat JBoss Enterprise Application Platform 7.2 for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, ...

10CVSS6.9AI score0.10458EPSS
Exploits0References48
RedHat Linux
RedHat Linux
added 2019/05/08 12:4 p.m.121 views

Important: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.2.1 security update

An update is now available for Red Hat JBoss Enterprise Application Platform 7.2 for Red Hat Enterprise Linux. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

10CVSS6.9AI score0.10458EPSS
Exploits0References46
OSV
OSV
added 2019/05/03 8:29 p.m.28 views

CVE-2019-3894

It was discovered that the ElytronManagedThread in Wildfly's Elytron subsystem in versions from 11 to 16 stores a SecurityIdentity to run the thread as. These threads do not necessarily terminate if the keep alive time has not expired. This could allow a shared thread to use the wrong security...

8.8CVSS7.1AI score0.01509EPSS
Exploits0References6
CVE
CVE
added 2019/05/03 7:25 p.m.106 views

CVE-2019-3894

Affected software: WildFly Elytron subsystem. Vulnerable component: ElytronManagedThread that stores a SecurityIdentity for the thread. Root cause: threads may not terminate after keep-alive time, enabling a shared thread to run with the wrong security identity. Impact: potential confidentiality,...

8.8CVSS8.4AI score0.01509EPSS
Exploits0References6Affected Software1
Rows per page
Query Builder