2 matches found
CVE-2021-3688
A flaw was found in Red Hat JBoss Core Services HTTP Server in all versions, where it does not properly normalize the path component of a request URL contains dot-dot-semicolons. This flaw could allow an attacker to access unauthorized information or possibly conduct further attacks. The highest...
CVE-2021-3688
CVE-2021-3688 affects Red Hat JBoss Core Services HTTP Server (all versions). The root cause is improper normalization of the path component in URL requests that contain dot-dot-semicolon(s), which could allow an attacker to access unauthorized information and potentially facilitate further attac...