4.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:S/C:P/I:N/A:N
jboss-cli is vulnerable to information disclosure. The vulnerability exists as the JBoss EAP Vault system property security attribute value is revealed on CLI ‘reload’ command.
access.redhat.com/errata/RHSA-2020:0161
access.redhat.com/security/updates/classification/#important
bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14885
issues.redhat.com/browse/JBEAP-17491
issues.redhat.com/browse/JBEAP-17541
issues.redhat.com/browse/JBEAP-17651
issues.redhat.com/browse/JBEAP-17652
issues.redhat.com/browse/JBEAP-17666
issues.redhat.com/browse/JBEAP-17773
issues.redhat.com/browse/JBEAP-17779
issues.redhat.com/browse/JBEAP-17789
issues.redhat.com/browse/JBEAP-17805
issues.redhat.com/browse/JBEAP-17836
issues.redhat.com/browse/JBEAP-17837
issues.redhat.com/browse/JBEAP-17887
issues.redhat.com/browse/JBEAP-17898
issues.redhat.com/browse/JBEAP-17905
issues.redhat.com/browse/JBEAP-17906
issues.redhat.com/browse/JBEAP-17940
issues.redhat.com/browse/JBEAP-17945
issues.redhat.com/browse/JBEAP-17974
issues.redhat.com/browse/JBEAP-17998
issues.redhat.com/browse/JBEAP-18169
issues.redhat.com/browse/JBEAP-18170
4.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:S/C:P/I:N/A:N