Max CVSS | 6.5 | Min CVSS | 4.7 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2019-3805 | 4.7 |
A flaw was discovered in wildfly versions up to 16.0.0.Final that would allow local users who are able to execute init.d script to terminate arbitrary processes on the system. An attacker could exploit this by modifying the PID file in /var/run/jboss
|
16-10-2020 - 16:04 | 03-05-2019 - 20:29 | |
CVE-2019-3894 | 6.5 |
It was discovered that the ElytronManagedThread in Wildfly's Elytron subsystem in versions from 11 to 16 stores a SecurityIdentity to run the thread as. These threads do not necessarily terminate if the keep alive time has not expired. This could all
|
15-10-2020 - 19:50 | 03-05-2019 - 20:29 |