A flaw was found in Wildfly. An incorrect JBOSS_LOCAL_USER challenge location when using the elytron configuration may lead to JBOSS_LOCAL_USER access to all users on the machine. The highest threat from this vulnerability is to confidentiality, integrity, and availability. This flaw affects wildfly-core versions prior to 17.0.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2022-05-24T18:18:43

Updated: 2024-08-03T17:01:08.330Z

Reserved: 2021-08-18T00:00:00

Link: CVE-2021-3717

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2022-05-24T19:15:09.143

Modified: 2024-11-21T06:22:14.290

Link: CVE-2021-3717

cve-icon Redhat

Severity : Moderate

Publid Date: 2021-08-18T00:00:00Z

Links: CVE-2021-3717 - Bugzilla