A flaw was found in Wildfly. An incorrect JBOSS_LOCAL_USER challenge location when using the elytron configuration may lead to JBOSS_LOCAL_USER access to all users on the machine. The highest threat from this vulnerability is to confidentiality, integrity, and availability. This flaw affects wildfly-core versions prior to 17.0.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: redhat
Published: 2022-05-24T18:18:43
Updated: 2024-08-03T17:01:08.330Z
Reserved: 2021-08-18T00:00:00
Link: CVE-2021-3717
Vulnrichment
No data.
NVD
Status : Modified
Published: 2022-05-24T19:15:09.143
Modified: 2024-11-21T06:22:14.290
Link: CVE-2021-3717
Redhat