← back
CVE-2020-1748

CVE-2020-1748

EPSS 1.4%
A flaw was found in all supported versions before wildfly-elytron-1.6.8.Final-redhat-00001, where the WildFlySecurityManager checks were bypassed when using custom security managers, resulting in an improper authorization. This flaw leads to information exposure by unauthenticated access to secure resources.
Affected products
n/a · Wildfly

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://bugzilla.redhat.com/show_bug.cgi?id=1807707https://security.netapp.com/advisory/ntap-20201001-0005/