← back
CVE-2020-25640

CVE-2020-25640

EPSS 1.3%CWE-209
A flaw was discovered in WildFly before 21.0.0.Final where, Resource adapter logs plain text JMS password at warning level on connection error, inserting sensitive information in the log file.
Affected products
n/a · wildfly

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://bugzilla.redhat.com/show_bug.cgi?id=1881637https://github.com/amqphub/amqp-10-resource-adapter/issues/13https://security.netapp.com/advisory/ntap-20201210-0001/