CVE-2020-14297

A flaw was discovered in Wildfly's EJB Client as shipped with Red Hat JBoss EAP 7, where some specific EJB transaction objects may get accumulated over the time and can cause services to slow down and eventaully unavailable. An attacker can take advantage and cause denial of service attack and make services unavailable.
References
Link Resource
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-14297 Issue Tracking Third Party Advisory
Configurations

Configuration 1

cpe:2.3:a:redhat:jboss_fuse:6.0.0:*:*:*:*:*:*:*
cpe:2.3:a:redhat:single_sign-on:7.0:*:*:*:*:*:*:*
cpe:2.3:a:redhat:openshift_application_runtimes:-:*:*:*:*:*:*:*
cpe:2.3:a:redhat:jboss_enterprise_application_platform_continuous_delivery:-:*:*:*:*:*:*:*
cpe:2.3:a:redhat:amq:2.0:*:*:*:*:*:*:*

Information

Published : 2020-07-24 04:15

Updated : 2023-02-12 11:39


NVD link : CVE-2020-14297

Mitre link : CVE-2020-14297

Products Affected
CWE