CVE-2020-10718

A flaw was found in Wildfly before wildfly-embedded-13.0.0.Final, where the embedded managed process API has an exposed setting of the Thread Context Classloader (TCCL). This setting is exposed as a public method, which can bypass the security manager. The highest threat from this vulnerability is to confidentiality.
References
Link Resource
https://bugzilla.redhat.com/show_bug.cgi?id=1828476 Issue Tracking Vendor Advisory
Configurations

Configuration 1

cpe:2.3:a:redhat:jboss_fuse:7.0.0:*:*:*:*:*:*:*
cpe:2.3:a:redhat:wildfly:*:*:*:*:*:*:*:*

Information

Published : 2020-09-16 07:15

Updated : 2020-09-22 06:52


NVD link : CVE-2020-10718

Mitre link : CVE-2020-10718

Products Affected
No products.