1. Home
  2. Vulnerabilities
  3. CVE-2020-1719

CVE-2020-1719

CVSS v3.1 5.4 (Medium)
54% Progress
CVSS v2.0 5.5 (Medium)
55% Progress
EPSS 0.05 % (24th)
0.05% Progress
Affected Products 1
Advisories 1
Info CVSS EPSS CAPEC Affected Configurations References Security Advisories Packages & Software Tools, Exploits & PoC Graph Web & Social Timeline

A flaw was found in wildfly. The EJBContext principle is not popped back after invoking another EJB using a different Security Domain. The highest threat from this vulnerability is to data confidentiality and integrity. Versions before wildfly 20.0.0.Final are affected.

Weaknesses
CWE-270
Privilege Context Switching Error
CVE Status
PUBLISHED
CNA
Red Hat, Inc.
Published Date
2021-06-07 17:15:07
(3 years ago)
Updated Date
2021-06-16 15:17:13
(3 years ago)

Affected Products

Redhat

Configuration #1

    CPE23 From Up To
  Redhat Wildfly prior 20.0.0 version cpe:2.3:a:redhat:wildfly < 20.0.0