Описание
Race condition in JBoss Weld before 2.2.8 and 3.x before 3.0.0 Alpha3 allows remote attackers to obtain information from a previous conversation via vectors related to a stale thread state.
Ссылки
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 2.2.7 (включая)
Одно из
cpe:2.3:a:redhat:jboss_weld:*:*:*:*:*:*:*:*
cpe:2.3:a:redhat:jboss_weld:3.0.0:alpha1:*:*:*:*:*:*
cpe:2.3:a:redhat:jboss_weld:3.0.0:alpha2:*:*:*:*:*:*
EPSS
Процентиль: 73%
0.00754
Низкий
4.3 Medium
CVSS2
Дефекты
CWE-362
Связанные уязвимости
redhat
около 11 лет назад
Race condition in JBoss Weld before 2.2.8 and 3.x before 3.0.0 Alpha3 allows remote attackers to obtain information from a previous conversation via vectors related to a stale thread state.
EPSS
Процентиль: 73%
0.00754
Низкий
4.3 Medium
CVSS2
Дефекты
CWE-362