Описание
An Elevated Privileges issue exists in JBoss AS 7 Community Release due to the improper implementation in the security context propagation, A threat gets reused from the thread pool that still retains the security context from the process last used, which lets a local user obtain elevated privileges.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was not-affected [7.x only]] |
| precise | not-affected | 7.x only |
| trusty | not-affected | 7.x only |
| trusty/esm | DNE | trusty was not-affected [7.x only] |
| upstream | needs-triage | |
| vivid | DNE |
Показывать по
4.6 Medium
CVSS2
7.8 High
CVSS3
Связанные уязвимости
An Elevated Privileges issue exists in JBoss AS 7 Community Release due to the improper implementation in the security context propagation, A threat gets reused from the thread pool that still retains the security context from the process last used, which lets a local user obtain elevated privileges.
An Elevated Privileges issue exists in JBoss AS 7 Community Release due to the improper implementation in the security context propagation, A threat gets reused from the thread pool that still retains the security context from the process last used, which lets a local user obtain elevated privileges.
An Elevated Privileges issue exists in JBoss AS 7 Community Release du ...
An Elevated Privileges issue exists in JBoss AS 7 Community Release due to the improper implementation in the security context propagation, A threat gets reused from the thread pool that still retains the security context from the process last used, which lets a local user obtain elevated privileges.
4.6 Medium
CVSS2
7.8 High
CVSS3