CVE-2020-10718
N/A
N/A
Summary
A flaw was found in Wildfly before wildfly-embedded-13.0.0.Final, where the embedded managed process API has an exposed setting of the Thread Context Classloader (TCCL). This setting is exposed as a public method, which can bypass the security manager. The highest threat from this vulnerability is to confidentiality.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | Wildfly | before wildfly-embedded-13.0.0.Final | affected |
Weaknesses
- Exposed Dangerous Method or Function
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.