CVE-2020-1719

Summary

A flaw was found in wildfly. The EJBContext principle is not popped back after invoking another EJB using a different Security Domain. The highest threat from this vulnerability is to data confidentiality and integrity. Versions before wildfly 20.0.0.Final are affected.

Affected Software

VendorProductVersion RangeStatus
n/aWildflywildfly 20.0.0.Finalaffected

Weaknesses

  • CWE-270: CWE-270

ADP Enrichment

CVE Program Container

Additional References

References