CVE-2020-25640

Summary

A flaw was discovered in WildFly before 21.0.0.Final where, Resource adapter logs plain text JMS password at warning level on connection error, inserting sensitive information in the log file.

Affected Software

VendorProductVersion RangeStatus
n/awildflyWildfly 21.0.0.Finalaffected

Weaknesses

  • CWE-209: (CWE-209|CWE-532)

ADP Enrichment

CVE Program Container

Additional References

References