7.5
CVE-2022-1278
- EPSS 0.88%
- Veröffentlicht 13.09.2022 14:15:08
- Zuletzt bearbeitet 21.11.2024 06:40:23
- Quelle secalert@redhat.com
- Teams Watchlist Login
- Unerledigt Login
A flaw was found in WildFly, where an attacker can see deployment names, endpoints, and any other data the trace payload may contain.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Redhat ≫ Amq Online Version-
Redhat ≫ Integration Camel K Version-
Redhat ≫ Integration Service Registry Version-
Redhat ≫ Jboss A-mq Version7
Redhat ≫ Single Sign-on Version7.0
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.88% | 0.747 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 3.9 | 3.6 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
|
CWE-1188 Initialization of a Resource with an Insecure Default
The product initializes or sets a resource with a default that is intended to be changed by the administrator, but the default is not secure.