7.5
CVE-2022-1278
- EPSS 0.88%
- Published 13.09.2022 14:15:08
- Last modified 21.11.2024 06:40:23
- Source secalert@redhat.com
- Teams watchlist Login
- Open Login
A flaw was found in WildFly, where an attacker can see deployment names, endpoints, and any other data the trace payload may contain.
Data is provided by the National Vulnerability Database (NVD)
Redhat ≫ Amq Online Version-
Redhat ≫ Integration Camel K Version-
Redhat ≫ Integration Service Registry Version-
Redhat ≫ Jboss A-mq Version7
Redhat ≫ Single Sign-on Version7.0
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.88% | 0.747 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 3.9 | 3.6 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
|
CWE-1188 Initialization of a Resource with an Insecure Default
The product initializes or sets a resource with a default that is intended to be changed by the administrator, but the default is not secure.