Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A flaw was found in Soteria before 1.0.1, in a way that multiple requests occurring concurrently causing security identity corruption across concurrent threads when using EE Security with WildFly Elytron which can lead to the possibility of being handled using the identity from another request.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N
Vulnerability Type
访问控制不恰当
Vulnerability Title
Red Hat WildFly Elytron 输入验证错误漏洞
Vulnerability Description
Red Hat WildFly Elytron是美国红帽(Red Hat)公司的一款用于应用程序服务器的安全框架。该产品支持配置服务器的管理访问权限等功能。 WildFly Elytron Soteria 1.0.1之前版本中存在输入验证错误漏洞。该漏洞源于网络系统或产品未对输入的数据进行正确的验证。
CVSS Information
N/A
Vulnerability Type
N/A