Description
PicketBox, as used in Red Hat JBoss Enterprise Application Platform before 6.1.1, allows local users to obtain the admin encryption key by reading the Vault data file.
Remediation
References
Related Vulnerabilities
Liferay Portal Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2020-15839)
WordPress Plugin RSS Redirect & Feedburner Alternative Unspecified Vulnerability (1.9)
WebLogic CVE-2019-2398 Vulnerability (CVE-2019-2398)
WordPress Plugin Photo Gallery by 10Web-Mobile-Friendly Image Gallery Cross-Site Scripting (1.5.68)
Squid Improper Input Validation Vulnerability (CVE-2016-2569)