Description
A flaw was found in the JBoss EAP Vault system in all versions before 7.2.6.GA. Confidential information of the system property's security attribute value is revealed in the JBoss EAP log file when executing a JBoss CLI 'reload' command. This flaw can lead to the exposure of confidential information.
Remediation
References
Related Vulnerabilities
Django Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-2513)
Ruby Improper Input Validation Vulnerability (CVE-2011-2705)
Ampache Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-51485)
PmWiki Other Vulnerability (CVE-2006-2840)
Oracle Application Server CVE-2008-5438 Vulnerability (CVE-2008-5438)