WEB APPLICATION VULNERABILITIES Standard & Premium

Jboss EAP Improper Initialization Vulnerability (CVE-2023-4503)

Description

An improper initialization vulnerability was found in Galleon. When using Galleon to provision custom EAP or EAP-XP servers, the servers are created unsecured. This issue could allow an attacker to access remote HTTP services available from the server.

Remediation

References

Related Vulnerabilities

Magento Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2020-9591)

WordPress Plugin UserPro-Community and User Profile Multiple Vulnerabilities (5.1.4)

WordPress Plugin Brafton Cross-Site Scripting (3.4.7)

MongoDb Other Vulnerability (CVE-2020-7929)

MySQL CVE-2021-1998 Vulnerability (CVE-2021-1998)

Severity

High

Classification

CVE-2023-4503 CWE-665 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Tags

Missing Update Known Vulnerabilities