Description
Red Hat JBoss Enterprise Application Platform (JBEAP) 6.2.0 and JBoss WildFly Application Server, when run under a security manager, do not properly restrict access to the Modular Service Container (MSC) service registry, which allows local users to modify the server via a crafted deployment.
Remediation
References
Related Vulnerabilities
WordPress Plugin MiniMax-Page Layout Builder Cross-Site Scripting (1.3.4)
WordPress 4.6.x Directory Traversal (4.6 - 4.6.28)
WordPress Plugin Titan Framework Cross-Site Scripting (1.7.5)
MediaWiki Resource Management Errors Vulnerability (CVE-2015-8002)
Jetty Improper Resource Shutdown or Release Vulnerability (CVE-2022-2191)