Description
The default configuration for the Command Line Interface in Red Hat Enterprise Application Platform before 6.4.0 and WildFly (formerly JBoss Application Server) uses weak permissions for .jboss-cli-history, which allows local users to obtain sensitive information via unspecified vectors.
Remediation
References
Related Vulnerabilities
Jboss EAP Out-of-bounds Read Vulnerability (CVE-2019-0210)
WordPress Plugin Shantz WordPress QOTD Cross-Site Request Forgery (1.2.2)
WordPress Plugin Media Mirror Cross-Site Scripting (1.0.6)
Oracle Database Server CVE-2020-2515 Vulnerability (CVE-2020-2515)
WordPress Plugin YITH WooCommerce Wishlist Security Bypass (2.2.13)