Description
The domain controller in Red Hat JBoss Enterprise Application Platform (EAP) 7.x before 7.0.2 allows remote authenticated users to gain privileges by leveraging failure to propagate administrative RBAC configuration to all slaves.
Remediation
References
Related Vulnerabilities
Django Server-Side Request Forgery (SSRF) Vulnerability (CVE-2021-33571)
MongoDb Incorrect Permission Assignment for Critical Resource Vulnerability (CVE-2021-20326)
WordPress Plugin Default Thumbnail Plus Arbitrary File Upload (1.0.2.3)
WordPress Plugin WPtouch Arbitrary File Upload (3.4.6)
MediaWiki Improper Input Validation Vulnerability (CVE-2020-35477)