Description
A flaw was found in, all under 2.0.20, in the Undertow DEBUG log for io.undertow.request.security. If enabled, an attacker could abuse this flaw to obtain the user's credentials from the log files.
Remediation
References
Related Vulnerabilities
MySQL CVE-2022-21280 Vulnerability (CVE-2022-21280)
WordPress Plugin GD Rating System Multiple Vulnerabilities (2.3)
Oracle HTTP Server CVE-2022-21271 Vulnerability (CVE-2022-21271)
MySQL CVE-2012-3147 Vulnerability (CVE-2012-3147)
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-0215)