Description

A flaw was found in Wildfly 9.x. A path traversal vulnerability through the org.wildfly.extension.undertow.deployment.ServletResourceManager.getResource method could lead to information disclosure of arbitrary local files.

Remediation

References

CVE-2018-1047

Related Vulnerabilities

WordPress Plugin WooCommerce Salesforce Integration Cross-Site Scripting (1.5.8)

WordPress Plugin s2Member Framework 's2_invoice' Parameter Remote Security Bypass (111105)

WordPress Plugin WP-VR-view-Add Photo Sphere, 360 video to WordPress Cross-Site Scripting (1.6)

WordPress 5.2.x Multiple Vulnerabilities (5.2 - 5.2.2)

WordPress Plugin moreAds SE Open Redirect (1.4.8)

Severity

Medium

Classification

CVE-2018-1047 CWE-22 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Tags

Missing Update Known Vulnerabilities