Description
An Elevated Privileges issue exists in JBoss AS 7 Community Release due to the improper implementation in the security context propagation, A threat gets reused from the thread pool that still retains the security context from the process last used, which lets a local user obtain elevated privileges.
Remediation
References
Related Vulnerabilities
Joomla Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2009-1280)
WordPress Plugin Contact Form 7 Multi-Step Forms Security Bypass (3.0.8)
Apache HTTP Server CVE-2024-40725 Vulnerability (CVE-2024-40725)
WordPress Plugin One Click Upsell Funnel for WooCommerce Unspecified Vulnerability (2.0.0)
Moodle Resource Management Errors Vulnerability (CVE-2015-2268)