Description
It was discovered that the jboss init script as used in Red Hat JBoss Enterprise Application Platform 7.0.7.GA performed unsafe file handling which could result in local privilege escalation. This issue is a result of an incomplete fix for CVE-2016-8656.
Remediation
References
Related Vulnerabilities
Jenkins Deserialization of Untrusted Data Vulnerability (CVE-2015-8103)
Apache Tomcat Other Vulnerability (CVE-2007-6286)
WordPress Plugin Timed Content Cross-Site Scripting (2.72)
WordPress Plugin uTubeVideo Gallery Cross-Site Scripting (2.0.7)
ATutor Weak Password Recovery Mechanism for Forgotten Password Vulnerability (CVE-2021-43498)