Description
Red Hat JBoss Enterprise Application Platform (JBEAP) 6.2.0 and JBoss WildFly Application Server, when run under a security manager, do not properly restrict access to the Modular Service Container (MSC) service registry, which allows local users to modify the server via a crafted deployment.
Remediation
References
Related Vulnerabilities
Jenkins Server-Side Request Forgery (SSRF) Vulnerability (CVE-2018-1000067)
WordPress Plugin Game Server Status Multiple Vulnerabilities (1.0)
WordPress Plugin W3 Total Cache Arbitrary File Disclosure (0.9.3)
Python Improper Input Validation Vulnerability (CVE-2023-27043)
Magento Improper Authorization Vulnerability (CVE-2020-24404)