Description

It was discovered that the ElytronManagedThread in Wildfly's Elytron subsystem in versions from 11 to 16 stores a SecurityIdentity to run the thread as. These threads do not necessarily terminate if the keep alive time has not expired. This could allow a shared thread to use the wrong security identity when executing.

Remediation

References

CVE-2019-3894

Related Vulnerabilities

Squid Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-10003)

MODX Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2017-7324)

WordPress Plugin Monarch Social Sharing Security Bypass (1.2.6)

Drupal Core 7.x Directory Traversal (7.0 - 7.66)

WordPress Plugin TubePress Cross-Site Scripting (1.6.0)

Severity

High

Classification

CVE-2019-3894 CWE-264 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities