Loading...

XML

Word

Printable

Type: Bug
Resolution: Done
Priority: Critical
Fix Version/s: 35.0.0.Final
Affects Version/s: None
Component/s: Web Console
Labels:
None

[QE] How to address?:
---
[QE] Why QE missed?:
---

A vulnerability was found in Wildfly, where a user may perform Cross-site scripting in the Wildfly deployment system. This flaw allows an attacker or insider to execute a deployment with a malicious payload, which could trigger undesired behavior against the server.

Hence CVE-2024-10234 needs to be fixed.
https://nvd.nist.gov/vuln/detail/CVE-2024-10234

is cloned by

JBEAP-28727 Fix CVE-2024-10234 in wildfly

Resolved

is incorporated by

WFLY-20100 Upgrade HAL to 3.7.7.Final (resolves CVE-2024-10234)

Resolved

Assignee:: Harald Pehl

Reporter:: Dhoka Pramod (Inactive)

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Created:: 2024/11/19 5:15 AM

Updated:: 2024/12/17 4:33 PM

Resolved:: 2024/12/13 7:07 AM

Details

Description

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates