Vulnerabilities > CVE-2020-27822 - Unspecified vulnerability in Redhat Wildfly

CVSS 5.9 - MEDIUM

Attack vector

NETWORK

Attack complexity

HIGH

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

high complexity

redhat

NVD

Published: 2020-12-08

Updated: 2024-11-21

Summary

A flaw was found in Wildfly affecting versions 19.0.0.Final, 19.1.0.Final, 20.0.0.Final, 20.0.1.Final, and 21.0.0.Final. When an application uses the OpenTracing API's java-interceptors, there is a possibility of a memory leak. This flaw allows an attacker to impact the availability of the server. The highest threat from this vulnerability is to system availability.

Vulnerable Configurations

Part	Description	Count
Application	Redhat Redhat Wildfly 21.0.0 Redhat Wildfly 20.0.1 Redhat Wildfly 19.0.0 Redhat Wildfly 19.1.0 Redhat Wildfly 20.0.0	5

References

https://bugzilla.redhat.com/show_bug.cgi?id=1904060
https://bugzilla.redhat.com/show_bug.cgi?id=1904060