Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2016-0793

Incomplete blacklist vulnerability in the servlet filter restriction mechanism in WildFly (formerly JBoss Application Server) before 10.0.0.Final on Windows allows remote attackers to read the sensitive files in the (1) WEB-INF or (2) META-INF directory via a request that contains (a) lowercase or (b) "meaningless" characters.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.248
EPSS Ranking 95.9%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.0
Products affected by CVE-2016-0793


Contact Us

Shodan ® - All rights reserved