Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2020-10718

A flaw was found in Wildfly before wildfly-embedded-13.0.0.Final, where the embedded managed process API has an exposed setting of the Thread Context Classloader (TCCL). This setting is exposed as a public method, which can bypass the security manager. The highest threat from this vulnerability is to confidentiality.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 50.2%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.0
Products affected by CVE-2020-10718
  • Redhat » Jboss Fuse » Version: 7.0.0
    cpe:2.3:a:redhat:jboss_fuse:7.0.0
  • Redhat » Wildfly » Version: N/A
    cpe:2.3:a:redhat:wildfly:-
  • Redhat » Wildfly » Version: 10.0.0
    cpe:2.3:a:redhat:wildfly:10.0.0
  • Redhat » Wildfly » Version: 10.1.0
    cpe:2.3:a:redhat:wildfly:10.1.0
  • Redhat » Wildfly » Version: 10.1.2
    cpe:2.3:a:redhat:wildfly:10.1.2
  • Redhat » Wildfly » Version: 11.0.0
    cpe:2.3:a:redhat:wildfly:11.0.0
  • Redhat » Wildfly » Version: 12.0.0
    cpe:2.3:a:redhat:wildfly:12.0.0
  • Redhat » Wildfly » Version: 7.2.0
    cpe:2.3:a:redhat:wildfly:7.2.0
  • Redhat » Wildfly » Version: 7.2.3
    cpe:2.3:a:redhat:wildfly:7.2.3
  • Redhat » Wildfly » Version: 7.2.5
    cpe:2.3:a:redhat:wildfly:7.2.5
  • Redhat » Wildfly » Version: 8.0.0
    cpe:2.3:a:redhat:wildfly:8.0.0
  • Redhat » Wildfly » Version: 8.1.0
    cpe:2.3:a:redhat:wildfly:8.1.0
  • Redhat » Wildfly » Version: 8.2.0
    cpe:2.3:a:redhat:wildfly:8.2.0
  • Redhat » Wildfly » Version: 8.2.1
    cpe:2.3:a:redhat:wildfly:8.2.1
  • Redhat » Wildfly » Version: 9.0.0
    cpe:2.3:a:redhat:wildfly:9.0.0
  • Redhat » Wildfly » Version: 9.0.1
    cpe:2.3:a:redhat:wildfly:9.0.1
  • Redhat » Wildfly » Version: 9.0.2
    cpe:2.3:a:redhat:wildfly:9.0.2


Products
Pricing
Contact Us

Shodan ® - All rights reserved