CVE-2021-20250: Information Exposure

May 13, 2021 (updated August 5, 2022)

A flaw was found in wildfly. The JBoss EJB client has publicly accessible privileged actions which may lead to information disclosure on the server it is deployed on. The highest threat from this vulnerability is to data confidentiality.

References

bugzilla.redhat.com/show_bug.cgi?id=1929479
nvd.nist.gov/vuln/detail/CVE-2021-20250

Code Behaviors & Features

Detect and mitigate CVE-2021-20250 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →