A flaw was discovered in WildFly before 21.0.0.Final where, Resource adapter logs plain text JMS password at warning level on connection error, inserting sensitive information in the log file.
{ "cpes": [ "cpe:2.3:a:redhat:wildfly:*:*:*:*:*:*:*:*" ], "severity": "Medium" }