CVE-2020-1732

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2020-1732

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2020-1732.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2020-1732

Related

Published

2020-05-04T17:15:12Z

Modified

2024-10-12T06:15:49.489617Z

Severity

4.2 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N CVSS Calculator

Summary

[none]

Details

A flaw was found in Soteria before 1.0.1, in a way that multiple requests occurring concurrently causing security identity corruption across concurrent threads when using EE Security with WildFly Elytron which can lead to the possibility of being handled using the identity from another request.

References

Affected packages

Git / github.com/wildfly-security/soteria

Affected ranges

Type: GIT
Repo: https://github.com/wildfly-security/soteria
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

c2479f8c39d7d661341fdcaff7f5e97c5eea1a54

CVE-2020-1732

Affected packages

Git / github.com/wildfly-security/soteria

Affected ranges

Affected versions

1.*

Other