CVE-2018-1047 - AskarLabs CVE Database

CVE-2018-1047

Vendor Red Hat, Inc.

Product Wildfly

Weakness CWE-20 · Input validation

Published January 24, 2018

Last update August 5, 2024

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

A flaw was found in Wildfly 9.x. A path traversal vulnerability through the org.wildfly.extension.undertow.deployment.ServletResourceManager.getResource method could lead to information disclosure of arbitrary local files.

Key dates

02Disclosure timeline

January 24, 2018 CVE published

August 5, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2018-1047 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/20.html

Related vulnerabilities

04Related CVE

CVE-2025-55270 HCL Aftermarket DPC is affected by Improper Input Validation CVE-2021-1250 Cisco Data Center Network Manager Vulnerabilities CVE-2021-29507 dlt-daemon could crash if there is special character in dlt.conf CVE-2021-41138 Validity check for signed Frontier-specific extrinsic not called in block execution CVE-2024-22338 IBM Security Verify Access OIDC Provider information disclosure