CVE-2020-1748 – A flaw was found in all supported versions before wildfly-elytron-1.6.8.Final-redhat-00001 …

Vuln ID: CVE-2020-1748

Published:  2020-09-16  16:15:14Z

Description: A flaw was found in all supported versions before wildfly-elytron-1.6.8.Final-redhat-00001, where the WildFlySecurityManager checks were bypassed when using custom security managers, resulting in an improper authorization. This flaw leads to information exposure by unauthenticated access to secure resources.

Source: NVD.NIST.GOV