CVE-2018-1047

CVE: CVE-2018-1047
Published: 2018-01-24T23:29Z
Vendor: redhat
Products: jboss_wildfly_application_server
Versions: 9.0.0, 9.0.1, 9.0.2, 10.0.0, 10.1.0, 11.0.0,
Description Language: en
Description: A flaw was found in Wildfly 9.x. A path traversal vulnerability through the org.wildfly.extension.undertow.deployment.ServletResourceManager.getResource method could lead to information disclosure of arbitrary local files.
References:
https://bugzilla.redhat.com/show_bug.cgi?id=1528361
https://issues.jboss.org/browse/WFLY-9620