CVE-2018-1048
HIGHJBoss EAP 7.1.0.GA - Path Traversal and Information Disclosure via AJP Connector
Title source: llmDescription
It was found that the AJP connector in undertow, as shipped in Jboss EAP 7.1.0.GA, does not use the ALLOW_ENCODED_SLASH option and thus allow the the slash / anti-slash characters encoded in the url which may lead to path traversal and result in the information disclosure of arbitrary local files.
References (5)
Core 5
Core References
Vendor Advisory vendor-advisory
x_refsource_redhat
https://access.redhat.com/errata/RHSA-2018:0479
Vendor Advisory vendor-advisory
x_refsource_redhat
https://access.redhat.com/errata/RHSA-2018:0481
Vendor Advisory vendor-advisory
x_refsource_redhat
https://access.redhat.com/errata/RHSA-2018:0480
Vendor Advisory vendor-advisory
x_refsource_redhat
https://access.redhat.com/errata/RHSA-2018:0478
Issue Tracking, Vendor Advisory x_refsource_confirm
https://bugzilla.redhat.com/show_bug.cgi?id=1534343
Scores
CVSS v3
7.5
EPSS
0.0160
EPSS Percentile
72.6%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Details
CWE
CWE-22
CWE-116
Status
published
Products (2)
org.jboss.eap/wildfly-undertow
7.1.0.GA - 7.1.1.GAMaven
redhat/jboss_enterprise_application_platform
7.1.0
Published
Jan 24, 2018
Tracked Since
Feb 18, 2026