CVE-2019-3894

HIGH

Wildfly <16 - Privilege Escalation

Title source: llm

Description

It was discovered that the ElytronManagedThread in Wildfly's Elytron subsystem in versions from 11 to 16 stores a SecurityIdentity to run the thread as. These threads do not necessarily terminate if the keep alive time has not expired. This could allow a shared thread to use the wrong security identity when executing.

References (6)

[Issue Tracking, Vendor Advisory] https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3894

[Third Party Advisory] https://access.redhat.com/errata/RHSA-2019:1107

[Third Party Advisory] https://access.redhat.com/errata/RHSA-2019:1108

[Third Party Advisory] https://access.redhat.com/errata/RHSA-2019:1106

[Third Party Advisory] https://access.redhat.com/errata/RHSA-2019:1140

[Third Party Advisory] https://security.netapp.com/advisory/ntap-20190517-0004/

Scores

CVSS v3 8.8

EPSS 0.0116

EPSS Percentile 78.7%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-358

Status published

Products (2)

redhat/jboss_enterprise_application_platform 7.0.0

redhat/wildfly 11.0.0 - 16.0.0

Published May 03, 2019

Tracked Since Feb 18, 2026