The security audit functionality in Red Hat JBoss...
Low severity
Unreviewed
Published
May 17, 2022
to the GitHub Advisory Database
•
Updated Jan 27, 2023
Description
Published by the National Vulnerability Database
Feb 26, 2014
Published to the GitHub Advisory Database
May 17, 2022
Last updated
Jan 27, 2023
The security audit functionality in Red Hat JBoss Enterprise Application Platform (EAP) 6.x before 6.2.1 logs request parameters in plaintext, which might allow local users to obtain passwords by reading the log files.
References