CVE-2014-8122

Published: Feb 13, 2015

Modified: Aug 6, 2024

PUBLISHED

Description

Race condition in JBoss Weld before 2.2.8 and 3.x before 3.0.0 Alpha3 allows remote attackers to obtain information from a previous conversation via vectors related to a stale thread state.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://github.com/weld/core/commit/29fd1107fd30579ad9bb23fae4dc3ba464205745

x_refsource_CONFIRM

https://github.com/weld/core/commit/8e413202fa1af08c09c580f444e4fd16874f9c65

x_refsource_CONFIRM

redhat-jboss-cve20148122-info-disc(100892)

vdb-entry

x_refsource_XF

RHSA-2015:0675

vendor-advisory

x_refsource_REDHAT

RHSA-2015:0773

vendor-advisory

x_refsource_REDHAT

RHSA-2015:0920

vendor-advisory

x_refsource_REDHAT

RHSA-2015:0850

vendor-advisory

x_refsource_REDHAT

https://github.com/weld/core/commit/6808b11cd6d97c71a2eed754ed4f955acd789086

x_refsource_CONFIRM

74252

vdb-entry

x_refsource_BID

RHSA-2015:0215

vendor-advisory

x_refsource_REDHAT

RHSA-2015:0851

vendor-advisory

x_refsource_REDHAT

https://github.com/victims/victims-cve-db/blob/master/database/java/2014/8122.yaml

x_refsource_MISC

RHSA-2015:0217

vendor-advisory

x_refsource_REDHAT

RHSA-2015:0218

vendor-advisory

x_refsource_REDHAT

RHSA-2015:0216

vendor-advisory

x_refsource_REDHAT

1031741

vdb-entry

x_refsource_SECTRACK

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2014-8122

Description

Affected Products

References