Red Hat · Wildfly · CVE-2015-3198
**Name of the Vulnerable Software and Affected Versions**
WildFly versions 8.1.0.Final through 8.2.0.Final
WildFly versions 9.0.0.CR1
**Description**
The issue allows remote attackers to obtain the source code of a JSP page via a "/" at the end of a URL.
**Recommendations**
For WildFly version 8.1.0.Final, update to a version after 8.1.0.Final.
For WildFly version 8.2.0.Final, update to a version after 8.2.0.Final.
For WildFly version 9.0.0.CR1, update to a version after 9.0.0.CR1, such as 9.0.0.CR2.