PT-2022-9182 · Red Hat · Wildfly Elytron
Published
2022-04-18
·
Updated
2023-03-27
·
CVE-2021-20324
None
No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.
Name of the Vulnerable Software and Affected Versions
WildFly Elytron (affected versions not specified)
Description
A flaw was found in WildFly Elytron, related to a session fixation exploit when using Undertow, despite Undertow switching the session ID after authentication.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Wildfly Elytron