CVE-2021-3536 — Vulnetix

Try Vulnetix Request Demo

CVE-2021-3536 PUBLISHED

A flaw was found in Wildfly in versions before 23.0.2.Final while creating a new role in domain mode via the admin console, it is possible to add a payload in the name field, leading to XSS. This affects Confidentiality and Integrity.

EPSS 0.28% · 51.6th percentile

Risk Scores

EPSS Score

0.28%

51.6th percentile

Affected Products

Vendor	Product	Versions
Bitnami	wildfly	0
Bitnami	wildfly	0

Timeline

May 20, 2021 CVE Published
May 21, 2021 EPSS Score
Jun 28, 2021 PoC Published
Jul 23, 2021 EPSS Score
Sep 22, 2021 EPSS Score
Nov 22, 2021 EPSS Score
Dec 11, 2021 PoC Published
Dec 13, 2021 PoC Published
Dec 18, 2021 PoC Published
Jan 21, 2022 EPSS Score
Feb 4, 2022 EPSS Score
Mar 23, 2022 EPSS Score

References

Open in Interactive Console →