Description
An Elevated Privileges issue exists in JBoss AS 7 Community Release due to the improper implementation in the security context propagation, A threat gets reused from the thread pool that still retains the security context from the process last used, which lets a local user obtain elevated privileges.
Remediation
References
Related Vulnerabilities
Jenkins Incomplete List of Disallowed Inputs Vulnerability (CVE-2021-21697)
Moodle CVE-2019-14880 Vulnerability (CVE-2019-14880)
WordPress Plugin WOOF-Products Filter for WooCommerce Multiple Vulnerabilities (1.1.4.2)
WordPress Plugin Custom Post Type UI 'wp-admin/admin.php' Cross-Site Scripting (0.7)