Lucene search
Redhat.comRH:CVE-2019-3888HistoryOct 08, 2019 - 11:05 p.m.
CVE-2019-3888
2019-10-0823:05:01
redhat.com
access.redhat.com
10
0.021 Low
EPSS
Percentile
89.1%
A vulnerability was found in Undertow web server before 2.0.21. An information exposure of plain text credentials through log files because Connectors.executeRootHandler:402 logs the HttpServerExchange object at ERROR level using UndertowLogger.REQUEST_LOGGER.undertowRequestFailed(t, exchange)
Related
debiancve
debiancve
CVE-2019-3888
2019-06-12 14:29:04
prion
prion
Design/Logic Flaw
2019-06-12 14:29:00
cvelist
cvelist
CVE-2019-3888
2019-06-12 13:45:20
nvd
nvd
CVE-2019-3888
2019-06-12 14:29:04
osv
osv
Credential exposure through log files in Undertow
2019-06-13 20:02:56
CVE-2019-3888
2019-06-12 14:29:04
github
github
Credential exposure through log files in Undertow
2019-06-13 20:02:56
cve
cve
CVE-2019-3888
2019-06-12 14:29:04
ubuntucve
ubuntucve
CVE-2019-3888
2019-06-12 00:00:00
veracode
veracode
Information Disclosure
2019-06-13 06:24:11
nessus
nessus
RHEL 8 : Red Hat JBoss Enterprise Application Platform 7.2.2 on RHEL 8 (RHSA-2019:1421)
2019-06-12 00:00:00
RHEL 7 : Red Hat JBoss Enterprise Application Platform 7.2.2 on RHEL 7 (RHSA-2019:1420)
2019-06-12 00:00:00
RHEL 7 : Virtualization Manager (RHSA-2019:2439)
2019-08-13 00:00:00
redhat
redhat