CVE-2019-10212 Vulnerability Details

  /     /     /  

CVE-2019-10212 Metadata Quick Info

CVE Published: 02/10/2019 | CVE Updated: 04/08/2024 | CVE Year: 2019
Source: redhat | Vendor: RedHat | Product: undertow
Status : PUBLISHED

---

CVE-2019-10212 Description

A flaw was found in, all under 2.0.20, in the Undertow DEBUG log for io.undertow.request.security. If enabled, an attacker could abuse this flaw to obtain the user\'s credentials from the log files.

Metrics

CVSS Version: 3.1 | Base Score: n/a
Vector: n/a

l➤ Exploitability Metrics:
    Attack Vector (AV)*
    Attack Complexity (AC)*
    Privileges Required (PR)*
    User Interaction (UI)*
    Scope (S)*

l➤ Impact Metrics:
    Confidentiality Impact (C)*
    Integrity Impact (I)*
    Availability Impact (A)*

Weakness Enumeration (CWE)

CWE-ID: CWE-532
CWE Name: CWE-532
Source: RedHat

Common Attack Pattern Enumeration and Classification (CAPEC)

CAPEC-ID:
CAPEC Description:


Source: NVD (National Vulnerability Database).