CVE-2024-4029

{"id": "CVE-2024-4029", "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "secalert@redhat.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 4.1, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "HIGH", "privilegesRequired": "HIGH", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 0.5}]}, "published": "2024-05-02T15:15:07.227", "references": [{"url": "https://access.redhat.com/errata/RHSA-2024:8075", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2024:8076", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2024:8077", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2024:8080", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2024:8823", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2024:8824", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2024:8826", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/security/cve/CVE-2024-4029", "source": "secalert@redhat.com"}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2278615", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/security/cve/CVE-2024-4029", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2278615", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Awaiting Analysis", "weaknesses": [{"type": "Secondary", "source": "secalert@redhat.com", "description": [{"lang": "en", "value": "CWE-770"}]}], "descriptions": [{"lang": "en", "value": "A vulnerability was found in Wildfly\u2019s management interface. Due to the lack of limitation of sockets for the management interface, it may be possible to cause a denial of service hitting the nofile limit as there is no possibility to configure or set a maximum number of connections."}, {"lang": "es", "value": "Se encontr\u00f3 una vulnerabilidad en la interfaz de administraci\u00f3n de Wildfly. Debido a la falta de limitaci\u00f3n de sockets para la interfaz de administraci\u00f3n, es posible que se produzca una denegaci\u00f3n de servicio que alcance el l\u00edmite de nofile ya que no hay posibilidad de configurar o establecer un n\u00famero m\u00e1ximo de conexiones."}], "lastModified": "2024-11-21T09:42:03.370", "sourceIdentifier": "secalert@redhat.com"}