VulnerableCode Package Details - pkg:maven/org.wildfly.bom/wildfly@11.0.0.Alpha1

Search for packages

Vulnerability	Summary	Fixed by
VCID-4d3g-hj69-yyem Aliases: CVE-2022-1278 GHSA-fmq7-gh8v-mjvc	WildFly vulnerable to Insecure Default Initialization of Resource A flaw was found in WildFly, where an attacker can see deployment names, endpoints, and any other data the trace payload may contain.	27.0.0.Beta1 Affected by 0 other vulnerabilities.
VCID-sev5-dmhe-p3e3 Aliases: CVE-2020-1719 GHSA-p9cf-qjxq-vxw6	Privilege Context Switching Error in wildlfy A flaw was found in wildfly. The EJBContext principle is not popped back after invoking another EJB using a different Security Domain. The highest threat from this vulnerability is to data confidentiality and integrity. Versions before wildfly 20.0.0.Final are affected.	20.0.0.Beta1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} 20.0.0.Final Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}

Vulnerability

Summary

Fixed by

VCID-4d3g-hj69-yyem
Aliases:
CVE-2022-1278
GHSA-fmq7-gh8v-mjvc

WildFly vulnerable to Insecure Default Initialization of Resource A flaw was found in WildFly, where an attacker can see deployment names, endpoints, and any other data the trace payload may contain.

27.0.0.Beta1
Affected by 0 other vulnerabilities.

VCID-sev5-dmhe-p3e3
Aliases:
CVE-2020-1719
GHSA-p9cf-qjxq-vxw6

Privilege Context Switching Error in wildlfy A flaw was found in wildfly. The EJBContext principle is not popped back after invoking another EJB using a different Security Domain. The highest threat from this vulnerability is to data confidentiality and integrity. Versions before wildfly 20.0.0.Final are affected.

20.0.0.Beta1
Affected by 1 other vulnerability.

20.0.0.Final
Affected by 1 other vulnerability.

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Vulnerability

Summary

Aliases

This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T22:08:45.510041+00:00	GitLab Importer	Affected by	VCID-4d3g-hj69-yyem	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.wildfly.bom/wildfly/CVE-2022-1278.yml	38.4.0
2026-04-16T21:25:55.089461+00:00	GitLab Importer	Affected by	VCID-sev5-dmhe-p3e3	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.wildfly.bom/wildfly/CVE-2020-1719.yml	38.4.0
2026-04-11T23:25:13.327071+00:00	GitLab Importer	Affected by	VCID-4d3g-hj69-yyem	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.wildfly.bom/wildfly/CVE-2022-1278.yml	38.3.0
2026-04-11T22:38:44.756970+00:00	GitLab Importer	Affected by	VCID-sev5-dmhe-p3e3	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.wildfly.bom/wildfly/CVE-2020-1719.yml	38.3.0
2026-04-02T23:31:33.006648+00:00	GitLab Importer	Affected by	VCID-4d3g-hj69-yyem	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.wildfly.bom/wildfly/CVE-2022-1278.yml	38.1.0
2026-04-02T22:49:23.902831+00:00	GitLab Importer	Affected by	VCID-sev5-dmhe-p3e3	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.wildfly.bom/wildfly/CVE-2020-1719.yml	38.1.0
2026-04-01T17:53:12.198157+00:00	GitLab Importer	Affected by	VCID-4d3g-hj69-yyem	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.wildfly.bom/wildfly/CVE-2022-1278.yml	38.0.0
2026-04-01T17:07:17.824391+00:00	GitLab Importer	Affected by	VCID-sev5-dmhe-p3e3	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.wildfly.bom/wildfly/CVE-2020-1719.yml	38.0.0