cvedb.io
CVE-2019-3805
MEDIUM · CVSS 4.7
EPSS exploitation probability: 0%
Published 2019-05-03T20:29:01.263 · Last modified 2026-06-17T02:35:37.560

Summary

A flaw was discovered in wildfly versions up to 16.0.0.Final that would allow local users who are able to execute init.d script to terminate arbitrary processes on the system. An attacker could exploit this by modifying the PID file in /var/run/jboss-eap/ allowing the init.d script to terminate any process as root.

Affected products

redhat — jboss_enterprise_application_platform

Does this affect you?

Add your gear to cvedb and we'll alert you only when redhat ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.