pkg:Maven/org.wildfly.security:wildfly-elytron

5 total CVEsHIGH3MEDIUM2

✅ Check your installed version

All known vulnerabilities

  • HIGH7.5CVE-2020-10714Session Fixation in WildFly Elytron
    from 0, < 1.11.4
  • HIGH7.5CVE-2020-1748Incorrect Authorization in WildFly Elytron
    from 0, < 1.6.8
  • HIGH7.4CVE-2022-3143Wildfly-elytron possibly vulnerable to timing attacks via use of unsafe comparator
    from 0, < 1.15.15.Final
  • MEDIUM5.3CVE-2021-3642Observable Discrepancy in Wildfly Elytron
    from 0, < 1.10.14
  • MEDIUM4.2CVE-2024-12369WildFly Elytron OpenID Connect Client ExtensionOIDC authorization code injection attack
    >= 1.17.0.Final, < 2.2.9.Final