Security Advisory

CVE-2025-23366

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-01-14 17:41:43

Last updated 2026-04-30 13:29:42

Assigner redhat

State PUBLISHED

Description

A flaw was found in the HAL Console in the Wildfly component, which does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output used as a web page that is served to other users. The attacker must be authenticated as a user that belongs to management groups “SuperUser”, “Admin”, or “Maintainer”.

← Browse all CVEs View on cve.org ↗