Weak Permissions for .jboss-cli-history File in Red Hat Enterprise Application Platform and WildFly
CVE-2014-3586 · LOW Severity
AV:L/AC:L/AU:N/C:P/I:N/A:N
The default configuration for the Command Line Interface in Red Hat Enterprise Application Platform before 6.4.0 and WildFly (formerly JBoss Application Server) uses weak permissions for .jboss-cli-history, which allows local users to obtain sensitive information via unspecified vectors.
Learn more about our Cis Benchmark Audit For Server Software.