Weak Permissions for .jboss-cli-history File in Red Hat Enterprise Application Platform and WildFly

Weak Permissions for .jboss-cli-history File in Red Hat Enterprise Application Platform and WildFly

CVE-2014-3586 · LOW Severity

AV:L/AC:L/AU:N/C:P/I:N/A:N

The default configuration for the Command Line Interface in Red Hat Enterprise Application Platform before 6.4.0 and WildFly (formerly JBoss Application Server) uses weak permissions for .jboss-cli-history, which allows local users to obtain sensitive information via unspecified vectors.

Learn more about our Cis Benchmark Audit For Server Software.