Jboss EAP Session Fixation Vulnerability - CVE-2021-20324 - Vulnerability Database

Jboss EAP Session Fixation Vulnerability - CVE-2021-20324

Medium

Reference: CVE-2021-20324

NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2021-20324

Title: Jboss EAP Session Fixation Vulnerability

Overview:

A flaw was found in WildFly Elytron. A variation to the use of a session fixation exploit when using Undertow was found despite Undertow switching the session ID after authentication.