What is the severity of CVE-2021-3644?

The severity of CVE-2021-3644 is categorized as moderate due to the potential information disclosure it can cause.

How do I fix CVE-2021-3644?

To fix CVE-2021-3644, you should upgrade to the latest patched version of the impacted software listed in the advisories.

What software is affected by CVE-2021-3644?

CVE-2021-3644 affects various Red Hat packages including wildfly-core and others as listed in the CVE report.

Can CVE-2021-3644 be exploited remotely?

Yes, CVE-2021-3644 can be exploited remotely if the management interface is accessible.

What types of environments are vulnerable to CVE-2021-3644?

Environments running affected versions of Red Hat Enterprise Application Platform may be vulnerable to CVE-2021-3644.

Vulnerability/
CVE-2021-3644

low

3.3

CWE

200

25/6/2021

14/7/2021

26/8/2022

3/8/2024

CVE-2021-3644: Infoleak

First published: Fri Jun 25 2021(Updated: )

A flaw was found in wildfly-core in all versions. If a vault expression is in the form of a single attribute that contains multiple expressions, a user who was granted access to the management interface can potentially access a vault expression they should not be able to access and possibly retrieve the item which was stored in the vault. The highest threat from this vulnerability is data confidentiality and integrity.

Credit: secalert@redhat.com

Never miss a vulnerability like this again

Reference Links

Parent vulnerabilities

(Appears in the following advisories)

Frequently Asked Questions

What is the severity of CVE-2021-3644?
The severity of CVE-2021-3644 is categorized as moderate due to the potential information disclosure it can cause.
How do I fix CVE-2021-3644?
To fix CVE-2021-3644, you should upgrade to the latest patched version of the impacted software listed in the advisories.
What software is affected by CVE-2021-3644?
CVE-2021-3644 affects various Red Hat packages including wildfly-core and others as listed in the CVE report.
Can CVE-2021-3644 be exploited remotely?
Yes, CVE-2021-3644 can be exploited remotely if the management interface is accessible.
What types of environments are vulnerable to CVE-2021-3644?
Environments running affected versions of Red Hat Enterprise Application Platform may be vulnerable to CVE-2021-3644.

collector/redhat-cve
agent/first-publish-date
agent/remedy
agent/type
agent/weakness
agent/references
agent/description
agent/author
agent/severity
collector/redhat-bugzilla
source/Red Hat
alias/CVE-2021-3644
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/event
agent/trending
agent/source
agent/softwarecombine
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
package-manager/redhat
vendor/redhat
canonical/red hat decision manager
version/red hat decision manager/7.0
canonical/red hat jboss wildfly application server
version/red hat jboss wildfly application server/16.0.0
version/red hat jboss wildfly application server/17.0.0-beta2

CVE-2021-3644: Infoleak

Remedy

Remedy

Remedy

Remedy

Never miss a vulnerability like this again

Reference Links

Parent vulnerabilities

Frequently Asked Questions

What is the severity of CVE-2021-3644?

How do I fix CVE-2021-3644?

What software is affected by CVE-2021-3644?

Can CVE-2021-3644 be exploited remotely?

What types of environments are vulnerable to CVE-2021-3644?

Company

Resources

Contact

Affected Software	Affected Version	How to fix
redhat/eap7-apache-commons-io	<0:2.10.0-1.redhat_00001.1.el6ea	0:2.10.0-1.redhat_00001.1.el6ea
redhat/eap7-hal-console	<0:3.2.16-1.Final_redhat_00001.1.el6ea	0:3.2.16-1.Final_redhat_00001.1.el6ea
redhat/eap7-hibernate	<0:5.3.20-4.SP2_redhat_00001.1.el6ea	0:5.3.20-4.SP2_redhat_00001.1.el6ea
redhat/eap7-ironjacamar	<0:1.4.35-1.Final_redhat_00001.1.el6ea	0:1.4.35-1.Final_redhat_00001.1.el6ea
redhat/eap7-jakarta-el	<0:3.0.3-2.redhat_00006.1.el6ea	0:3.0.3-2.redhat_00006.1.el6ea
redhat/eap7-jberet	<0:1.3.9-1.Final_redhat_00001.1.el6ea	0:1.3.9-1.Final_redhat_00001.1.el6ea
redhat/eap7-jboss-remoting	<0:5.0.23-2.SP1_redhat_00001.1.el6ea	0:5.0.23-2.SP1_redhat_00001.1.el6ea
redhat/eap7-jboss-server-migration	<0:1.7.2-9.Final_redhat_00010.1.el6ea	0:1.7.2-9.Final_redhat_00010.1.el6ea
redhat/eap7-narayana	<0:5.9.12-1.Final_redhat_00001.1.el6ea	0:5.9.12-1.Final_redhat_00001.1.el6ea
redhat/eap7-picketbox	<0:5.0.3-9.Final_redhat_00008.1.el6ea	0:5.0.3-9.Final_redhat_00008.1.el6ea
redhat/eap7-undertow	<0:2.0.39-1.SP2_redhat_00001.1.el6ea	0:2.0.39-1.SP2_redhat_00001.1.el6ea
redhat/eap7-wildfly	<0:7.3.9-2.GA_redhat_00002.1.el6ea	0:7.3.9-2.GA_redhat_00002.1.el6ea
redhat/eap7-wildfly-http-client	<0:1.0.29-1.Final_redhat_00002.1.el6ea	0:1.0.29-1.Final_redhat_00002.1.el6ea
redhat/eap7-wildfly-transaction-client	<0:1.1.14-2.Final_redhat_00001.1.el6ea	0:1.1.14-2.Final_redhat_00001.1.el6ea
redhat/eap7-apache-commons-io	<0:2.10.0-1.redhat_00001.1.el7ea	0:2.10.0-1.redhat_00001.1.el7ea
redhat/eap7-hal-console	<0:3.2.16-1.Final_redhat_00001.1.el7ea	0:3.2.16-1.Final_redhat_00001.1.el7ea
redhat/eap7-hibernate	<0:5.3.20-4.SP2_redhat_00001.1.el7ea	0:5.3.20-4.SP2_redhat_00001.1.el7ea
redhat/eap7-ironjacamar	<0:1.4.35-1.Final_redhat_00001.1.el7ea	0:1.4.35-1.Final_redhat_00001.1.el7ea
redhat/eap7-jakarta-el	<0:3.0.3-2.redhat_00006.1.el7ea	0:3.0.3-2.redhat_00006.1.el7ea
redhat/eap7-jberet	<0:1.3.9-1.Final_redhat_00001.1.el7ea	0:1.3.9-1.Final_redhat_00001.1.el7ea
redhat/eap7-jboss-remoting	<0:5.0.23-2.SP1_redhat_00001.1.el7ea	0:5.0.23-2.SP1_redhat_00001.1.el7ea
redhat/eap7-jboss-server-migration	<0:1.7.2-9.Final_redhat_00010.1.el7ea	0:1.7.2-9.Final_redhat_00010.1.el7ea
redhat/eap7-narayana	<0:5.9.12-1.Final_redhat_00001.1.el7ea	0:5.9.12-1.Final_redhat_00001.1.el7ea
redhat/eap7-picketbox	<0:5.0.3-9.Final_redhat_00008.1.el7ea	0:5.0.3-9.Final_redhat_00008.1.el7ea
redhat/eap7-undertow	<0:2.0.39-1.SP2_redhat_00001.1.el7ea	0:2.0.39-1.SP2_redhat_00001.1.el7ea
redhat/eap7-wildfly	<0:7.3.9-2.GA_redhat_00002.1.el7ea	0:7.3.9-2.GA_redhat_00002.1.el7ea
redhat/eap7-wildfly-http-client	<0:1.0.29-1.Final_redhat_00002.1.el7ea	0:1.0.29-1.Final_redhat_00002.1.el7ea
redhat/eap7-wildfly-transaction-client	<0:1.1.14-2.Final_redhat_00001.1.el7ea	0:1.1.14-2.Final_redhat_00001.1.el7ea
redhat/eap7-apache-commons-io	<0:2.10.0-1.redhat_00001.1.el8ea	0:2.10.0-1.redhat_00001.1.el8ea
redhat/eap7-hal-console	<0:3.2.16-1.Final_redhat_00001.1.el8ea	0:3.2.16-1.Final_redhat_00001.1.el8ea
redhat/eap7-hibernate	<0:5.3.20-4.SP2_redhat_00001.1.el8ea	0:5.3.20-4.SP2_redhat_00001.1.el8ea
redhat/eap7-ironjacamar	<0:1.4.35-1.Final_redhat_00001.1.el8ea	0:1.4.35-1.Final_redhat_00001.1.el8ea
redhat/eap7-jakarta-el	<0:3.0.3-2.redhat_00006.1.el8ea	0:3.0.3-2.redhat_00006.1.el8ea
redhat/eap7-jberet	<0:1.3.9-1.Final_redhat_00001.1.el8ea	0:1.3.9-1.Final_redhat_00001.1.el8ea
redhat/eap7-jboss-remoting	<0:5.0.23-2.SP1_redhat_00001.1.el8ea	0:5.0.23-2.SP1_redhat_00001.1.el8ea
redhat/eap7-jboss-server-migration	<0:1.7.2-9.Final_redhat_00010.1.el8ea	0:1.7.2-9.Final_redhat_00010.1.el8ea
redhat/eap7-narayana	<0:5.9.12-1.Final_redhat_00001.1.el8ea	0:5.9.12-1.Final_redhat_00001.1.el8ea
redhat/eap7-picketbox	<0:5.0.3-9.Final_redhat_00008.1.el8ea	0:5.0.3-9.Final_redhat_00008.1.el8ea
redhat/eap7-undertow	<0:2.0.39-1.SP2_redhat_00001.1.el8ea	0:2.0.39-1.SP2_redhat_00001.1.el8ea
redhat/eap7-wildfly	<0:7.3.9-2.GA_redhat_00002.1.el8ea	0:7.3.9-2.GA_redhat_00002.1.el8ea
redhat/eap7-wildfly-http-client	<0:1.0.29-1.Final_redhat_00002.1.el8ea	0:1.0.29-1.Final_redhat_00002.1.el8ea
redhat/eap7-wildfly-transaction-client	<0:1.1.14-2.Final_redhat_00001.1.el8ea	0:1.1.14-2.Final_redhat_00001.1.el8ea
redhat/eap7-wildfly	<0:7.4.1-2.GA_redhat_00003.1.el8ea	0:7.4.1-2.GA_redhat_00003.1.el8ea
redhat/eap7-wildfly	<0:7.4.1-2.GA_redhat_00003.1.el7ea	0:7.4.1-2.GA_redhat_00003.1.el7ea
Red Hat Decision Manager	=7.0
Red Hat JBoss WildFly Application Server	=16.0.0
Red Hat JBoss WildFly Application Server	=17.0.0-beta2