Vulnerability Description
A vulnerability was found in Wildfly’s management interface. Due to the lack of limitation of sockets for the management interface, it may be possible to cause a denial of service hitting the nofile limit as there is no possibility to configure or set a maximum number of connections.
CVSS Score
MEDIUM
Related Weaknesses (CWE)
References
- https://access.redhat.com/errata/RHSA-2024:8075
- https://access.redhat.com/errata/RHSA-2024:8076
- https://access.redhat.com/errata/RHSA-2024:8077
- https://access.redhat.com/errata/RHSA-2024:8080
- https://access.redhat.com/errata/RHSA-2024:8823
- https://access.redhat.com/errata/RHSA-2024:8824
- https://access.redhat.com/errata/RHSA-2024:8826
- https://access.redhat.com/security/cve/CVE-2024-4029
- https://bugzilla.redhat.com/show_bug.cgi?id=2278615
- https://access.redhat.com/security/cve/CVE-2024-4029
- https://bugzilla.redhat.com/show_bug.cgi?id=2278615
FAQ
What is CVE-2024-4029?
CVE-2024-4029 is a vulnerability with a CVSS score of 4.1 (MEDIUM). A vulnerability was found in Wildfly’s management interface. Due to the lack of limitation of sockets for the management interface, it may be possible to cause a denial of service hitting the nofile l...
How severe is CVE-2024-4029?
CVE-2024-4029 has been rated MEDIUM with a CVSS base score of 4.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-4029?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.