It was found that the issue for security flaw CVE-2019-3805 appeared again in a further version of JBoss Enterprise Application Platform - Continuous Delivery (EAP-CD) introducing regression. An attacker could exploit this by modifying the PID file in /var/run/jboss-eap/ allowing the init.d script to terminate any process as root.

Related CVEs

CVE-2020-14317

Key Information

GHSA ID

GHSA-p2p6-fgmf-hp85

Published

May 24, 2022 7:03 PM

Last Modified

May 24, 2022 7:03 PM

CVSS Score

5.0 /10

Primary Ecosystem

Unknown

Primary Package

Unknown

GitHub Reviewed

✗ No

Dataset

Last updated: August 2, 2025 6:42 AM

Data from GitHub Advisory Database. This information is provided for research and educational purposes.