CVE-2025-23368

Org.wildfly.core:wildfly-elytron-integration: wildfly elytron brute force attack via cli

Description

A flaw was found in Wildfly Elytron integration. The component does not implement sufficient measures to prevent multiple failed authentication attempts within a short time frame, making it more susceptible to brute force attacks via CLI.

Remediation

Workaround:

The effectiveness of an attack will also be dependent on the complexity of the usernames and passwords defined for the target installation.

References

Link	Tags
https://access.redhat.com/security/cve/CVE-2025-23368	vdb entry
https://bugzilla.redhat.com/show_bug.cgi?id=2337621	issue tracking
https://www.gruppotim.it/it/footer/red-team.html

Frequently Asked Questions

What is the severity of CVE-2025-23368?: CVE-2025-23368 has been scored as a high severity vulnerability.
How to fix CVE-2025-23368?: As a workaround for remediating CVE-2025-23368: The effectiveness of an attack will also be dependent on the complexity of the usernames and passwords defined for the target installation.
Is CVE-2025-23368 being actively exploited in the wild?: As for now, there are no information to confirm that CVE-2025-23368 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2025-23368?: CVE-2025-23368 affects Red Hat Red Hat Build of Keycloak, Red Hat Red Hat Data Grid 8, Red Hat Red Hat Fuse 7, Red Hat Red Hat Integration Camel K 1, Red Hat Red Hat JBoss Data Grid 7, Red Hat Red Hat JBoss Enterprise Application Platform 7, Red Hat Red Hat JBoss Enterprise Application Platform 8, Red Hat Red Hat JBoss Enterprise Application Platform Expansion Pack, Red Hat Red Hat Process Automation 7, Red Hat Red Hat Single Sign-On 7.

Description

Remediation

Category

CWE-307 – Improper Restriction of Excessive Authentication Attempts

References

Frequently Asked Questions