Vulnerabilities > Infinispan > Infinispan Server Rest
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-09-21 | CVE-2021-31917 | Improper Authentication vulnerability in multiple products A flaw was found in Red Hat DataGrid 8.x (8.0.0, 8.0.1, 8.1.0 and 8.1.1) and Infinispan (10.0.0 through 12.0.0). | 7.5 |
| 2021-06-02 | CVE-2020-10771 | Cross-Site Request Forgery (CSRF) vulnerability in multiple products A flaw was found in Infinispan version 10, where it is possible to perform various actions that could have side effects using GET requests. | 5.8 |