VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Redhat
>
Data Grid
> Medium
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2023-12-18
CVE-2023-3628
A flaw was found in Infinispan's REST.
network
low complexity
redhat
infinispan
6.5
6.5
2023-12-18
CVE-2023-3629
A flaw was found in Infinispan's REST, Cache retrieval endpoints do not properly evaluate the necessary admin permissions for the operation.
network
low complexity
redhat
infinispan
6.5
6.5
2023-12-18
CVE-2023-5236
A flaw was found in Infinispan, which does not detect circular object references when unmarshalling.
network
low complexity
redhat
infinispan
6.5
6.5
2021-08-05
CVE-2021-3642
A flaw was found in Wildfly Elytron in versions prior to 1.10.14.Final, prior to 1.15.5.Final and prior to 1.16.1.Final where ScramServer may be susceptible to Timing Attack if enabled.
network
high complexity
redhat
quarkus
5.3
5.3
2021-05-20
CVE-2021-3536
Cross-site Scripting vulnerability in Redhat products
A flaw was found in Wildfly in versions before 23.0.2.Final while creating a new role in domain mode via the admin console, it is possible to add a payload in the name field, leading to XSS.
network
low complexity
redhat
CWE-79
4.8
4.8
2020-12-03
CVE-2020-25711
Missing Authorization vulnerability in multiple products
A flaw was found in infinispan 10 REST API, where authorization permissions are not checked while performing some server management operations.
network
low complexity
infinispan
redhat
netapp
CWE-862
6.5
6.5
2019-10-14
CVE-2019-14838
Improper Privilege Management vulnerability in Redhat products
A flaw was found in wildfly-core before 7.2.5.GA.
network
low complexity
redhat
CWE-269
4.9
4.9