VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Redhat
>
Jboss Data Grid
> Medium
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2023-12-18
CVE-2023-3628
A flaw was found in Infinispan's REST.
network
low complexity
redhat
infinispan
6.5
6.5
2023-12-18
CVE-2023-3629
A flaw was found in Infinispan's REST, Cache retrieval endpoints do not properly evaluate the necessary admin permissions for the operation.
network
low complexity
redhat
infinispan
6.5
6.5
2023-12-18
CVE-2023-5236
A flaw was found in Infinispan, which does not detect circular object references when unmarshalling.
network
low complexity
redhat
infinispan
6.5
6.5
2021-06-02
CVE-2020-14340
A vulnerability was discovered in XNIO where file descriptor leak caused by growing amounts of NIO Selector file handles between garbage collection cycles.
network
high complexity
redhat
oracle
5.9
5.9
2020-11-02
CVE-2020-25689
A memory leak flaw was found in WildFly in all versions up to 21.0.0.Final, where host-controller tries to reconnect in a loop, generating new connections which are not properly closed while not able to connect to domain-controller.
network
low complexity
redhat
netapp
6.5
6.5
2020-09-16
CVE-2020-1710
Unspecified vulnerability in Redhat products
The issue appears to be that JBoss EAP 6.4.21 does not parse the field-name in accordance to RFC7230[1] as it returns a 200 instead of a 400.
network
low complexity
redhat
5.3
5.3
2020-07-06
CVE-2019-14900
SQL Injection vulnerability in multiple products
A flaw was found in Hibernate ORM in versions before 5.3.18, 5.4.18 and 5.5.0.Beta1.
network
low complexity
hibernate
redhat
quarkus
CWE-89
6.5
6.5
2019-11-08
CVE-2019-10219
A vulnerability was found in Hibernate-Validator.
network
low complexity
redhat
netapp
oracle
6.1
6.1
2018-07-16
CVE-2017-2638
Improper Authentication vulnerability in multiple products
It was found that the REST API in Infinispan before version 9.0.0 did not properly enforce auth constraints.
network
low complexity
infinispan
redhat
CWE-287
6.5
6.5