CVE-2013-4112 Vulnerability in maven package org.jgroups:jgroups

Description

The DiagnosticsHandler in JGroup 3.0.x, 3.1.x, 3.2.x before 3.2.9, and 3.3.x before 3.3.3 allows remote attackers to obtain sensitive information (diagnostic information) and execute arbitrary code by reusing valid credentials.

Remediation

References

http://rhn.redhat.com/errata/RHSA-2013-1207.html

http://rhn.redhat.com/errata/RHSA-2013-1208.html

http://rhn.redhat.com/errata/RHSA-2013-1209.html

http://rhn.redhat.com/errata/RHSA-2013-1437.html

http://rhn.redhat.com/errata/RHSA-2013-1771.html

http://rhn.redhat.com/errata/RHSA-2014-0029.html

https://bugzilla.redhat.com/show_bug.cgi?id=983489

Related Vulnerabilities

CVE-2023-28444 Vulnerability in npm package angular-server-side-configuration

CVE-2005-4849 Vulnerability in maven package org.apache.derby:derby

CVE-2017-17068 Vulnerability in npm package auth0-js

CVE-2019-10246 Vulnerability in maven package org.eclipse.jetty:jetty-util

CVE-2016-3727 Vulnerability in maven package org.jenkins-ci.main:jenkins-core

Severity

Critical

Classification

CWE-200