Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

  1. Reconshell
  2. Vulnerabilities (CVE)
Filtered by vendor Infinispan Subscribe
Filtered by product Infinispan-server-runtime
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-10746 1 Infinispan 1 Infinispan-server-runtime 2021-10-26 5.6 MEDIUM 6.1 MEDIUM
A flaw was found in Infinispan (org.infinispan:infinispan-server-runtime) version 10, where it permits local access to controls via both REST and HotRod APIs. This flaw allows a user authenticated to the local machine to perform all operations on the caches, including the creation, update, deletion, and shutdown of the entire server.