7 High
AI Score
Confidence
Low
0.09 Low
EPSS
Percentile
94.6%
The DiagnosticsHandler in JGroup 3.0.x, 3.1.x, 3.2.x before 3.2.9, and 3.3.x before 3.3.3 allows remote attackers to obtain sensitive information (diagnostic information) and execute arbitrary code by reusing valid credentials.
rhn.redhat.com/errata/RHSA-2013-1207.html
rhn.redhat.com/errata/RHSA-2013-1208.html
rhn.redhat.com/errata/RHSA-2013-1209.html
rhn.redhat.com/errata/RHSA-2013-1437.html
rhn.redhat.com/errata/RHSA-2013-1771.html
rhn.redhat.com/errata/RHSA-2014-0029.html
bugzilla.redhat.com/show_bug.cgi?id=983489