Lucene search

K
cvelistRedhatCVELIST:CVE-2016-2141
HistoryJun 30, 2016 - 12:00 a.m.

CVE-2016-2141

2016-06-3000:00:00
redhat
www.cve.org
1

9.3 High

AI Score

Confidence

High

0.007 Low

EPSS

Percentile

79.5%

It was found that JGroups did not require necessary headers for encrypt and auth protocols from new nodes joining the cluster. An attacker could use this flaw to bypass security restrictions, and use this vulnerability to send and receive messages within the cluster, leading to information disclosure, message spoofing, or further possible attacks.

References

9.3 High

AI Score

Confidence

High

0.007 Low

EPSS

Percentile

79.5%