5.4 Medium
CVSS2
Access Vector
ADJACENT_NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:A/AC:M/Au:N/C:P/I:P/A:P
0.09 Low
EPSS
Percentile
94.6%
The DiagnosticsHandler in JGroup 3.0.x, 3.1.x, 3.2.x before 3.2.9, and 3.3.x before 3.3.3 allows remote attackers to obtain sensitive information (diagnostic information) and execute arbitrary code by reusing valid credentials.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 12 | all | libjgroups-java | < 2.12.2.Final-4 | libjgroups-java_2.12.2.Final-4_all.deb |
Debian | 11 | all | libjgroups-java | < 2.12.2.Final-4 | libjgroups-java_2.12.2.Final-4_all.deb |
Debian | 10 | all | libjgroups-java | < 2.12.2.Final-4 | libjgroups-java_2.12.2.Final-4_all.deb |
Debian | 999 | all | libjgroups-java | < 2.12.2.Final-4 | libjgroups-java_2.12.2.Final-4_all.deb |
Debian | 13 | all | libjgroups-java | < 2.12.2.Final-4 | libjgroups-java_2.12.2.Final-4_all.deb |