hazelcast: Hazelcast connection caching

A flaw was found in Hazelcast and Hazelcast Jet. This flaw may allow an attacker unauthenticated access to manipulate data in the cluster...

hazelcast: Hazelcast connection caching

A flaw was found in Hazelcast and Hazelcast Jet. This flaw may allow an attacker unauthenticated access to manipulate data in the cluster...

hazelcast: Hazelcast connection caching

A flaw was found in Hazelcast and Hazelcast Jet. This flaw may allow an attacker unauthenticated access to manipulate data in the cluster...

CVE-2022-36437

A flaw was found in Hazelcast and Hazelcast Jet. This flaw may allow an attacker unauthenticated access to manipulate data in the cluster...

CVE-2022-36437

The Connection handler in Hazelcast and Hazelcast Jet allows a remote unauthenticated attacker to access and manipulate data in the cluster with the identity of another already authenticated connection. The affected Hazelcast versions are through 4.0.6, 4.1.9, 4.2.5, 5.0.3, and 5.1.2. The affecte...

CVE-2022-36437

The Connection handler in Hazelcast and Hazelcast Jet allows a remote unauthenticated attacker to access and manipulate data in the cluster with the identity of another already authenticated connection. The affected Hazelcast versions are through 4.0.6, 4.1.9, 4.2.5, 5.0.3, and 5.1.2. The affecte...

Design/Logic Flaw

The Connection handler in Hazelcast and Hazelcast Jet allows a remote unauthenticated attacker to access and manipulate data in the cluster with the identity of another already authenticated connection. The affected Hazelcast versions are through 4.0.6, 4.1.9, 4.2.5, 5.0.3, and 5.1.2. The affecte...

CVE-2022-36437

CVE-2022-36437 pertains to Hazelcast and Hazelcast Jet where the Connection handler can be exploited by a remote unauthenticated attacker to access and manipulate data in the cluster using another authenticated connection’s identity. Affected Hazelcast versions: up to 4.0.6, 4.1.9, 4.2.5, 5.0.3, ...

Hazelcast 授权问题漏洞

Hazelcast Hazelcast IMDG is a set of scalable open source data distribution platform of the U.S. Hazelcast company . The platform supports a variety of distributed data structures, distributed caching and other features. A security vulnerability exists in Hazelcast and Hazelcast Jet that stems fr...

GHSA-C5HG-MR8R-F6JP Hazelcast connection caching

Impact The Connection handler in Hazelcast and Hazelcast Jet allows an unauthenticated, remote attacker to access and manipulate data in the cluster with another authenticated connection's identity. The affected Hazelcast versions are through 3.12.12, 4.0.6, 4.1.9, 4.2.5, 5.0.3, and 5.1.2. The...

com.hazelcast.jet.contrib:debezium (=0.1), com.hazelcast.jet.contrib:elasticsearch-5 (>=0.1 <=0.2) +75 more potentially affected by CVE-2022-36437 via com.hazelcast.jet:hazelcast-jet (>=0.3 <=4.5.3)

com.hazelcast.jet:hazelcast-jet MAVEN version =0.3, =0.1, =0.1, =0.1, =2.0.0, =0.1, =0.1, =0.1, =0.1, =3.2, =4.5.3 and more Source cves: CVE-2022-36437 Source advisory: OSV:GHSA-C5HG-MR8R-F6JP...

PT-2022-23369 · Hazelcast +1 · Hazelcast +3

Name of the Vulnerable Software and Affected Versions: Hazelcast versions prior to 3.12.13 Hazelcast versions prior to 4.1.10 Hazelcast versions prior to 4.2.6 Hazelcast versions prior to 5.1.3 Hazelcast Jet versions prior to 4.5.4 Description: The Connection handler in Hazelcast and Hazelcast Je...

[SECURITY] Fedora 36 Update: golang-github-apache-beam-2-2.33.0~RC1-8.fc36

Apache Beam is a unified model for defining both batch and streaming data-parallel processing pipelines, as well as a set of language-specific SDKs for constructing pipelines and Runners for executing them on distributed processing backends, including Apache Flink, Apache Spark, Google Cloud...

[SECURITY] Fedora 35 Update: golang-github-apache-beam-2-2.33.0~RC1-7.fc35

Apache Beam is a unified model for defining both batch and streaming data-parallel processing pipelines, as well as a set of language-specific SDKs for constructing pipelines and Runners for executing them on distributed processing backends, including Apache Flink, Apache Spark, Google Cloud...

[SECURITY] Fedora 36 Update: golang-github-apache-beam-2-2.33.0~RC1-7.fc36

Apache Beam is a unified model for defining both batch and streaming data-parallel processing pipelines, as well as a set of language-specific SDKs for constructing pipelines and Runners for executing them on distributed processing backends, including Apache Flink, Apache Spark, Google Cloud...

com.hazelcast.jet.contrib:hazelcast-jet-spring-boot-starter (>=2.0.0 <=2.0.1), com.hazelcast.jet.contrib:http (=0.1) +57 more potentially affected by unknown CVE via com.hazelcast.jet:hazelcast-jet (>=4.1 <=4.5.2)

com.hazelcast.jet:hazelcast-jet MAVEN version =4.1, =2.0.0, =4.1, =4.3, =4.1, =4.1, =4.2, =4.1, =4.1, =4.1, =4.1, =4.4, =4.1, =4.5.2 and more Source cves: unknown CVE Source advisory: OSV:GHSA-V57X-GXFJ-484Q...

cloud.piranha.session:piranha-session-hazelcast (>=21.1.0 <=21.4.0), com.buession.cas:buession-cas-session (>=2.3.0 <=2.3.2) +93 more potentially affected by unknown CVE via com.hazelcast:hazelcast (>=4.1.1 <=4.1.7)

com.hazelcast:hazelcast MAVEN version =4.1.1, =21.1.0, =2.3.0, =2.3.0, =2.3.0, =2.3.0, =2.3.0, =2.3.0, =2.3.0, =2.3.0, =3.1.22, =3.1.22, =5.1.6 - com.hazelcast.jet:hazelcast-jet-core =4.4 - com.hazelcast.jet:hazelcast-jet-hadoop-core =4.4 - com.hazelcast.jet:hazelcast-jet-sql =4.4 -...