GHSA-5GJ6-62G7-VMGF Hazelcast vulnerable to unmasked password exposure

In Hazelcast before 5.3.0, configuration routines don't mask passwords in the member configuration properly. This allows Hazelcast Management Center users to view some of the secrets...

Vulnerability fixed in Red Hat Fuse

Red Hat has fixed a vulnerability in Fuse 7. The vulnerability is located in the Hazelcast integrated in Fuse Connection Cache and allows an unauthenticated malicious agent to able to manipulate data in the cluster without prior authentication or authorization. Red Hat has released updates to fix...

ch.mobi.mobitor:mobitor-base (>=3.1.305 <=3.1.483), cloud.piranha.extension:piranha-extension-hazelcast (>=21.6.0 <=21.10.0) +147 more potentially affected by CVE-2022-36437 via com.hazelcast:hazelcast (>=4.2 <=4.2.5)

com.hazelcast:hazelcast MAVEN version =4.2, =3.1.305, =21.6.0, =1.37.0, =0.5.0, =3.1.5, =1.1.1, =1.1.1, =1.1.1, =1.1.0, =1.1.1, =1.1.6 and more Source cves: CVE-2022-36437 Source advisory: OSV:GHSA-C5HG-MR8R-F6JP...

The vulnerability of the Hazelcast platform, a software product for data processing, in the Atlassian Bitbucket Data Center allows a perpetrator to execute arbitrary code.

The vulnerability of the Hazelcast platform, a software product for data processing, in the Atlassian/Bitbucket Data Center environment, relates to the restoration of unreliable data in memory. Exploiting this vulnerability could allow an attacker operating remotely to execute arbitrary code...