Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

23 matches found

Wolfi
Wolfiadded 2026/05/08 7:59 a.m.10 views

GHSA-MJ4R-2HFC-F8P6 vulnerabilities

Vulnerabilities for packages: neo4j, thingsboard, apache-activemq-artemis, management-api-for-apache-cassandra-5.0, keycloak, akhq, kserve-modelmesh, docker-selenium, infinispan, apache-nifi-registry, trino, kafka, apache-pulsar, opensearch, spark, druid, cassandra, wildfly, strimzi-kafka-operato...

5.4AI score
Exploits0
Wolfi
Wolfiadded 2026/05/08 7:59 a.m.11 views

GHSA-M4CV-J2PX-7723 vulnerabilities

Vulnerabilities for packages: neo4j, thingsboard, apache-activemq-artemis, management-api-for-apache-cassandra-5.0, keycloak, akhq, kserve-modelmesh, tez, docker-selenium, infinispan, apache-nifi-registry, trino, apache-pulsar, opensearch, spark, druid, strimzi-kafka-operator, zipkin,...

5.4AI score
Exploits0
Chainguard
Chainguardadded 2026/05/07 1:17 a.m.6 views

GHSA-V8H7-RR48-VMMV vulnerabilities

Vulnerabilities for packages: spark-fips, infinispan, apache-pulsar, knative-kafka-broker-fips, tez, druid, kafka-bridge, elasticsearch-fips, wavefront-proxy, docker-selenium, apache-camel-karavan-devmode, kayenta, pinot, apache-nifi-registry, flyway-fips, spark, strimzi-kafka-operator, selenium,...

5.4AI score
Exploits0
vulnersOsv
vulnersOsvadded 2026/04/27 12:30 p.m.4 views

org.apache.camel.kafkaconnector:camel-infinispan-sink-kafka-connector (>=4.0.0 <=4.14.5), org.apache.camel.kafkaconnector:camel-infinispan-source-kafka-connector (>=4.0.0 <=4.14.5) +8 more potentially affected by CVE-2026-40858 via org.apache.camel:camel-infinispan (>=4.0.0 <=4.14.6)

org.apache.camel:camel-infinispan MAVEN version =4.0.0, =4.0.0, =4.0.0, =4.10.3, =3.2.0, =3.2.0, =3.2.0, =3.2.0, =3.2.0, =4.10.0, =4.0.0, =4.14.6 Source cves: CVE-2026-40858 Source advisory: OSV:GHSA-4XWX-HVV7-7PRJ...

8.8CVSS5.8AI score0.00271EPSS
Exploits1
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2022-4059

Malicious code in bioql PyPI...

8.8CVSS7.6AI score0.00882EPSS
Exploits0References15
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2024-54328

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00247EPSS
Exploits0References3
Wolfi
Wolfiadded 2025/08/14 1:55 p.m.4 views

CVE-2025-55163 vulnerabilities

Vulnerabilities for packages: thingsboard, management-api-for-apache-cassandra-5.0, flyway, keycloak, akhq, keycloak-operator, kserve-modelmesh, tez, infinispan, sonarqube, trino, apache-pulsar, opensearch, spark, druid, debezium-connector-vitess, wildfly, strimzi-kafka-operator, apicurio-registr...

8.2CVSS6.6AI score0.00053EPSS
Exploits1
CNNVD
CNNVDadded 2025/06/26 12:0 a.m.1 views

Infinispan CLI 安全漏洞

Infinispan CLI is a command line interface for the Infinispan organization. A security vulnerability exists in the Infinispan CLI that stems from the use of plaintext passwords when handling Base64-encoded Kubernetes secrets, which could lead to the disclosure of sensitive information...

5.5CVSS6.3AI score0.00081EPSS
Exploits0References5
Github Security Blog
Github Security Blogadded 2025/03/28 9:30 p.m.11 views

Infinispan Potential Out of Memory Error via REST Compare API Buffer API

A vulnerability was found in the Infinispan component in Red Hat Data Grid. The REST compare API may have a buffer leak and an out of memory error can occur when sending continual requests with large POST data to the REST API...

6.5CVSS6.9AI score0.00247EPSS
Exploits0References4Affected Software1
NVD
NVDadded 2025/03/28 9:15 p.m.4 views

CVE-2024-6875

A vulnerability was found in the Infinispan component in Red Hat Data Grid. The REST compare API may have a buffer leak and an out of memory error can occur when sending continual requests with large POST data to the REST API...

6.5CVSS0.00247EPSS
Exploits0References2
Cvelist
Cvelistadded 2025/03/28 8:34 p.m.14 views

CVE-2024-6875 Infinispan: infinispan: rest compare api has buffer leak

A vulnerability was found in the Infinispan component in Red Hat Data Grid. The REST compare API may have a buffer leak and an out of memory error can occur when sending continual requests with large POST data to the REST API...

6.5CVSS0.00247EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2025/03/28 8:34 p.m.6 views

CVE-2024-6875 Infinispan: infinispan: rest compare api has buffer leak

A vulnerability was found in the Infinispan component in Red Hat Data Grid. The REST compare API may have a buffer leak and an out of memory error can occur when sending continual requests with large POST data to the REST API...

6.5CVSS7AI score0.00247EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2025/03/28 8:34 p.m.10 views

CVE-2024-6875

A vulnerability was found in the Infinispan component in Red Hat Data Grid. The REST compare API may have a buffer leak and an out of memory error can occur when sending continual requests with large POST data to the REST API...

6.5CVSS7.3AI score0.00247EPSS
Exploits0References3
Github Security Blog
Github Security Blogadded 2025/01/28 9:32 a.m.11 views

Infinispan vulnerable to Insertion of Sensitive Information into Log File

A flaw was found in Infinispan, when using JGroups with JDBCPING. This issue occurs when an application inadvertently exposes sensitive information, such as configuration details or credentials, through logging mechanisms. This exposure can lead to unauthorized access and exploitation by maliciou...

5.5CVSS6.9AI score0.00018EPSS
Exploits0References5Affected Software1
CVE
CVEadded 2025/01/28 9:12 a.m.75 views

CVE-2025-0736

CVE-2025-0736 concerns Infinispan when used with JGroups/JDBC_PING, where sensitive information (e.g., configuration data or credentials) can be exposed through logging. This logging exposure can enable unauthorized access. Affected product/impact: Infinispan (org.infinispan-infinispan-parent) wi...

5.5CVSS6.8AI score0.00018EPSS
Exploits0References3
Vulnrichment
Vulnrichmentadded 2025/01/28 9:12 a.m.6 views

CVE-2025-0736 Org.infinispan-infinispan-parent: exposure of sensitive information in application logs

A flaw was found in Infinispan, when using JGroups with JDBCPING. This issue occurs when an application inadvertently exposes sensitive information, such as configuration details or credentials, through logging mechanisms. This exposure can lead to unauthorized access and exploitation by maliciou...

5.5CVSS5.4AI score0.00018EPSS
Exploits0References3
Cvelist
Cvelistadded 2025/01/28 9:12 a.m.26 views

CVE-2025-0736 Org.infinispan-infinispan-parent: exposure of sensitive information in application logs

A flaw was found in Infinispan, when using JGroups with JDBCPING. This issue occurs when an application inadvertently exposes sensitive information, such as configuration details or credentials, through logging mechanisms. This exposure can lead to unauthorized access and exploitation by maliciou...

5.5CVSS0.00018EPSS
Exploits0References3
OSV
OSVadded 2020/10/19 9:15 p.m.1 views

CVE-2020-10746

A flaw was found in Infinispan org.infinispan:infinispan-server-runtime version 10, where it permits local access to controls via both REST and HotRod APIs. This flaw allows a user authenticated to the local machine to perform all operations on the caches, including the creation, update, deletion...

6.1CVSS6.3AI score
Exploits0References1
RedHat Linux
RedHat Linuxadded 2020/05/12 5:17 p.m.1 views

infinispan: invokeAccessibly method from ReflectionUtil class allows to invoke private methods

A vulnerability was found in Infinispan such that the invokeAccessibly method from the public class ReflectionUtil allows any application class to invoke private methods in any class with Infinispan's privileges. The attacker can use reflection to introduce new, malicious behavior into the...

8.8CVSS5.7AI score0.00882EPSS
Exploits0References4
RedHat Linux
RedHat Linuxadded 2020/05/11 8:34 p.m.0 views

infinispan: invokeAccessibly method from ReflectionUtil class allows to invoke private methods

A vulnerability was found in Infinispan such that the invokeAccessibly method from the public class ReflectionUtil allows any application class to invoke private methods in any class with Infinispan's privileges. The attacker can use reflection to introduce new, malicious behavior into the...

8.8CVSS5.7AI score0.00882EPSS
Exploits0References4
Rows per page
Query Builder