Lucene search
K

5 matches found

Wolfi
Wolfi
added 2026/01/07 1:51 a.m.5 views

CVE-2023-3628 vulnerabilities

Vulnerabilities for packages: infinispan...

6.5CVSS7AI score0.0064EPSS
Exploits0
NVD
NVD
added 2023/12/18 2:15 p.m.31 views

CVE-2023-3628

A flaw was found in Infinispan's REST. Bulk read endpoints do not properly evaluate user permissions for the operation. This issue could allow an authenticated user to access information outside of their intended permissions...

6.5CVSS0.0064EPSS
Exploits0References4
CVE
CVE
added 2023/12/18 1:43 p.m.139 views

CVE-2023-3628

CVE-2023-3628 affects Infinispan REST: bulk read endpoints fail to properly enforce user permissions, potentially allowing an authenticated user to access data outside their intended scope. The condition is documented across multiple sources (GHSA-FHR7-8JX4-R9CP, NVD/NVD-linked CVE, and Red Hat a...

6.5CVSS6.4AI score0.0064EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2023/12/18 1:43 p.m.37 views

CVE-2023-3628 Infispan: rest bulk ops don't check permissions

A flaw was found in Infinispan's REST. Bulk read endpoints do not properly evaluate user permissions for the operation. This issue could allow an authenticated user to access information outside of their intended permissions...

6.5CVSS6.3AI score0.0064EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2023/09/21 4:54 p.m.35 views

CVE-2023-3628

A flaw was found in Infinispan's REST. Bulk read endpoints do not properly evaluate user permissions for the operation. This issue could allow an authenticated user to access information outside of their intended permissions...

6.5CVSS6.4AI score0.0064EPSS
Exploits0References3
Rows per page
Query Builder