11 matches found
EUVD-2023-2023
Malicious code in bioql PyPI...
CVE-2023-33265
In Hazelcast through 5.0.4, 5.1 through 5.1.6, and 5.2 through 5.2.3, executor services don't check client permissions properly, allowing authenticated users to execute tasks on members without the required permissions granted...
Hazelcast Executor Services don't check client permissions properly
Impact In Hazelcast Platform, 5.0 through 5.0.4, 5.1 through 5.1.6, and 5.2 through 5.2.3, and Hazelcast IMDG all versions up to 4.2.z, Executor Services don't check client permissions properly, allowing authenticated users to execute tasks on members without the required permissions granted...
GHSA-C5VJ-WP4V-MMVX Hazelcast Executor Services don't check client permissions properly
Impact In Hazelcast Platform, 5.0 through 5.0.4, 5.1 through 5.1.6, and 5.2 through 5.2.3, and Hazelcast IMDG all versions up to 4.2.z, Executor Services don't check client permissions properly, allowing authenticated users to execute tasks on members without the required permissions granted...
CVE-2023-33265
In Hazelcast through 5.0.4, 5.1 through 5.1.6, and 5.2 through 5.2.3, executor services don't check client permissions properly, allowing authenticated users to execute tasks on members without the required permissions granted...
CVE-2023-33265
In Hazelcast through 5.0.4, 5.1 through 5.1.6, and 5.2 through 5.2.3, executor services don't check client permissions properly, allowing authenticated users to execute tasks on members without the required permissions granted...
CVE-2023-33265
In Hazelcast through 5.0.4, 5.1 through 5.1.6, and 5.2 through 5.2.3, executor services don't check client permissions properly, allowing authenticated users to execute tasks on members without the required permissions granted...
Design/Logic Flaw
In Hazelcast through 5.0.4, 5.1 through 5.1.6, and 5.2 through 5.2.3, executor services don't check client permissions properly, allowing authenticated users to execute tasks on members without the required permissions granted...
CVE-2023-33265
In Hazelcast through 5.0.4, 5.1 through 5.1.6, and 5.2 through 5.2.3, executor services don't check client permissions properly, allowing authenticated users to execute tasks on members without the required permissions granted...
CVE-2023-33265
In Hazelcast through 5.0.4, 5.1 through 5.1.6, and 5.2 through 5.2.3, executor services don't check client permissions properly, allowing authenticated users to execute tasks on members without the required permissions granted...
CVE-2023-33265
Hazelcast vulnerability CVE-2023-33265 affects Hazelcast Platform/IMDG versions 5.0.4 or earlier, 5.1 up to 5.1.6, and 5.2 up to 5.2.3. The root cause is that executor services do not properly enforce client permissions, allowing authenticated users to execute tasks on cluster members without the...