com.hazelcast:hazelcast is vulnerable to Missing Permission Checks. The vulnerability is due to some client operations not checking permissions properly. This flaw allowing authenticated users to access data stored in the cluster.
github.com/hazelcast/hazelcast/commit/1eec447afaff529381e8cf8af07b368b2665883c
github.com/hazelcast/hazelcast/commit/8150451b5148a350f7428882fb2cb13778415547
github.com/hazelcast/hazelcast/commit/e9d9b6dc3e46b147071c97a2d92a496479ef7439
github.com/hazelcast/hazelcast/pull/25509
github.com/hazelcast/hazelcast/security/advisories/GHSA-xh6m-7cr7-xx66