EPSS
Percentile
68.1%
infinispan-core is vulnerable to remote code execution (RCE) attacks. An authenticated malicious user can pass an XML or JSON file to the cache to inject and execute arbitrary code when deserialized.
www.securityfocus.com/bid/104218
access.redhat.com/errata/RHSA-2018:1833
bugzilla.redhat.com/show_bug.cgi?id=1576492