CVE-2013-4112
Description
The DiagnosticsHandler in JGroup 3.0.x, 3.1.x, 3.2.x before 3.2.9, and 3.3.x before 3.3.3 allows remote attackers to obtain sensitive information (diagnostic information) and execute arbitrary code by reusing valid credentials.
Risk Information
Base Score
9.8
MODERATE
Vector
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.622
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Vulnerabilities CVE-2013-4112 are fixed in JGroups-jgroups 3.2.9 | Windows |
| Vulnerabilities CVE-2013-4112 are fixed in JGroups-jgroups 3.3.3 | Windows |
| Multiple Vulnerabilities are affected in Red Hat JBoss Enterprise Application Platform 7 6.1.0 | Windows |
| Vulnerabilities CVE-2013-4112 are fixed in JGroups-jgroups for Linux 3.2.9 | Linux |
| Vulnerabilities CVE-2013-4112 are fixed in JGroups-jgroups for Linux 3.3.3 | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234