CVE-2013-4112

The DiagnosticsHandler in JGroup 3.0.x, 3.1.x, 3.2.x before 3.2.9, and 3.3.x before 3.3.3 allows remote attackers to obtain sensitive information (diagnostic information) and execute arbitrary code by reusing valid credentials.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5.4 UNKNOWN
ADJACENT_NETWORK
MEDIUM
AV:A/AC:M/Au:N/C:P/I:P/A:P
redhatCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 69%
VendorProductVersion
jgroupsjgroup
3.0.0
jgroupsjgroup
3.0.1
jgroupsjgroup
3.0.2
jgroupsjgroup
3.0.3
jgroupsjgroup
3.0.4
jgroupsjgroup
3.0.5
jgroupsjgroup
3.0.6
jgroupsjgroup
3.0.7
jgroupsjgroup
3.0.8
jgroupsjgroup
3.0.9
jgroupsjgroup
3.0.10
jgroupsjgroup
3.0.11
jgroupsjgroup
3.0.12
jgroupsjgroup
3.0.13
jgroupsjgroup
3.0.14
jgroupsjgroup
3.1.0
jgroupsjgroup
3.2.0
jgroupsjgroup
3.2.1
jgroupsjgroup
3.2.2
jgroupsjgroup
3.2.3
jgroupsjgroup
3.2.4
jgroupsjgroup
3.2.5
jgroupsjgroup
3.2.6
jgroupsjgroup
3.2.7
jgroupsjgroup
3.2.8
jgroupsjgroup
3.3.0
jgroupsjgroup
3.3.1
jgroupsjgroup
3.3.2
redhatjboss_enterprise_application_platform
6.1.0
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
libjgroups-java
sid
2.12.2.Final-5
fixed
trixie
2.12.2.Final-5
fixed
bookworm
2.12.2.Final-5
fixed
bullseye
2.12.2.Final-5
fixed
wheezy
no-dsa
squeeze
no-dsa
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
libjgroups-java
zesty
not-affected
yakkety
not-affected
xenial
not-affected
wily
not-affected
vivid
not-affected
utopic
not-affected
trusty
dne
saucy
not-affected
raring
ignored
quantal
ignored
precise
ignored
lucid
ignored
Common Weakness Enumeration
References
http://rhn.redhat.com/errata/RHSA-2013-1207.html
http://rhn.redhat.com/errata/RHSA-2013-1208.html
http://rhn.redhat.com/errata/RHSA-2013-1209.html
http://rhn.redhat.com/errata/RHSA-2013-1437.html
http://rhn.redhat.com/errata/RHSA-2013-1771.html
http://rhn.redhat.com/errata/RHSA-2014-0029.html
https://bugzilla.redhat.com/show_bug.cgi?id=983489
http://rhn.redhat.com/errata/RHSA-2013-1207.html
http://rhn.redhat.com/errata/RHSA-2013-1208.html
http://rhn.redhat.com/errata/RHSA-2013-1209.html
http://rhn.redhat.com/errata/RHSA-2013-1437.html
http://rhn.redhat.com/errata/RHSA-2013-1771.html
http://rhn.redhat.com/errata/RHSA-2014-0029.html
https://bugzilla.redhat.com/show_bug.cgi?id=983489