CVE-2013-4112

EUVD-2022-3553
The DiagnosticsHandler in JGroup 3.0.x, 3.1.x, 3.2.x before 3.2.9, and 3.3.x before 3.3.3 allows remote attackers to obtain sensitive information (diagnostic information) and execute arbitrary code by reusing valid credentials.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.4 UNKNOWN
ADJACENT_NETWORK
MEDIUM
AV:A/AC:M/Au:N/C:P/I:P/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 69%
Affected Products (NVD)
VendorProductVersion
jgroupsjgroup
3.0.0
jgroupsjgroup
3.0.1
jgroupsjgroup
3.0.2
jgroupsjgroup
3.0.3
jgroupsjgroup
3.0.4
jgroupsjgroup
3.0.5
jgroupsjgroup
3.0.6
jgroupsjgroup
3.0.7
jgroupsjgroup
3.0.8
jgroupsjgroup
3.0.9
jgroupsjgroup
3.0.10
jgroupsjgroup
3.0.11
jgroupsjgroup
3.0.12
jgroupsjgroup
3.0.13
jgroupsjgroup
3.0.14
jgroupsjgroup
3.1.0
jgroupsjgroup
3.2.0
jgroupsjgroup
3.2.1
jgroupsjgroup
3.2.2
jgroupsjgroup
3.2.3
jgroupsjgroup
3.2.4
jgroupsjgroup
3.2.5
jgroupsjgroup
3.2.6
jgroupsjgroup
3.2.7
jgroupsjgroup
3.2.8
jgroupsjgroup
3.3.0
jgroupsjgroup
3.3.1
jgroupsjgroup
3.3.2
redhatjboss_enterprise_application_platform
6.1.0
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
libjgroups-java
bookworm
2.12.2.Final-5
fixed
bullseye
2.12.2.Final-5
fixed
sid
2.12.2.Final-5
fixed
squeeze
no-dsa
trixie
2.12.2.Final-5
fixed
wheezy
no-dsa
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
libjgroups-java
lucid
ignored
precise
ignored
quantal
ignored
raring
ignored
saucy
not-affected
trusty
dne
utopic
not-affected
vivid
not-affected
wily
not-affected
xenial
not-affected
yakkety
not-affected
zesty
not-affected
Common Weakness Enumeration
References
http://rhn.redhat.com/errata/RHSA-2013-1207.html
http://rhn.redhat.com/errata/RHSA-2013-1208.html
http://rhn.redhat.com/errata/RHSA-2013-1209.html
http://rhn.redhat.com/errata/RHSA-2013-1437.html
http://rhn.redhat.com/errata/RHSA-2013-1771.html
http://rhn.redhat.com/errata/RHSA-2014-0029.html
https://bugzilla.redhat.com/show_bug.cgi?id=983489
http://rhn.redhat.com/errata/RHSA-2013-1207.html
http://rhn.redhat.com/errata/RHSA-2013-1208.html
http://rhn.redhat.com/errata/RHSA-2013-1209.html
http://rhn.redhat.com/errata/RHSA-2013-1437.html
http://rhn.redhat.com/errata/RHSA-2013-1771.html
http://rhn.redhat.com/errata/RHSA-2014-0029.html
https://bugzilla.redhat.com/show_bug.cgi?id=983489