VYPR
Moderate severityNVD Advisory· Published Sep 28, 2013· Updated Jun 16, 2026

CVE-2013-4112

CVE-2013-4112

Description

The DiagnosticsHandler in JGroup 3.0.x, 3.1.x, 3.2.x before 3.2.9, and 3.3.x before 3.3.3 allows remote attackers to obtain sensitive information (diagnostic information) and execute arbitrary code by reusing valid credentials.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
org.jgroups:jgroupsMaven
>= 3.0.0, < 3.2.9.Final3.2.9.Final
org.jgroups:jgroupsMaven
>= 3.3.0, < 3.3.3.Final3.3.3.Final

Affected products

30
  • Jgroups/Jgroup28 versions
    cpe:2.3:a:jgroups:jgroup:3.0.0:*:*:*:*:*:*:*+ 27 more
    • cpe:2.3:a:jgroups:jgroup:3.0.0:*:*:*:*:*:*:*
    • cpe:2.3:a:jgroups:jgroup:3.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:jgroups:jgroup:3.0.10:*:*:*:*:*:*:*
    • cpe:2.3:a:jgroups:jgroup:3.0.11:*:*:*:*:*:*:*
    • cpe:2.3:a:jgroups:jgroup:3.0.12:*:*:*:*:*:*:*
    • cpe:2.3:a:jgroups:jgroup:3.0.13:*:*:*:*:*:*:*
    • cpe:2.3:a:jgroups:jgroup:3.0.14:*:*:*:*:*:*:*
    • cpe:2.3:a:jgroups:jgroup:3.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:jgroups:jgroup:3.0.3:*:*:*:*:*:*:*
    • cpe:2.3:a:jgroups:jgroup:3.0.4:*:*:*:*:*:*:*
    • cpe:2.3:a:jgroups:jgroup:3.0.5:*:*:*:*:*:*:*
    • cpe:2.3:a:jgroups:jgroup:3.0.6:*:*:*:*:*:*:*
    • cpe:2.3:a:jgroups:jgroup:3.0.7:*:*:*:*:*:*:*
    • cpe:2.3:a:jgroups:jgroup:3.0.8:*:*:*:*:*:*:*
    • cpe:2.3:a:jgroups:jgroup:3.0.9:*:*:*:*:*:*:*
    • cpe:2.3:a:jgroups:jgroup:3.1.0:*:*:*:*:*:*:*
    • cpe:2.3:a:jgroups:jgroup:3.2.0:*:*:*:*:*:*:*
    • cpe:2.3:a:jgroups:jgroup:3.2.1:*:*:*:*:*:*:*
    • cpe:2.3:a:jgroups:jgroup:3.2.2:*:*:*:*:*:*:*
    • cpe:2.3:a:jgroups:jgroup:3.2.3:*:*:*:*:*:*:*
    • cpe:2.3:a:jgroups:jgroup:3.2.4:*:*:*:*:*:*:*
    • cpe:2.3:a:jgroups:jgroup:3.2.5:*:*:*:*:*:*:*
    • cpe:2.3:a:jgroups:jgroup:3.2.6:*:*:*:*:*:*:*
    • cpe:2.3:a:jgroups:jgroup:3.2.7:*:*:*:*:*:*:*
    • cpe:2.3:a:jgroups:jgroup:3.2.8:*:*:*:*:*:*:*
    • cpe:2.3:a:jgroups:jgroup:3.3.0:*:*:*:*:*:*:*
    • cpe:2.3:a:jgroups:jgroup:3.3.1:*:*:*:*:*:*:*
    • cpe:2.3:a:jgroups:jgroup:3.3.2:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:jboss_enterprise_application_platform:6.1.0:*:*:*:*:*:*:*
  • ghsa-coords
    Range: >= 3.0.0, < 3.2.9.Final

Patches

Vulnerability mechanics

References

9

News mentions

0

No linked articles in our index yet.