Maven package
org.infinispan/infinispan-client-hotrod
pkg:maven/org.infinispan/infinispan-client-hotrod
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2023-5384 | — | >= 15.0.0.Dev01, < 15.0.0.Dev07 | 15.0.0.Dev07 | Dec 18, 2023 | A flaw was found in Infinispan. When serializing the configuration for a cache to XML/JSON/YAML, which contains credentials (JDBC store with connection pooling, remote store), the credentials are returned in clear text as part of the configuration. |
- CVE-2023-5384Dec 18, 2023affected >= 15.0.0.Dev01, < 15.0.0.Dev07fixed 15.0.0.Dev07
A flaw was found in Infinispan. When serializing the configuration for a cache to XML/JSON/YAML, which contains credentials (JDBC store with connection pooling, remote store), the credentials are returned in clear text as part of the configuration.