Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2023-5384

A flaw was found in Infinispan. When serializing the configuration for a cache to XML/JSON/YAML, which contains credentials (JDBC store with connection pooling, remote store), the credentials are returned in clear text as part of the configuration.

  • Published: Dec 18, 2023
  • Updated: Dec 29, 2023
  • CVE: CVE-2023-5384
  • Severity: Low
  • Exploit:

CVSS v3:

  • Severity: Low
  • Score: 2.7
  • AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N

CWEs:

OWASP TOP 10:

Software From Fixed in
redhat / data_grid - 8.4.6