216.73.216.86

CVE-2025-0736

· Published 28/01/2025 09:15 · Modified 28/01/2025 09:15

Labels: CVE-2025-0736 2025-01-28CVE-2025-0736CWE-532[email protected]

Essential information

Published
28/01/2025 09:15
Modified
28/01/2025 09:15
Author
Creator
CVSS
5.5 MEDIUM (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CVSS metrics

Description

A flaw was found in Infinispan, when using JGroups with JDBC_PING. This issue occurs when an application inadvertently exposes sensitive information, such as configuration details or credentials, through logging mechanisms. This exposure can lead to unauthorized access and exploitation by malicious actors.

NVD status

Status
Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

References