Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The DiagnosticsHandler in JGroup 3.0.x, 3.1.x, 3.2.x before 3.2.9, and 3.3.x before 3.3.3 allows remote attackers to obtain sensitive information (diagnostic information) and execute arbitrary code by reusing valid credentials.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
JGroup ‘DiagnosticsHandler::run()’ 方法安全绕过漏洞
Vulnerability Description
Red Hat JGroup是美国红帽(Red Hat)公司的一套用Java语言编写的群组通讯工具。该工具提供组的创建与删除、组的成员加入或离开、消息的点对点发送等功能。 JGroup 3.0.x,3.1.x,3.2.9之前的3.2.x版本,3.3.3之前的3.3.x版本中的DiagnosticsHandler中存在漏洞。远程攻击者可通过重用有效凭证利用该漏洞获取敏感信息(诊断信息),并执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A