Search for packages
| purl | pkg:maven/org.jgroups/jgroups@3.2-alpha0 |
| Tags | Ghost |
| Next non-vulnerable version | 4.0.0.Final |
| Latest non-vulnerable version | 4.0.0.Final |
| Risk | 3.1 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-2fhz-ewz5-hfhp
Aliases: CVE-2013-4112 GHSA-cc62-496p-hrr7 |
Exposure of Sensitive Information to an Unauthorized Actor in JGroup The DiagnosticsHandler in JGroup 3.0.x, 3.1.x, 3.2.x before 3.2.9, and 3.3.x before 3.3.3 allows remote attackers to obtain sensitive information (diagnostic information) and execute arbitrary code by reusing valid credentials. |
Affected by 2 other vulnerabilities. Affected by 1 other vulnerability. Affected by 1 other vulnerability. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-07-31T09:21:03.434281+00:00 | GitLab Importer | Affected by | VCID-2fhz-ewz5-hfhp | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jgroups/jgroups/CVE-2013-4112.yml | 37.0.0 |