VulnerableCode Package Details - pkg:maven/org.jgroups/jgroups@3.3.0

Search for packages

Package details: pkg:maven/org.jgroups/jgroups@3.3.0

Essentials
History (3)

purl	pkg:maven/org.jgroups/jgroups@3.3.0
Tags	Ghost

Next non-vulnerable version	4.0.0.Final
Latest non-vulnerable version	4.0.0.Final
Risk	4.0

Vulnerabilities affecting this package (1)

Vulnerability	Summary	Fixed by
VCID-rws9-7kwm-aaae Aliases: CVE-2013-4112 GHSA-cc62-496p-hrr7	Authentication via cached credentials The `DiagnosticsHandler` in this package allows remote attackers to obtain sensitive information (diagnostic information) and execute arbitrary code by reusing valid credentials.	3.3.3.Final Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-01-17T02:29:12.328360+00:00	GHSA Importer	Affected by	VCID-rws9-7kwm-aaae	None	35.1.0
2024-09-17T22:04:23.230408+00:00	GHSA Importer	Affected by	VCID-rws9-7kwm-aaae	https://github.com/advisories/GHSA-cc62-496p-hrr7	34.0.1
2024-01-03T17:39:08.695260+00:00	GHSA Importer	Affected by	VCID-rws9-7kwm-aaae	https://github.com/advisories/GHSA-cc62-496p-hrr7	34.0.0rc1