A flaw was found in Infinispan, which does not detect circular object references when unmarshalling. An authenticated attacker with sufficient permissions could insert a maliciously constructed object into the cache and use it to cause out of memory errors and achieve a denial of service.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
redhat data grid |
||
redhat jboss data grid - |
||
infinispan infinispan - |