A flaw was found in Infinispan version 10, where it is possible to perform various actions that could have side effects using GET requests. This flaw allows an attacker to perform a cross-site request forgery (CSRF) attack.
[
{
"product": "Infinispan",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "Red Hat Data Grid 8.2.0"
}
]
}
]