Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatcveRedhat.comRH:CVE-2020-10746
HistoryOct 19, 2020 - 1:18 p.m.

CVE-2020-10746

2020-10-1913:18:43
redhat.com
access.redhat.com
13
infinispan version 10
local access
controls
rest api
hotrod api
user authenticated
caches
operations
creation
update
deletion
shutdown

EPSS

0

Percentile

12.6%

JSON

A flaw was found in Infinispan (org.infinispan:infinispan-server-runtime) version 10, where it permits local access to controls via both REST and HotRod APIs. This flaw allows a user authenticated to the local machine to perform all operations on the caches, including the creation, update, deletion, and shutdown of the entire server.

Related

cvelist 1
prion 1
cve 1
nvd 1
redhat 1
cvelist
cvelist
CVE-2020-10746
2020-10-19 20:42:17
prion
prion
Design/Logic Flaw
2020-10-19 21:15:00
cve
cve
CVE-2020-10746
2020-10-19 21:15:12
nvd
nvd
CVE-2020-10746
2020-10-19 21:15:12
redhat
redhat
(RHSA-2020:3626) Moderate: Red Hat Data Grid 8.1.0 Security Update
2020-09-03 16:46:15

EPSS

0

Percentile

12.6%

JSON
Related for RH:CVE-2020-10746
cvelist1prion1cve1nvd1redhat1