eap7-infinispan-hibernate-cache-spi vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the eap7-infinispan-hibernate-cache-spi package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free

Vulnerability	Vulnerable Version
H Directory Traversal	<0:11.0.18-2.Final_redhat_00001.1.el9eap
H Server-Side Request Forgery (SSRF)	<0:11.0.19-2.Final_redhat_00001.1.el9eap
H Server-Side Request Forgery (SSRF)	<0:11.0.19-2.Final_redhat_00001.1.el9eap
H Cross-site Scripting (XSS)	<0:11.0.19-2.Final_redhat_00001.1.el9eap
H Resource Exhaustion	<0:11.0.18-1.Final_redhat_00001.1.el9eap
H Resource Exhaustion	<0:11.0.18-2.Final_redhat_00001.1.el9eap
H Truncation of Security-relevant Information	<0:11.0.18-2.Final_redhat_00001.1.el9eap
H HTTP Request Smuggling	<0:11.0.18-2.Final_redhat_00001.1.el9eap
H Improper Input Validation	<0:11.0.18-2.Final_redhat_00001.1.el9eap
H Improper Initialization	<0:11.0.18-1.Final_redhat_00001.1.el9eap
H Resource Exhaustion	<0:11.0.18-1.Final_redhat_00001.1.el9eap
H Deserialization of Untrusted Data	<0:11.0.18-1.Final_redhat_00001.1.el9eap
H Directory Traversal	<0:11.0.18-1.Final_redhat_00001.1.el9eap
H Files or Directories Accessible to External Parties	<0:11.0.18-1.Final_redhat_00001.1.el9eap
H Improper Validation of Syntactic Correctness of Input	<0:11.0.18-1.Final_redhat_00001.1.el9eap
H Allocation of Resources Without Limits or Throttling	<0:11.0.18-1.Final_redhat_00001.1.el9eap
H Information Exposure Through Server Error Message	<0:11.0.17-1.Final_redhat_00001.1.el9eap
H Loop with Unreachable Exit Condition ('Infinite Loop')	<0:11.0.17-1.Final_redhat_00001.1.el9eap
H Information Exposure	<0:11.0.17-1.Final_redhat_00001.1.el9eap
M Deserialization of Untrusted Data	<0:11.0.15-1.Final_redhat_00001.1.el9eap
H Uncontrolled Recursion	<0:11.0.17-1.Final_redhat_00001.1.el9eap
M Creation of Temporary File With Insecure Permissions	<0:11.0.15-1.Final_redhat_00001.1.el9eap
H Creation of Temporary File With Insecure Permissions	<0:11.0.17-1.Final_redhat_00001.1.el9eap
H Out-of-bounds Write	<0:11.0.17-1.Final_redhat_00001.1.el9eap
H Improper Input Validation	<0:11.0.17-1.Final_redhat_00001.1.el9eap
H Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection')	<0:11.0.17-1.Final_redhat_00001.1.el9eap
H Out-of-bounds Write	<0:11.0.17-1.Final_redhat_00001.1.el9eap
M Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')	<0:11.0.15-1.Final_redhat_00001.1.el9eap

Vulnerability

Vulnerable Version

Directory Traversal

<0:11.0.18-2.Final_redhat_00001.1.el9eap

Server-Side Request Forgery (SSRF)

<0:11.0.19-2.Final_redhat_00001.1.el9eap

Server-Side Request Forgery (SSRF)

<0:11.0.19-2.Final_redhat_00001.1.el9eap

Cross-site Scripting (XSS)

<0:11.0.19-2.Final_redhat_00001.1.el9eap

Resource Exhaustion

<0:11.0.18-1.Final_redhat_00001.1.el9eap