CVE-2020-25711

Posted on by admin

CVE-2020-25711

A flaw was found in infinispan 10 REST API, where authorization permissions are not checked while performing some server management operations. When authz is enabled, any user with authentication can perform operations like shutting down the server without the ADMIN role.

Source: CVE-2020-25711

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다