CVE-2017-9797
CVSS v3.0
6.5 (Medium)
CVSS v2.0
5.8 (Medium)
EPSS
0.06 % (27th)
Affected Products
1
Advisories
1
When an Apache Geode cluster before v1.2.1 is operating in secure mode, an unauthenticated client can enter multi-user authentication mode and send metadata messages. These metadata operations could leak information about application data types. In addition, an attacker could perform a denial of service attack on the cluster.
Weaknesses
- CWE-200
- Exposure of Sensitive Information to an Unauthorized Actor
- CVE Status
- PUBLISHED
- CNA
- Apache Software Foundation
- Published Date
-
2017-10-03 01:29:03
(7 years ago) - Updated Date
-
2023-11-07 02:50:52
(10 months ago)
Affected Products
Loading...
Loading...
Loading...
Configuration #1
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...