GHSA-9wmf-xf3h-r8pr
- Source
- https://github.com/advisories/GHSA-9wmf-xf3h-r8pr
- Import Source
- https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2024/04/GHSA-9wmf-xf3h-r8pr/GHSA-9wmf-xf3h-r8pr.json
- Aliases
-
- CVE-2024-1102
- Published
- 2024-04-25T18:30:39Z
- Modified
- 2024-04-25T20:13:44.840633Z
- Details
-
A vulnerability was found in jberet-core logging. An exception in 'dbProperties' might display user credentials such as the username and password for the database-connection.
- References
-
- https://nvd.nist.gov/vuln/detail/CVE-2024-1102
- https://github.com/jberet/jsr352/issues/452
- https://github.com/jberet/jsr352/commit/eeef999663d7da0e372aeeeac26ecf7201a3121d
- https://access.redhat.com/security/cve/CVE-2024-1102
- https://bugzilla.redhat.com/show_bug.cgi?id=2262060
- https://github.com/jberet/jsr352
Affected packages
Maven / org.jberet:jberet-core
Package
- Name
- org.jberet:jberet-core
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0The exact introduced commit is unknownFixed2.2.1.Final
Affected versions
1.*
1.0.0.Alpha1
1.0.0.Alpha2
1.0.0.Alpha3
1.0.0.Alpha4
1.0.0.Beta1
1.0.0.Beta2
1.0.0.CR1
1.0.0.CR2
1.0.0.Final
1.0.1.Beta
1.0.1.CR1
1.0.1.CR2
1.0.1.Final
1.0.2.Final
1.1.0.Alpha1
1.1.0.Alpha2
1.1.0.Alpha3
1.1.0.Beta1
1.1.0.Final
1.2.0.Alpha1
1.2.0.Alpha2
1.2.0.Beta1
1.2.0.Final
1.2.1.Final
1.2.2.Final
1.2.3.Final
1.2.4.Final
1.2.5.Final
1.2.6.Final
1.2.7.Final
1.2.8.Final
1.3.0.Alpha1
1.3.0.Beta1
1.3.0.Beta2
1.3.0.Beta3
1.3.0.Beta4
1.3.0.Beta5
1.3.0.Beta6
1.3.0.Beta7
1.3.0.Final
1.3.1.Final
1.3.2.Final
1.3.3.Final
1.3.4.Final
1.3.5.Final
1.3.6.Final
1.3.7.Final
1.3.8.Final
1.3.9.SP1
1.3.9.SP2
1.3.9.SP3
1.3.9.Final
1.3.10.SP1
1.3.10.Final
1.3.11.Final
1.3.12.Final
1.3.13.Final
1.4.0.Alpha
1.4.0.Final
1.4.1.Final
1.4.2.Final
1.4.3.Final
1.4.4.Final
1.4.5.Final
1.4.6.Final
1.4.7.Final
1.4.8.Final
2.*
2.0.0.Final
2.0.1.Final
2.0.2.Final
2.0.3.Final
2.0.4.Final
2.0.5.Final
2.1.0.Beta1
2.1.0.Final
2.1.1.Final
2.1.2.Final
2.1.3.Final
2.1.4.Final
2.2.0.Final