GHSA-9wmf-xf3h-r8pr
Suggest an improvement- Source
- https://github.com/advisories/GHSA-9wmf-xf3h-r8pr
- Import Source
- https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2024/04/GHSA-9wmf-xf3h-r8pr/GHSA-9wmf-xf3h-r8pr.json
- JSON Data
- https://api.osv.dev/v1/vulns/GHSA-9wmf-xf3h-r8pr
- Aliases
-
- CVE-2024-1102
- Published
- 2024-04-25T18:30:39Z
- Modified
- 2024-10-16T17:22:50.244261Z
- Severity
-
- 6.5 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N CVSS Calculator
- Summary
- Jberet: jberet-core logging database credentials
- Details
-
A vulnerability was found in jberet-core logging. An exception in 'dbProperties' might display user credentials such as the username and password for the database-connection.
- Database specific
{ "nvd_published_at": "2024-04-25T17:15:47Z", "cwe_ids": [ "CWE-200", "CWE-523", "CWE-532" ], "severity": "MODERATE", "github_reviewed": true, "github_reviewed_at": "2024-04-25T19:57:35Z" }- References
-
- https://nvd.nist.gov/vuln/detail/CVE-2024-1102
- https://github.com/jberet/jsr352/issues/452
- https://github.com/jberet/jsr352/commit/eeef999663d7da0e372aeeeac26ecf7201a3121d
- https://access.redhat.com/errata/RHSA-2024:3580
- https://access.redhat.com/errata/RHSA-2024:3581
- https://access.redhat.com/errata/RHSA-2024:3583
- https://access.redhat.com/security/cve/CVE-2024-1102
- https://bugzilla.redhat.com/show_bug.cgi?id=2262060
- https://github.com/jberet/jsr352
Affected packages
Maven / org.jberet:jberet-core
Package
- Name
- org.jberet:jberet-core
- View open source insights on deps.dev
- Purl
- pkg:maven/org.jberet/jberet-core
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed2.2.1.Final
Affected versions
1.*
1.0.0.Alpha1
1.0.0.Alpha2
1.0.0.Alpha3
1.0.0.Alpha4
1.0.0.Beta1
1.0.0.Beta2
1.0.0.CR1
1.0.0.CR2
1.0.0.Final
1.0.1.Beta
1.0.1.CR1
1.0.1.CR2
1.0.1.Final
1.0.2.Final
1.1.0.Alpha1
1.1.0.Alpha2
1.1.0.Alpha3
1.1.0.Beta1
1.1.0.Final
1.2.0.Alpha1
1.2.0.Alpha2
1.2.0.Beta1
1.2.0.Final
1.2.1.Final
1.2.2.Final
1.2.3.Final
1.2.4.Final
1.2.5.Final
1.2.6.Final
1.2.7.Final
1.2.8.Final
1.3.0.Alpha1
1.3.0.Beta1
1.3.0.Beta2
1.3.0.Beta3
1.3.0.Beta4
1.3.0.Beta5
1.3.0.Beta6
1.3.0.Beta7
1.3.0.Final
1.3.1.Final
1.3.2.Final
1.3.3.Final
1.3.4.Final
1.3.5.Final
1.3.6.Final
1.3.7.Final
1.3.8.Final
1.3.9.SP1
1.3.9.SP2
1.3.9.SP3
1.3.9.Final
1.3.10.SP1
1.3.10.Final
1.3.11.Final
1.3.12.Final
1.3.13.Final
1.4.0.Alpha
1.4.0.Final
1.4.1.Final
1.4.2.Final
1.4.3.Final
1.4.4.Final
1.4.5.Final
1.4.6.Final
1.4.7.Final
1.4.8.Final
2.*
2.0.0.Final
2.0.1.Final
2.0.2.Final
2.0.3.Final
2.0.4.Final
2.0.5.Final
2.1.0.Beta1
2.1.0.Final
2.1.1.Final
2.1.2.Final
2.1.3.Final
2.1.4.Final
2.2.0.Final