📦 Data Grid

by Redhat

🔍 What is Data Grid?

Description coming soon...

🛡️ Security Overview

Click on a severity to filter vulnerabilities

⚠️ Known Vulnerabilities

CVE-2021-31917

CRITICAL CVSS 9.8 Sep 21, 2021

This vulnerability allows attackers to bypass authentication on REST endpoints when DIGEST authentication is configured in Red Hat DataGrid and Infinispan. Affected organizations are those running vul...

CVE-2025-23368

HIGH CVSS 8.1 Mar 4, 2025

This vulnerability in WildFly Elytron integration allows attackers to perform brute force attacks against CLI authentication due to insufficient rate limiting. Systems using WildFly with Elytron authe...

CVE-2023-5384

HIGH CVSS 7.2 Dec 18, 2023

This vulnerability in Infinispan exposes credentials in clear text when cache configurations containing sensitive data (like JDBC or remote store credentials) are serialized to XML, JSON, or YAML form...

CVE-2020-10771

HIGH CVSS 7.1 Jun 2, 2021

CVE-2020-10771 is a CSRF vulnerability in Infinispan 10 that allows attackers to perform unauthorized actions via GET requests. This affects systems running vulnerable Infinispan versions, potentially...

CVE-2025-5731

MEDIUM CVSS 5.5 Jun 26, 2025

This vulnerability in Infinispan CLI exposes sensitive passwords in error messages when commands fail. Attackers could potentially capture passwords by triggering command errors. This affects systems ...