cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2023-5384,https://securityvulnerability.io/vulnerability/CVE-2023-5384,Infinispan: credentials returned from configuration as clear text,"A flaw was found in Infinispan. When serializing the configuration for a cache to XML/JSON/YAML, which contains credentials (JDBC store with connection pooling, remote store), the credentials are returned in clear text as part of the configuration.",Red Hat,"infinispan,Red Hat Data Grid 8.4.6",2.7,LOW,0.0007999999797903001,false,false,false,false,,false,false,2023-12-18T14:15:00.000Z,0
CVE-2023-4586,https://securityvulnerability.io/vulnerability/CVE-2023-4586,Hotrod-client: hot rod client does not enable hostname  validation when using tls that lead to a mitm attack,"A security issue has been identified in the Hot Rod client where hostname validation is not enforced during TLS connections. This lack of validation could potentially expose users to man-in-the-middle attacks, allowing malicious actors to intercept or alter communications without detection. Organizations using the Hot Rod client should assess their exposure to this vulnerability and consider implementing protective measures to secure their network traffic.",Red Hat,Red Hat Data Grid 8.4.6,7.4,HIGH,0.0009399999980814755,false,false,false,false,,false,false,2023-10-04T11:15:00.000Z,0