Security Advisory

CVE-2022-36437

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-12-29 00:00:00

Last updated 2025-04-11 22:46:33

Assigner mitre

State PUBLISHED

Description

The Connection handler in Hazelcast and Hazelcast Jet allows a remote unauthenticated attacker to access and manipulate data in the cluster with the identity of another already authenticated connection. The affected Hazelcast versions are through 4.0.6, 4.1.9, 4.2.5, 5.0.3, and 5.1.2. The affected Hazelcast Jet versions are through 4.5.3.

← Browse all CVEs View on cve.org ↗