Security Advisory

CVE-2024-56518

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-04-17 00:00:00

Last updated 2025-04-22 14:34:31

Assigner mitre

State PUBLISHED

Description

Hazelcast Management Center through 6.0 allows remote code execution via a JndiLoginModule user.provider.url in a hazelcast-client XML document (aka a client configuration file), which can be uploaded at the /cluster-connections URI.

← Browse all CVEs View on cve.org ↗