Apache Geode CVE-2017-5649 Information Disclosure Vulnerability

Apache Geode is prone to an information-disclosure vulnerability.

Attackers can exploit this issue to obtain sensitive information that may aid in launching further attacks.

Apache Geode 1.1.0 is vulnerable.

Information

Bugtraq ID: 97378
Class: Access Validation Error
CVE: CVE-2017-5649

Remote: Yes
Local: No
Published: Apr 04 2017 12:00AM
Credit: Jinmei Liao
Vulnerable: Apache Geode 1.1

Not Vulnerable: Apache Geode 1.1.1

Exploit

Attackers can exploit this issue using a browser or readily available tools.

References:

Apache Geode Homepage (Apache)
CVE-2017-5649: Apache Geode information disclosure vulnerability (Apache)

Source: www.securityfocus.com

Exploit Collector

Search Exploit