CVE-2019-10158

Published January 2nd, 2020

View on NVD ↗

CVSS v3

9.8

CRITICAL

CVSS v2

7.5

HIGH

Affected

PROJECT

Description

A flaw was found in Infinispan through version 9.4.14.Final. An improper implementation of the session fixation protection in the Spring Session integration can result in incorrect session handling.

infinispan/infinispan

Infinispan is an open source data grid platform and highly scalable NoSQL cloud data store.

GitHub

1.33K