CVE-2021-34797

Insertion of Sensitive Information into Log File in maven/org.apache.geode/geode-core

Identifiers

CVE-2021-34797

Package Slug

maven/org.apache.geode/geode-core

Vulnerability

Insertion of Sensitive Information into Log File

Description

Apache Geode is vulnerable to log file redaction of sensitive information flaw when using values that begin with characters other than letters or numbers for passwords.

Affected Versions

All versions up to 1.12.4, all versions starting from 1.13.0 up to 1.13.4

Solution

Upgrade to versions 1.12.5, 1.13.5 or above.

Last Modified

2022-01-13

source