Plaintext Password Exposure in Infinispan CLI by Red Hat
CVE-2025-5731

6.2MEDIUM

Key Information:

Vendor: Red Hat
Status: Red Hat Data Grid 8; Red Hat Jboss Enterprise Application Platform 7; Red Hat Jboss Enterprise Application Platform 8; Red Hat Jboss Enterprise Application Platform Expansion Pack
Vendor: CVE Published:; 26 June 2025

What is CVE-2025-5731?

A vulnerability exists in Infinispan CLI, where a sensitive password, derived from a Base64-encoded Kubernetes secret, is inadvertently processed as plaintext. This flaw can lead to unintentional exposure of the password in error messages when incorrect commands are issued, posing a significant risk to system security. Proper handling and encryption of sensitive information are essential to prevent such exposures.

References

https://access.redhat.com/security/cve/CVE-2025-5731

vdb-entryx_refsource_REDHAT

https://bugzilla.redhat.com/show_bug.cgi?id=2370429

issue-trackingx_refsource_REDHAT

CVSS V3.1

Score:

6.2

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 26, 2025
Vulnerability Reserved
Jun 5, 2025