Lucene search
AttackerKBAKB:51B96C1D-026E-425E-A9DB-D34A0951A7A1HistoryMay 17, 2019 - 12:00 a.m.
CVE-2019-4279 - IBM WebSphere Application Server
2019-05-1700:00:00
attackerkb.com
47
0.176 Low
EPSS
Percentile
96.2%
IBM WebSphere Application Server 8.5 and 9.0 could allow a remote attacker to execute arbitrary code on the system with a specially-crafted sequence of serialized objects from untrusted sources. IBM X-Force ID: 160445. – nvd.nist.gov description
Recent assessments:
jrobles-r7 at May 29, 2019 4:00pm UTC reported:
Deserialization flaw. I tested a module that was able to get SYSTEM access by exploiting the flaw.
Assessed Attacker Value: 0
Assessed Attacker Value: 0Assessed Attacker Value: 4
Related
ibm
ibm
Security Bulletin: Remote code execution in WebSphere Application Server bundled with IBM WebSphere Application Server Patterns (CVE-2019-4279)
2019-06-04 19:15:01
nvd
nvd
CVE-2019-4279
2019-05-17 16:29:03
cve
cve
CVE-2019-4279
2019-05-17 16:29:03
nessus
nessus
prion
prion
Code injection
2019-05-17 16:29:00
cvelist
cvelist
CVE-2019-4279
2019-05-16 00:00:00
checkpoint_advisories
checkpoint_advisories
IBM WebSphere Remote Code Execution (CVE-2019-4279; CVE-2019-8352)
2019-06-04 00:00:00