Lucene search
K

The vulnerability of the JXPathContext class functions (except for compile and compilePath) in the JXPath processing library allows a attacker to execute arbitrary code.

🗓️ 12 Oct 2022 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType 
bdu_fstec
 bdu_fstec
🔗 bdu.fstec.ru👁 5 Views

JXPathContext flaw enables remote code execution via external class selection, excluding compile and compilePath.

Related
Detection
Refs
ReporterTitlePublishedViews
Family
GithubExploit
Exploit for CVE-2022-41852
14 Oct 202212:09
githubexploit
ATTACKERKB
CVE-2024-36401
1 Jul 202400:00
attackerkb
ATTACKERKB
CVE-2022-41852
28 Jul 202222:00
attackerkb
IBM Security Bulletins
Security Bulletin: IBM Watson Discovery for IBM Cloud Pak for Data affected by vulnerability in Apache Commons JXPath
30 Nov 202210:26
ibm
Circl
CVE-2022-41852
15 Oct 202210:59
circl
CNNVD
编号撤回
6 Oct 202200:00
cnnvd
CNNVD
GeoServer Code Injection Vulnerability
1 Jul 202400:00
cnnvd
CNNVD
GeoTools Security Vulnerabilities
2 Jul 202400:00
cnnvd
CVE
CVE-2022-41852
6 Oct 202217:14
cve
Cvelist
CVE-2022-41852
6 Oct 202217:14
cvelist
Rows per page
Vulners
Node

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

12 Oct 2022 00:00Current
8.1High risk
Vulners AI Score8.1
CVSS 39.8
CVSS 210
5