CVE-2015-4852

🗓️ 05 Jan 2018 01:08:44Reported by CirclType

circl

circl🔗 cve.circl.lu👁 7 Views

CVE-2015-4852 is a vulnerability with various event recordings and exploit information.

Reporter	Title	Published	Views	Family All 75
0day.today	Oracle WebLogic Server 10.3.6.0 - Java Deserialization Exploit	28 Sep 201700:00	–	zdt
0day.today	Websphere / JBoss / OpenNMS / Symantec - Java Deserialization Remote Code Execution	29 Apr 201800:00	–	zdt
0day.today	Oracle Weblogic Server Deserialization Remote Code Execution Exploit	27 Mar 201900:00	–	zdt
IBM Security Bulletins	Security Bulletin: IBM Cloud Pak for Security includes components with multiple known vulnerabilities	8 Jun 202321:56	–	ibm
IBM Security Bulletins	Security Bulletin: The IBM® Engineering Lifecycle Management is impacted by vulnerabilties in Apache Commons Collections	18 Oct 202401:43	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Jazz for Service Management (JazzSM) is affected with multiple vulnerabilities (CVE-2015-4852, CVE-2015-6420, CVE-2017-15708)	20 Oct 202011:33	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in Apache Commons Collections, Apache Synapse, Oracle WebLogic Server, MuleSoft and Red Hat JBoss might affect IBM Storage Copy Data Management.	24 Jan 202519:11	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities of Apache common collections (commons-collections-3.2.jar) have affected APM WebSphere Application Server Agent	17 Jul 202306:26	–	ibm
IBM Security Bulletins	Security Bulletin: Due to use of Apache Commons, IBM Operations Analytics - Log Analysis is affected by Improper Handling of Untrusted Input During Deserialization	9 Oct 202506:58	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Security Verify Governance is vulnerable to arbitrary code execution due to use of Apache Commons Collections (multiple vulnerabilities)	22 Nov 202216:37	–	ibm

Source	Link
feedsin	www.feedsin.space/feed/CISAKevBot/items/2970960
gist	www.gist.github.com/Darkcrai86/f31a74734bf888040ee2deaa3364c94e
gist	www.gist.github.com/meirdev/9456cc133c7718206f32c0d5528671a4
github	www.github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/misc/weblogic_deserialize_rawobject.rb
t	www.t.me/Master_X_Cha/5666
t	www.t.me/arpsyndicate/1066
t	www.t.me/ctinow/157639
t	www.t.me/is_n3ws/36
vulnerability	www.vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/bc0dbb5d-f75c-4af4-b98a-c070599eca8a
exploit-db	www.exploit-db.com/exploits/46628

05 Jan 2018 01:08Current

7.2High risk

Vulners AI Score7.2

CVSS 27.5

CVSS 3.19.8

EPSS0.92947

SSVC

cve-2015-4852 vulnerability exploit event misp feed