Lucene search
China National Vulnerability DatabaseCNVD-2022-14702HistoryFeb 15, 2022 - 12:00 a.m.
Apache Cayenne Input Validation Error Vulnerability
2022-02-1500:00:00
China National Vulnerability Database
www.cnvd.org.cn
7
apache cayenne
open source
persistence framework
apache license
input validation error
security checks
user-uploaded loads
arbitrary code execution
vulnerability
cnvd
EPSS
0.001
Percentile
20.3%
Apache Cayenne is an open source persistence framework licensed under the Apache license from the Apache Foundation, USA. An input validation error vulnerability exists in Apache Cayenne, which stems from the product’s failure to perform security checks on user-uploaded loads. An attacker could cause arbitrary code execution through this vulnerability.
Related
github
github
Deserialization of untrusted data in Apache Cayenne
2022-02-12 00:00:48
osv
osv
CVE-2022-24289
2022-02-11 13:15:08
Deserialization of untrusted data in Apache Cayenne
2022-02-12 00:00:48
cvelist
cvelist
veracode
veracode
Arbitrary Code Execution
2022-02-17 04:39:36
prion
prion
Code injection
2022-02-11 13:15:00
nvd
nvd
CVE-2022-24289
2022-02-11 13:15:08
cve
cve
CVE-2022-24289
2022-02-11 13:15:08