Vulners
Lucene search
CVE-2023-51653
๐๏ธย 22 Feb 2024ย 15:39:49Reported byย GitHub_MTypeย 
ย cve๐ย web.nvd.nist.gov๐ย 90ย Views๐ WEB
| Reporter | Title | Published | Views | Family All 10 |
|---|---|---|---|---|
 | CVE-2023-51653 | 22 Feb 202417:26 | โ | circl |
 | Hertzbeat Security Vulnerabilities | 22 Feb 202400:00 | โ | cnnvd |
 | CVE-2023-51653 Hertzbeat JMX JNDI RCE | 22 Feb 202415:39 | โ | cvelist |
 | EUVD-2023-56362 | 3 Oct 202520:07 | โ | euvd |
 | CVE-2023-51653 | 22 Feb 202416:15 | โ | nvd |
 | CVE-2023-51653 Hertzbeat JMX JNDI RCE | 22 Feb 202415:39 | โ | osv |
 | Code injection | 22 Feb 202416:15 | โ | prion |
 | PT-2024-14225 ยท Hertzbeat ยท Hertzbeat | 22 Feb 202400:00 | โ | ptsecurity |
 | CVE-2023-51653 | 23 May 202502:18 | โ | redhatcve |
 | CVE-2023-51653 Hertzbeat JMX JNDI RCE | 22 Feb 202415:39 | โ | vulnrichment |
10
[
{
"vendor": "dromara",
"product": "hertzbeat",
"versions": [
{
"version": "< 1.4.1",
"status": "affected"
}
]
}
]| Parameter | Position | Path | Description | CWE |
|---|---|---|---|---|
| url | request body | /api/monitor/detect | JNDI injection via URL field in /api/monitor/detect can be exploited to achieve remote code execution when a crafted URL is supplied (e.g., service:jmx:rmi:///jndi/rmi://.../localHikari). | CWE-74 |
Data
Build on a solid foundation withย Vulners data
Weย provide theย essential building blocks forย cybersecurity solutions withย comprehensive, structured, andย constantly updated vulnerability andย exploits data
Api
Power your application withย Vulners API
The Vulners REST API offers reliable, high-performance access toย vulnerabilityย intelligence, withย 99.9%ย SLAย uptime andย CDN-backed data delivery forย seamlessย global access
App
Assess and manage vulnerabilities withย Vulnersย tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
16 Jan 2025 19:04Current
9.9High risk
Vulners AI Score9.9
CVSS 3.19.8
EPSS0.04232
SSVC