Lucene search
ApacheCVELIST:CVE-2018-1297HistoryFeb 11, 2018 - 12:00 a.m.
CVE-2018-1297
2018-02-1100:00:00
apache
www.cve.org
When using Distributed Test only (RMI based), Apache JMeter 2.x and 3.x uses an unsecured RMI connection. This could allow an attacker to get Access to JMeterEngine and send unauthorized code.
CNA Affected
[
{
"product": "Apache JMeter",
"vendor": "Apache Software Foundation",
"versions": [
{
"status": "affected",
"version": "2.x"
},
{
"status": "affected",
"version": "3.x"
}
]
}
]References
Related
osv
osv
CVE-2018-1297
2018-02-13 12:29:00
Missing certificate validation in Apache JMeter
2022-05-13 01:49:41
cve
cve
CVE-2018-1297
2018-02-13 12:29:00
debiancve
debiancve
CVE-2018-1297
2018-02-13 12:29:00
veracode
veracode
Remote Code Execution (RCE)
2018-02-13 12:52:40
ubuntucve
ubuntucve
CVE-2018-1297
2018-02-13 00:00:00
github
github
Missing certificate validation in Apache JMeter
2022-05-13 01:49:41
prion
prion
Code injection
2018-02-13 12:29:00
nvd
nvd
CVE-2018-1297
2018-02-13 12:29:00
pentestit
pentestit
Apache JMeter RMI Code Execution PoC (CVE-2018-1297)
2018-04-06 06:05:50
Drupal (SA-CORE-2019-008) Wordspaces Extension Access Bypass PoC
2019-07-24 23:37:30
