Lucene search
RedhatCVELIST:CVE-2020-10740HistoryJun 22, 2020 - 5:39 p.m.
CVE-2020-10740
2020-06-2217:39:58
CWE-502
redhat
www.cve.org
8
CVSS3
6.6
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
AI Score
7.4
Confidence
High
EPSS
0.005
Percentile
75.3%
A vulnerability was found in Wildfly in versions before 20.0.0.Final, where a remote deserialization attack is possible in the Enterprise Application Beans(EJB) due to lack of validation/filtering capabilities in wildfly.
CNA Affected
[
{
"product": "wildfly",
"vendor": "[UNKNOWN]",
"versions": [
{
"status": "affected",
"version": "Versions before 20.0.0.Final"
}
]
}
]Related
osv
osv
CVE-2020-10740
2020-06-22 18:15:11
Wildfly Unsafe Deserialization Vulnerability
2022-05-24 17:21:23
BIT-wildfly-2020-10740
2024-03-06 11:09:40
cve
cve
CVE-2020-10740
2020-06-22 18:15:11
redhatcve
redhatcve
CVE-2020-10740
2020-06-02 13:21:55
prion
prion
Deserialization of untrusted data
2020-06-22 18:15:00
attackerkb
attackerkb
CVE-2020-10740
2020-06-22 00:00:00
veracode
veracode
Unsafe Deserialization
2020-06-03 05:41:48
github
github
Wildfly Unsafe Deserialization Vulnerability
2022-05-24 17:21:23
nvd
nvd
CVE-2020-10740
2020-06-22 18:15:11
openvas
openvas
Red Hat WildFly < 20.0.0 Multiple Vulnerabilities
2023-08-18 00:00:00
nessus
nessus
redhat
redhat
CVSS3
6.6
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
AI Score
7.4
Confidence
High
EPSS
0.005
Percentile
75.3%
Related for CVELIST:CVE-2020-10740