Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistRapid7CVELIST:CVE-2023-4528
HistorySep 07, 2023 - 5:39 p.m.

CVE-2023-4528 JSCAPE MFT Server Unsafe Deserialization on Management Port

2023-09-0717:39:42
CWE-502
rapid7
www.cve.org
jscape mft server
unsafe deserialization
management interface
arbitrary code execution
os commands
cve-2023-4528
windows
linux
macos

0.001 Low

EPSS

Percentile

20.6%

JSON

Unsafe deserialization in JSCAPE MFT Server versions prior toΒ 2023.1.9 (Windows, Linux, and MacOS) permits an attacker to run arbitrary Java code (including OS commands) via its management interface

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "platforms": [
      "Windows",
      "MacOS",
      "Linux"
    ],
    "product": "JSCAPE MFT Server",
    "vendor": "Redwood Software",
    "versions": [
      {
        "lessThan": "2023.1.9",
        "status": "affected",
        "version": "0",
        "versionType": "semver"
      }
    ]
  }
]

Related

prion 1
rapid7blog 2
cve 1
nvd 1
openvas 1
mageia 1
prion
prion
Deserialization of untrusted data
2023-09-07 18:15:00
rapid7blog
rapid7blog
CVE-2023-4528: Java Deserialization Vulnerability in JSCAPE MFT (Fixed)
2023-09-07 15:05:00
Multiple Vulnerabilities in South River Technologies Titan MFT and Titan SFTP [FIXED]
2023-10-16 15:00:00
cve
cve
CVE-2023-4528
2023-09-07 18:15:07
nvd
nvd
CVE-2023-4528
2023-09-07 18:15:07
openvas
openvas
Mageia: Security Advisory (MGASA-2023-0349)
2023-12-18 00:00:00
mageia
mageia
Updated golang packages fix security vulnerabilities
2023-12-18 01:40:49

0.001 Low

EPSS

Percentile

20.6%

JSON
Related for CVELIST:CVE-2023-4528
prion1rapid7blog2cve1nvd1openvas1mageia1