Lucene search
MitreCVELIST:CVE-2023-47174HistoryOct 31, 2023 - 12:00 a.m.
CVE-2023-47174
2023-10-3100:00:00
mitre
www.cve.org
1
thorn sftp gateway
vulnerability
remote code execution
pivotal spring framework
java deserialization
cve-2023-47174
Thorn SFTP gateway 3.4.x before 3.4.4 uses Pivotal Spring Framework for Java deserialization of untrusted data, which is not supported by Pivotal, a related issue to CVE-2016-1000027. Also, within the specific context of Thorn SFTP gateway, this leads to remote code execution.
Related
cve
cve
CVE-2023-47174
2023-10-31 04:15:11
CVE-2016-1000027
2020-01-02 23:15:11
nvd
nvd
CVE-2023-47174
2023-10-31 04:15:11
CVE-2016-1000027
2020-01-02 23:15:11
prion
prion
Deserialization of untrusted data
2023-10-31 04:15:00
Deserialization of untrusted data
2020-01-02 23:15:00
ibm
ibm
github
github
Pivotal Spring Framework contains unsafe Java deserialization methods
2022-05-24 17:05:30
ubuntucve
ubuntucve
CVE-2016-1000027
2020-01-02 00:00:00
redhatcve
redhatcve
CVE-2016-1000027
2016-07-19 15:48:20
veracode
veracode
Remote Code Execution (RCE)
2020-01-06 06:25:24
osv
osv
CVE-2016-1000027
2020-01-02 23:15:11
Pivotal Spring Framework contains unsafe Java deserialization methods
2022-05-24 17:05:30
debiancve
debiancve
CVE-2016-1000027
2020-01-02 23:15:11
wolfi
wolfi
CVE-2016-1000027 vulnerabilities
2024-05-29 03:07:31
cvelist
cvelist
CVE-2016-1000027
2020-01-02 00:00:00
broadcom
broadcom
cgr
cgr
CVE-2016-1000027 vulnerabilities
2024-05-19 03:07:16
atlassian
atlassian
Confluence 8.7.1 is using a vulnerable library - spring-web-5.3.30
2024-01-03 08:47:21