A Remote Code Execution (RCE) vulnerability in dropwizard-validation may allow arbitrary code execution on the host system with the privileges of the service account by injecting Java Expression Language expressions when using the self-validating feature
Reporter | Title | Published | Views | Family All 17 |
---|---|---|---|---|
![]() | Security feature bypass | 24 Feb 202018:15 | – | prion |
![]() | Remote code execution | 10 Apr 202019:15 | – | prion |
![]() | CVE-2020-5245 Remote Code Execution (RCE) vulnerability in dropwizard-validation | 24 Feb 202017:35 | – | cvelist |
![]() | CVE-2020-11002 Remote Code Execution (RCE) vulnerability in dropwizard-validation | 10 Apr 202018:35 | – | cvelist |
![]() | CVE-2020-5245 Remote Code Execution (RCE) vulnerability in dropwizard-validation | 24 Feb 202017:35 | – | vulnrichment |
![]() | CVE-2020-5245 | 24 Feb 202018:15 | – | nvd |
![]() | CVE-2020-11002 | 10 Apr 202019:15 | – | nvd |
![]() | CVE-2020-5245 | 24 Feb 202018:15 | – | cve |
![]() | CVE-2020-11002 | 10 Apr 202019:15 | – | cve |
![]() | Server-Side Template Injection | 25 Feb 202003:27 | – | veracode |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo