Lucene search

K

Remote Code Execution (RCE) vulnerability in dropwizard-validation

🗓️ 24 Feb 2020 17:27:27Reported by GitHub Advisory DatabaseType 
github
 github
🔗 github.com👁 62 Views

A Remote Code Execution (RCE) vulnerability in dropwizard-validation may allow arbitrary code execution on the host system with the privileges of the service account by injecting Java Expression Language expressions when using the self-validating feature

Show more
Related
Detection
Refs
ReporterTitlePublishedViews
Family
Prion
Security feature bypass
24 Feb 202018:15
prion
Prion
Remote code execution
10 Apr 202019:15
prion
Cvelist
CVE-2020-5245 Remote Code Execution (RCE) vulnerability in dropwizard-validation
24 Feb 202017:35
cvelist
Cvelist
CVE-2020-11002 Remote Code Execution (RCE) vulnerability in dropwizard-validation
10 Apr 202018:35
cvelist
Vulnrichment
CVE-2020-5245 Remote Code Execution (RCE) vulnerability in dropwizard-validation
24 Feb 202017:35
vulnrichment
NVD
CVE-2020-5245
24 Feb 202018:15
nvd
NVD
CVE-2020-11002
10 Apr 202019:15
nvd
CVE
CVE-2020-5245
24 Feb 202018:15
cve
CVE
CVE-2020-11002
10 Apr 202019:15
cve
Veracode
Server-Side Template Injection
25 Feb 202003:27
veracode
Rows per page
Vulners

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
24 Feb 2020 17:27Current
2.2Low risk
Vulners AI Score2.2
CVSS29
CVSS37.9 - 8.8
EPSS0.006
SSVC
62
.json
Report