Exploit for Code Injection in Apache Commons Text

🗓️ 18 Oct 2022 23:40:15Type

Demo of Apache Commons Text Code Injection exploit with DNS and URL prefix and potential impact. Includes build and run instructions with proof of concept.

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 199
Tenable Nessus	Apache Commons Text 1.5.x < 1.10.0 Remote Code Execution (CVE-2022-42889)	19 Oct 202200:00	–	nessus
Tenable Nessus	Oracle Enterprise Manager Agent (January 2023 CPU)	2 Apr 202400:00	–	nessus
Tenable Nessus	Linux Distros Unpatched Vulnerability : CVE-2022-42889	5 Mar 202500:00	–	nessus
Tenable Nessus	RHCOS 4 : OpenShift Container Platform 4.9.59 (RHSA-2023:1524)	24 Jan 202400:00	–	nessus
Tenable Nessus	RHEL 8 : OpenShift Container Platform 4.9.59 (RHSA-2023:1524)	28 Apr 202400:00	–	nessus
Tenable Nessus	GLSA-202301-05 : Apache Commons Text: Arbitrary Code Execution	11 Jan 202300:00	–	nessus
Tenable Nessus	RHEL 8 : OpenShift Container Platform 4.10.58 (RHSA-2023:1866)	28 Apr 202400:00	–	nessus
Tenable Nessus	RHEL 8 : Satellite 6.12.1 Async Security Update (Critical) (RHSA-2023:0261)	28 Apr 202400:00	–	nessus
Tenable Nessus	Oracle Primavera Gateway (Jan 2023 CPU)	20 Jan 202300:00	–	nessus
Tenable Nessus	RHEL 8 : jenkins and jenkins-2-plugins (RHSA-2023:3195)	28 Apr 202400:00	–	nessus

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

18 Oct 2022 23:15Current

9.7High risk

Vulners AI Score9.7

CVSS39.8

EPSS0.94161

SSVC