Lucene search

Basic search
Lucene search
Search by product

Database

Vendors

CD3C91D4-9A28-538A-8FDE-983CDDD36949

HistoryOct 20, 2022 - 1:05 p.m.

Vulners
/
Githubexploit
/
Exploit for Code Injection in Apache Commons Text

Exploit for Code Injection in Apache Commons Text

2022-10-2013:05:24

cve-2022-42889

apache commons text

code injection

java 8

attach api

java agent

jvm

attach

remote loading

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.8

Confidence

High

EPSS

0.971

Percentile

99.8%

JSON

cve-2022-42889-intercept

低于 Java11版本的需要注意，更高的版本已经取消了`Java…

This is an article that belongs to githubexploit private collection.
Please sign in to get more Information.

githubexploit 49

cvelist 2

prion 2

nvd 2

cve 2

osv 3

cnvd 1

rapid7blog 3

atlassian 5

ibm 33

gentoo 1

nessus 27

redos 1

f5 1

malwarebytes 1

veracode 1

wallarmlab 2

zdt 1

redhatcve 1

debiancve 1

ubuntucve 1

github 1

qualysblog 4

paloalto 1

metasploit 1

openvas 1

impervablog 1

checkpoint_advisories 1

redhat 27

packetstorm 1

wordfence 1

thn 1

fortinet 1

hp 1

trellix 2

rocky 1

oracle 4

githubexploit

Exploit for Out-of-bounds Read in Bentley Microstation

2022-10-19 02:13:25

Exploit for Code Injection in Apache Commons Text

2022-10-23 08:33:02

Exploit for Code Injection in Apache Commons Text

2022-11-04 19:26:23

cvelist

CVE-2022-42899

2022-10-13 00:00:00

CVE-2022-42889 Apache Commons Text prior to 1.10.0 allows RCE when applied to untrusted input due to insecure interpolation defaults

2022-10-13 00:00:00

prion

Stack overflow

2022-10-13 03:15:00

Design/Logic Flaw

2022-10-13 13:15:00

nvd

CVE-2022-42899

2022-10-13 03:15:08

CVE-2022-42889

2022-10-13 13:15:10

cve

CVE-2022-42899

2022-10-13 03:15:08

CVE-2022-42889

2022-10-13 13:15:10

osv

Arbitrary code execution in Apache Commons Text

2022-10-13 19:00:17

apache-commons-text-1.10.0-1.1 on GA media

2024-06-15 00:00:00

CVE-2022-42889

2022-10-13 13:15:10

cnvd

Apache Commons Text remote code execution vulnerability

2022-10-14 00:00:00

rapid7blog

Rapid7’s Impact from Apache Commons Text Vulnerability (CVE-2022-42889)

2022-11-04 13:00:00

CVE-2022-42889: Keep Calm and Stop Saying "4Shell"

2022-10-17 20:36:16

Metasploit Weekly Wrap-Up 01/26/24

2024-01-26 21:12:17

atlassian

Upgrade Apache Commons-text to mitigate CVE-2022-42889 (excludes bundled OpenSearch)

2022-10-24 22:35:59

Upgrade Apache Commons-text for CVE-2022-42889

2022-11-07 20:21:30

Upgrade Apache Commons-text for CVE-2022-42889

2022-11-10 17:03:03

ibm

Security Bulletin: IBM Sterling Connect:Direct for Microsoft Windows is vulnerable to remote code execution due to Apache Commons Text (CVE-2022-42889)

2022-11-22 07:56:05

Security Bulletin: Apache Commons Text as used by IBM Cloud Pak for Security is vulnerable to code execution [CVE-2022-42889]

2022-11-22 15:22:26

Security Bulletin: IBM Sterling Connect:Direct for UNIX is vulnerable to remote code execution due to Apache Commons Text [CVE-2022-42889]

2022-11-28 16:28:57

gentoo

Apache Commons Text: Arbitrary Code Execution

2023-01-11 00:00:00

nessus

GLSA-202301-05 : Apache Commons Text: Arbitrary Code Execution

2023-01-11 00:00:00

RHEL 8 : OpenShift Container Platform 4.9.59 (RHSA-2023:1524)

2024-04-28 00:00:00

Apache Commons Text 1.5.x < 1.10.0 Remote Code Execution (CVE-2022-42889)

2022-10-19 00:00:00

redos

ROS-20230922-01

2023-09-22 00:00:00

K24823443 : Apache Commons Text vulnerability CVE-2022-42889

2022-10-19 00:00:00

malwarebytes

Why Log4Text is not another Log4Shell

2022-10-19 19:00:00

veracode

Arbitrary Code Execution

2022-10-14 18:57:11

wallarmlab

New text2shell RCE vulnerability in Apache Common Texts CVE-2022-42889

2022-10-18 05:02:38

Q4-2022 API ThreatStats™ Report

2023-02-22 16:02:55

zdt

Apache Commons Text 1.9 Remote Code Execution Exploit

2024-01-21 00:00:00

redhatcve

CVE-2022-42889

2022-10-17 16:42:02

debiancve

CVE-2022-42889

2022-10-13 13:15:10

ubuntucve

CVE-2022-42889

2022-10-13 00:00:00

github

Arbitrary code execution in Apache Commons Text

2022-10-13 19:00:17

qualysblog

CVE-2022-42889: Detect Text4Shell via Qualys Container Security

2022-10-25 21:55:05

Text4Shell: Detect, Prioritize and Remediate The Risk Across On-premise, Cloud, Container Environment Using Qualys Platform

2022-10-27 17:59:44

The January 2023 Oracle Critical Patch Update

2023-01-18 00:43:03

paloalto

Impact of Apache Text Commons Vulnerability CVE-2022-42889

2022-11-09 17:00:00

metasploit

Apache Commons Text RCE

2023-12-24 19:13:50

openvas

Apache Commons Text 1.5 - 1.9 RCE Vulnerability (Text4Shell)

2022-11-25 00:00:00

impervablog

Apache Commons Text vulnerability CVE-2022-42889

2022-10-18 18:30:39

checkpoint_advisories

Apache Commons Text Remote Code Execution (CVE-2022-42889)

2022-10-18 00:00:00

redhat

(RHSA-2023:1524) Critical: OpenShift Container Platform 4.9.59 security update

2023-04-05 23:19:11

(RHSA-2022:8902) Moderate: Red Hat Camel for Spring Boot 3.18.3 release and security update

2022-12-08 13:23:48

(RHSA-2023:0261) Critical: Satellite 6.12.1 Async Security Update

2023-01-18 14:49:14

packetstorm

Apache Commons Text 1.9 Remote Code Execution

2024-01-19 00:00:00

wordfence

Threat Advisory: Monitoring CVE-2022-42889 “Text4Shell” Exploit Attempts

2022-10-20 18:40:50

thn

Hackers Started Exploiting Critical "Text4Shell" Apache Commons Text Vulnerability

2022-10-21 11:03:00

fortinet

Apache commons_text(CVE-2022-42889) and commons_configuration (CVE-2022-33980) vulnerability

2022-10-28 00:00:00

Apache Text4Shell and others update for Teradici Cloud Access Connector

2022-12-15 00:00:00

trellix

The Bug Report October 2022 Edition

2022-11-02 00:00:00

The Bug Report October 2022 Edition

2022-11-02 00:00:00

rocky

Satellite 6.13 Release

2023-05-05 15:39:58

oracle

Oracle Critical Patch Update Advisory - January 2024

2024-01-16 00:00:00

Oracle Critical Patch Update Advisory - January 2023

2023-01-17 00:00:00

Oracle Critical Patch Update Advisory - April 2024

2024-04-16 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.8

Confidence

High

EPSS

0.971

Percentile

99.8%

JSON

Related for CD3C91D4-9A28-538A-8FDE-983CDDD36949