Lucene search
CVE-2017-3203
Java AMF3 deserialization vulnerability in Pivotal/Spring-Flex
Show more
| Reporter | Title | Published | Views | Family All 9 |
|---|---|---|---|---|
 | Design/Logic Flaw | 11 Jun 201817:29 | – | prion |
 | CVE-2017-3203 | 11 Jun 201817:29 | – | cve |
 | Deserialization of Untrusted Data in Spring-flex | 13 May 202201:36 | – | github |
 | CVE-2017-3203 Pivotal/Spring Spring-flex's Action Message Format (AMF3) Java implementation is vulnerable to insecure deserialization | 11 Jun 201817:00 | – | cvelist |
 | GHSA-8V4H-J42H-WFHC Deserialization of Untrusted Data in Spring-flex | 13 May 202201:36 | – | osv |
 | Remote Code Execution (RCE) Via Deserialization Of Untrusted Data | 6 Apr 201708:26 | – | veracode |
 | AMF3 Java implementations deserialization Vulnerability | 6 Apr 201700:00 | – | seebug |
 | Java AMF3 exposure remote code execution vulnerability-vulnerability warning-the black bar safety net | 7 Apr 201700:00 | – | myhack58 |
 | Action Message Format (AMF3) Java implementations are vulnerable to insecure deserialization and XML external entities references | 4 Apr 201700:00 | – | cert |
| Source | Link |
|---|---|
| kb | www.kb.cert.org/vuls/id/307983 |
| securityweek | www.securityweek.com/flaws-java-amf-libraries-allow-remote-code-execution |
| codewhitesec | www.codewhitesec.blogspot.com/2017/04/amf.html |
| securityfocus | www.securityfocus.com/bid/97376 |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo11 Jun 2018 17:29Current
8.2High risk
Vulners AI Score8.2
CVSS26.8
CVSS38.1
EPSS0.14016