Lucene search

CVE-2020-17532

🗓️ 25 Jan 2021 10:32:16Reported by [email protected]Type

ServiceComb-Java-Chassis handler-router component allows authenticated user data injection leading to code executio

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 9
OSV	GHSA-PX4W-RCV2-6X8X Arbitrary code execution in Apache ServiceComb java-chassis	9 Feb 202222:19	–	osv
OSV	CVE-2020-17532	25 Jan 202110:16	–	osv
Veracode	Arbitrary Code Execution	26 Jan 202105:09	–	veracode
Prion	Code injection	25 Jan 202110:16	–	prion
Github Security Blog	Arbitrary code execution in Apache ServiceComb java-chassis	9 Feb 202222:19	–	github
Cvelist	CVE-2020-17532 Apache ServiceComb Yaml remote deserialization vulnerability	25 Jan 202109:25	–	cvelist
RedhatCVE	CVE-2020-17532	22 May 202516:27	–	redhatcve
CNVD	Apache Servicecomb Java Chassis Input Validation Error Vulnerability	28 Jan 202100:00	–	cnvd
CVE	CVE-2020-17532	25 Jan 202110:16	–	cve

Nvd

Node

apache java_chassisRange2.0.0–2.1.5

Source	Link
issues	www.issues.apache.org/jira/browse/SCB-2145
seclists	www.seclists.org/oss-sec/2021/q1/60

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

25 Jan 2021 10:16Current

8.8High risk

Vulners AI Score8.8

CVSS26

CVSS38.8

EPSS0.02121