Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:GHSA-F38P-MQ64-H784
HistoryMay 14, 2022 - 2:46 a.m.

Improper Input Validation in Apache Qpid AMQP 0-x JMS

2022-05-1402:46:14
Google
osv.dev
10
apache
qpid
amqp
input validation
jms
remote code execution

EPSS

0.011

Percentile

84.2%

JSON

Apache Qpid AMQP 0-x JMS client before 6.0.4 and JMS (AMQP 1.0) before 0.10.0 does not restrict the use of classes available on the classpath, which might allow remote authenticated users with permission to send messages to deserialize arbitrary objects and execute arbitrary code by leveraging a crafted serialized object in a JMS ObjectMessage that is handled by the getObject function.

Related

cve 1
prion 1
redhatcve 1
nvd 1
ubuntucve 1
cvelist 1
github 1
cve
cve
CVE-2016-4974
2016-07-13 15:59:04
prion
prion
Design/Logic Flaw
2016-07-13 15:59:00
redhatcve
redhatcve
CVE-2016-4974
2016-07-04 09:23:19
nvd
nvd
CVE-2016-4974
2016-07-13 15:59:04
ubuntucve
ubuntucve
CVE-2016-4974
2016-07-13 00:00:00
cvelist
cvelist
CVE-2016-4974
2016-07-13 15:00:00
github
github
Improper Input Validation in Apache Qpid AMQP 0-x JMS
2022-05-14 02:46:14

EPSS

0.011

Percentile

84.2%

JSON
Related for OSV:GHSA-F38P-MQ64-H784
cve1prion1redhatcve1nvd1ubuntucve1cvelist1github1