Lucene search
PRIOn knowledge basePRION:CVE-2014-0111HistoryApr 17, 2014 - 2:55 p.m.
Code injection
2014-04-1714:55:00
PRIOn knowledge base
www.prio-n.com
3
8 High
AI Score
Confidence
Low
6.5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
0.002 Low
EPSS
Percentile
61.3%
Apache Syncope 1.0.0 before 1.0.9 and 1.1.0 before 1.1.7 allows remote administrators to execute arbitrary Java code via vectors related to Apache Commons JEXL expressions, “derived schema definition,” “user / role templates,” and “account links of resource mappings.”
Related
seebug
seebug
Apache Syncope特制Commons JEXL表达式远程代码执行漏洞
2014-04-17 00:00:00
osv
osv
Apache Syncope JEXL Code Injection
2022-05-14 01:18:38
github
github
Apache Syncope JEXL Code Injection
2022-05-14 01:18:38
securityvulns
securityvulns
[SECURITY] CVE-2014-0111 Apache Syncope
2014-05-04 00:00:00
cvelist
cvelist
CVE-2014-0111
2014-04-17 14:00:00
cve
cve
CVE-2014-0111
2014-04-17 14:55:00
8 High
AI Score
Confidence
Low
6.5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
0.002 Low
EPSS
Percentile
61.3%
Related for PRION:CVE-2014-0111