Lucene search
PRIOn knowledge basePRION:CVE-2019-17564HistoryApr 01, 2020 - 10:15 p.m.
Deserialization of untrusted data
2020-04-0122:15:00
PRIOn knowledge base
www.prio-n.com
1
Unsafe deserialization occurs within a Dubbo application which has HTTP remoting enabled. An attacker may submit a POST request with a Java object in it to completely compromise a Provider instance of Apache Dubbo, if this instance enables HTTP. This issue affected Apache Dubbo 2.7.0 to 2.7.4, 2.6.0 to 2.6.7, and all 2.5.x versions.
Related
osv
osv
Deserialization of Untrusted Data in Apache Dubbo
2022-05-24 17:13:14
CVE-2019-17564
2020-04-01 22:15:15
githubexploit
githubexploit
Exploit for Deserialization of Untrusted Data in Apache Dubbo
2020-02-20 08:28:55
Exploit for Deserialization of Untrusted Data in Apache Dubbo
2020-02-12 04:55:51
Exploit for Deserialization of Untrusted Data in Apache Dubbo
2020-02-13 01:40:50
cvelist
cvelist
CVE-2019-17564
2020-04-01 21:17:59
github
github
Deserialization of Untrusted Data in Apache Dubbo
2022-05-24 17:13:14
nvd
nvd
CVE-2019-17564
2020-04-01 22:15:15
cve
cve
CVE-2019-17564
2020-04-01 22:15:15
checkpoint_advisories
checkpoint_advisories
Apache Dubbo Insecure Deserialization (CVE-2019-17564)
2020-03-11 00:00:00