10 matches found
VulnCheck KEV: CVE-2018-19276
OpenMRS before 2.24.0 is affected by an Insecure Object Deserialization vulnerability that allows an unauthenticated user to execute arbitrary commands on the targeted system via crafted XML data in a request body...
OpenMRS - Java Deserialization RCE (Metasploit)
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'OpenMRS Java Deserialization RCE', 'Description' = %q OpenMRS is an open-source platform that supplies users with a customizable medical record...
CVE-2018-19276
creationtimestamp| type| source ---|---|--- 2019-12-16 17:47:59+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/http/openmrsdeserialization.rb 2019-12-18 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/47792 2020-10-15 15:07:04+00:00|...
OpenMRS Platform Insecure Deserialization (CVE-2018-19276)
An Insecure Deserialization vulnerability exists in OpenMRS platform. A remote attacker can exploit this vulnerability by sending a specially crafted serialized object. Successful exploitation can result in arbitrary code execution in the effected system...
OpenMRS RCE Vulnerability (Feb 2019) - Active Check
OpenMRS is prone to a remote code execution RCE vulnerability. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:openmrs:openmrs"; ...
Exploit for Deserialization of Untrusted Data in Openmrs
CVE-2018-19276 OpenMRS Insecure Object Deserialization RCE Fr...
OpenMRS Platform Insecure Object Deserialization
Insecure Object Deserialization on the OpenMRS Platform Vulnerability Details CVE ID: CVE-2018-19276 Access Vector: Remote Security Risk: Critical Vulnerability: CWE-502 CVSS Base Score: 10.0 CVSS vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N JAVA 8 ENVIRONMENT By injecting an XML payload ...
OpenMRS Platform < 2.24.0 - Insecure Object Deserialization Vulnerability
Exploit for java platform in category web applications Insecure Object Deserialization on the OpenMRS Platform Vulnerability Details CVE ID: CVE-2018-19276 Access Vector: Remote Security Risk: Critical Vulnerability: CWE-502 CVSS Base Score: 10.0 CVSS vector:...
OpenMRS Platform < 2.24.0 - Insecure Object Deserialization
Insecure Object Deserialization on the OpenMRS Platform Vulnerability Details CVE ID: CVE-2018-19276 Access Vector: Remote Security Risk: Critical Vulnerability: CWE-502 CVSS Base Score: 10.0 CVSS vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N JAVA 8 ENVIRONMENT By injecting an XML payload ...
OpenMRS Platform 2.24.0 - Insecure Object Deserialization
OpenMRS Platform 2.24.0 - Insecure Object Deserialization Insecure Object Deserialization on the OpenMRS Platform Vulnerability Details CVE ID: CVE-2018-19276 Access Vector: Remote Security Risk: Critical Vulnerability: CWE-502 CVSS Base Score: 10.0 CVSS vector:...