CVE-2017-12628

CVE-2017-12628 : The JMX server embedded in Apache James is vulnerable to a Java deserialization issue in its JMX handling, enabling arbitrary command execution. The description notes this is limited to local escalation since JMX is bound to localhost by default, with the vendor upgrade to a fixe...

CVE-2017-3066

Adobe ColdFusion 2016 Update 3 and earlier, ColdFusion 11 update 11 and earlier, ColdFusion 10 Update 22 and earlier have a Java deserialization vulnerability in the Apache BlazeDS library. Successful exploitation could lead to arbitrary code execution...

UFIDA PDM system suffers from java deserialization vulnerability

UFIDA PDM system is oriented to manufacturing technology informatization, product as the core, product-related data, process, resource integration and management system. UFIDA PDM system has a java deserialization vulnerability that allows attackers to exploit the vulnerability to execute remote...

Java deserialization vulnerability batch testing-vulnerability warning-the black bar safety net

! Foreword Java de-serialization vulnerabilities appear in people's field of vision has been for some time, the Rubik's Cube security team about this vulnerability were reproduced, while the study shows a high accuracy of mass detection the idea here with all of you a safe circle of friends to...