Lucene search
K

14 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2016-2218

Malware in sbrugna...

9.8CVSS9.2AI score0.08849EPSS
Exploits0References3
IBM Security Bulletins
IBM Security Bulletins
added 2025/02/27 10:33 p.m.57 views

Security Bulletin: Apache Commons Collections library in WebSphere Application Server Knowledge Center is vulnerable (CVE-2015-7450)

Summary The Knowledge Center Component used in Version 9 of the WebSphere Application Server needs an updated Apache Commons Collections library. Vulnerability Details CVEID:CVE-2015-7450 DESCRIPTION: Serialized-object interfaces in certain IBM analytics, business solutions, cognitive, IT...

10CVSS9.9AI score0.97655EPSS
Exploits10Affected Software1
NVD
NVD
added 2020/03/09 7:15 p.m.27 views

CVE-2016-1487

Lexmark Markvision Enterprise before 2.3.0 misuses the Apache Commons Collections Library, leading to remote code execution because of Java deserialization...

8.8CVSS9AI score0.0288EPSS
Exploits0References1
Prion
Prion
added 2020/03/09 7:15 p.m.19 views

Deserialization of untrusted data

Lexmark Markvision Enterprise before 2.3.0 misuses the Apache Commons Collections Library, leading to remote code execution because of Java deserialization...

6.8CVSS8.1AI score0.0288EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2020/03/09 6:6 p.m.116 views

CVE-2016-1487

CVE-2016-1487 affects Lexmark Markvision Enterprise prior to 2.3.0, where unsafe deserialization of untrusted Java objects in Apache Commons Collections via the RMI interface enables remote code execution. The root cause is deserialization of unauthenticated serialized objects, allowing an attack...

8.8CVSS9AI score0.0288EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/03/09 6:6 p.m.30 views

CVE-2016-1487

Lexmark Markvision Enterprise before 2.3.0 misuses the Apache Commons Collections Library, leading to remote code execution because of Java deserialization...

9.1AI score0.0288EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2019/12/20 8:47 a.m.21 views

Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server shipped with IBM Case Manager (CVE-2015-7450)

Summary IBM WebSphere Application Server is shipped as a component of IBM Case Manager. Information about a security vulnerability affecting IBM WebSphere Application Server has been published in a security bulletin. Vulnerability Details Refer to the security bulletinss listed in the...

10CVSS2.5AI score0.97655EPSS
Exploits10Affected Software1
Cvelist
Cvelist
added 2017/11/09 12:0 a.m.40 views

CVE-2015-7501

Red Hat JBoss A-MQ 6.x; BPM Suite BPMS 6.x; BRMS 6.x and 5.x; Data Grid JDG 6.x; Data Virtualization JDV 6.x and 5.x; Enterprise Application Platform 6.x, 5.x, and 4.3.x; Fuse 6.x; Fuse Service Works FSW 6.x; Operations Network JBoss ON 3.x; Portal 6.x; SOA Platform SOA-P 5.x; Web Server JWS 3.x;...

9.8AI score0.83274EPSS
Exploits8References28
Prion
Prion
added 2016/05/11 1:59 a.m.20 views

Design/Logic Flaw

Adobe ColdFusion 10 before Update 19, 11 before Update 8, and 2016 before Update 1 allows remote attackers to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections library...

7.5CVSS8.1AI score0.08849EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2016/05/11 1:0 a.m.33 views

CVE-2016-1114

Adobe ColdFusion 10 before Update 19, 11 before Update 8, and 2016 before Update 1 allows remote attackers to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections library...

9.8AI score0.08849EPSS
Exploits0References2
Cvelist
Cvelist
added 2016/03/22 10:0 a.m.26 views

CVE-2016-1997

HPE Operations Orchestration 10.x before 10.51 and Operations Orchestration content before 1.7.0 allow remote attackers to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections library...

9.8AI score0.06689EPSS
Exploits0References1
Cvelist
Cvelist
added 2016/02/12 1:0 a.m.21 views

CVE-2016-1986

HP Continuous Delivery Automation CDA 1.30 allows remote attackers to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections library...

9.8AI score0.04498EPSS
Exploits0References1
Cvelist
Cvelist
added 2015/12/21 2:0 a.m.31 views

CVE-2015-6934

Serialized-object interfaces in VMware vRealize Orchestrator 6.x, vCenter Orchestrator 5.x, vRealize Operations 6.x, vCenter Operations 5.x, and vCenter Application Discovery Manager vADM 7.x allow remote attackers to execute arbitrary commands via a crafted serialized Java object, related to the...

7.5AI score0.05049EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2015/12/08 4:18 p.m.5 views

apache-commons-collections: InvokerTransformer code execution during deserialisation

It was found that the Apache commons-collections library permitted code execution when deserializing objects involving a specially constructed chain of classes. A remote attacker could use this flaw to execute arbitrary code with the permissions of the application using the commons-collections...

10CVSS8AI score0.83274EPSS
Exploits8References6
Rows per page
Query Builder