3 matches found
CVE-2017-15692
creationtimestamp| type| source ---|---|--- 2024-01-06 23:02:32+00:00| seen| https://t.me/arpsyndicate/2584...
com.lightbend.akka:akka-stream-alpakka-geode_2.11 (>=0.10 <=2.0.2), com.lightbend.akka:akka-stream-alpakka-geode_2.12 (>=0.10 <=6.0.2) +71 more potentially affected by CVE-2017-15692 via org.apache.geode:geode-core (>=1.10.0 <=1.3.0)
org.apache.geode:geode-core MAVEN version =1.10.0, =0.10, =0.10, =2.0.0, =0.1.9, =2.4.0, =1.16.0, =1.14.0, =1.10.0, =1.10.0, =1.10.0, =1.12.0, =1.11.0, =1.15.4 and more Source cves: CVE-2017-15692 Source advisory: OSV:GHSA-W395-HPQ9-7XWR...
CVE-2017-15692
Summary: CVE-2017-15692 affects Apache Geode prior to v1.4.0. The TcpServer in the Geode locator opens a network port that deserializes data. If an unprivileged user gains access to the locator and certain classes are on the classpath, remote code execution may be possible. Exploitation status an...