Lucene search
K

5 matches found

vulnersOsv
vulnersOsv
added 2018/10/16 5:21 p.m.6 views

org.apache.camel:camel-snakeyaml-starter (>=2.18.0 <=2.18.1) potentially affected by CVE-2017-3159 via org.apache.camel:camel-snakeyaml (>=2.18.0 <=2.18.1)

org.apache.camel:camel-snakeyaml MAVEN version =2.18.0, =2.18.0, =2.18.1 Source cves: CVE-2017-3159 Source advisory: OSV:GHSA-HVPR-9CR6-Q5V7...

9.8CVSS7.2AI score0.06286EPSS
Exploits0
OSV
OSV
added 2017/03/07 3:59 p.m.27 views

CVE-2017-3159

Apache Camel's camel-snakeyaml component is vulnerable to Java object de-serialization vulnerability. De-serializing untrusted data can lead to security flaws...

9.8CVSS7.2AI score0.06286EPSS
Exploits0References7
CVE
CVE
added 2017/03/07 3:0 p.m.138 views

CVE-2017-3159

CVE-2017-3159 affects Apache Camel's camel-snakeyaml component, enabling Java deserialization that can lead to remote code execution when untrusted data is deserialized. The NVD entry assigns a high/critical impact (CVSS v3 base 9.8, NETWORK/LOW complexity, no authentication) with potential execu...

9.8CVSS9.3AI score0.06286EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2017/03/07 3:0 p.m.34 views

CVE-2017-3159

Apache Camel's camel-snakeyaml component is vulnerable to Java object de-serialization vulnerability. De-serializing untrusted data can lead to security flaws...

9.5AI score0.06286EPSS
Exploits0References7
RedhatCVE
RedhatCVE
added 2017/02/09 3:48 p.m.62 views

CVE-2017-3159

It was found that the camel-snakeyaml component is exploitable for code execution. An attacker could use this vulnerability to send specially crafted payload to a camel-snakeyaml endpoint and causing a remote code execution attack...

9.8CVSS4.2AI score0.06286EPSS
Exploits0References2
Rows per page
Query Builder