3 matches found
Critical: Red Hat Security Advisory: Red Hat FIS 2.0 on Fuse 6.3.0 R7 security and bug fix update
An update is now available for Red Hat Fuse Integration Services. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...
CVE-2018-1295
In Apache Ignite 2.3 or earlier, the serialization mechanism does not have a list of classes allowed for serialization/deserialization, which makes it possible to run arbitrary code when 3-rd party vulnerable classes are present in Ignite classpath. The vulnerability can be exploited if the one...
CVE-2018-1295
CVE-2018-1295 affects Apache Ignite 2.3 and earlier. The root cause is the serialization mechanism lacking a whitelist of allowed classes, enabling arbitrary code execution when a crafted serialized object is deserialized at endpoints such as discovery SPI, Ignite persistence, Memcached endpoint,...