Lucene search
+L

5 matches found

Circl
Circl
added 2025/07/22 3:54 a.m.9 views

CVE-2020-11975

creationtimestamp| type| source ---|---|--- 2025-07-22 03:54:24+00:00| seen| MISP/a3c5beab-b790-4171-8b4c-02c8a9678071 2025-08-23 21:02:23+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3lx3ulqgg3x2t 2025-09-09 11:53:40+00:00| seen| MISP/a3c5beab-b790-4171-8b4c-02c8a9678071...

10CVSS7.8AI score0.29885EPSS
Exploits3References1
VulnCheck KEV
VulnCheck KEV
added 2021/04/12 12:0 a.m.6 views

VulnCheck KEV: CVE-2020-11975

Apache Unomi allows conditions to use OGNL scripting which offers the possibility to call static Java classes from the JDK that could execute code with the permission level of the running Java process...

10CVSS7.4AI score0.29885EPSS
Exploits3References1
GithubExploit
GithubExploit
added 2020/11/24 5:23 a.m.141 views

Exploit for CVE-2020-11975

Statement The vulnerability detection methods, documents, a...

10CVSS7.2AI score0.68398EPSS
Exploits9
Veracode
Veracode
added 2020/11/19 11:31 a.m.36 views

Remote Code Execution

unomi-plugins-base is vulnerable to arbitrary code execution. An insufficient fix for CVE-2020-11975 allows an attacker to bypass the allowlist and blocklist and remotely execute arbitrary code...

9.8CVSS5.1AI score0.68398EPSS
Exploits9References18Affected Software1
CVE
CVE
added 2020/06/05 2:10 p.m.151 views

CVE-2020-11975

CVE-2020-11975 affects Apache Unomi. The connected documents confirm OGNL-based injection in conditions that can call static Java classes, enabling arbitrary code execution with the Java process’s privileges. This is described as a remote code execution vector and is exploitable through OGNL (and...

10CVSS9.2AI score0.29885EPSS
Exploits3References3Affected Software1
Rows per page
Query Builder