Lucene search
+L

5 matches found

NVD
NVD
added 2023/08/04 5:15 p.m.78 views

CVE-2023-38689

Logistics Pipes is a modification a.k.a. mod for the computer game Minecraft Java Edition. The mod used Java's ObjectInputStreamreadObject on untrusted data coming from clients or servers over the network resulting in possible remote code execution when sending specifically crafted network packet...

9.8CVSS8.8AI score0.01211EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2023/08/04 4:21 p.m.19 views

CVE-2023-38689 Deserialization of Untrusted Data in network IO

Logistics Pipes is a modification a.k.a. mod for the computer game Minecraft Java Edition. The mod used Java's ObjectInputStreamreadObject on untrusted data coming from clients or servers over the network resulting in possible remote code execution when sending specifically crafted network packet...

8.1CVSS9.7AI score0.01211EPSS
Exploits0References3
Cvelist
Cvelist
added 2023/08/04 4:21 p.m.37 views

CVE-2023-38689 Deserialization of Untrusted Data in network IO

Logistics Pipes is a modification a.k.a. mod for the computer game Minecraft Java Edition. The mod used Java's ObjectInputStreamreadObject on untrusted data coming from clients or servers over the network resulting in possible remote code execution when sending specifically crafted network packet...

8.1CVSS9.9AI score0.01211EPSS
Exploits0References3
CVE
CVE
added 2023/08/04 4:21 p.m.53 views

CVE-2023-38689

Summary (CVE-2023-38689): Logistics Pipes (Minecraft Java Edition mod) suffers a deserialization vulnerability due to Java’s ObjectInputStream#readObject on untrusted data over the network, enabling potential remote code execution. Affected versions are 0.7.0.91 to 0.10.0.71; fix applied in 0.10....

9.8CVSS9.2AI score0.01211EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2023/08/04 4:21 p.m.37 views

CVE-2023-38689 Deserialization of Untrusted Data in network IO

Logistics Pipes is a modification a.k.a. mod for the computer game Minecraft Java Edition. The mod used Java's ObjectInputStreamreadObject on untrusted data coming from clients or servers over the network resulting in possible remote code execution when sending specifically crafted network packet...

8.1CVSS9.6AI score0.01211EPSS
Exploits0References5
Rows per page
Query Builder