Lucene search
K

3 matches found

BDU FSTEC
BDU FSTEC
added 2020/05/07 12:0 a.m.5 views

The vulnerability of the org.apache.xmlrpc.parser.XmlRpcResponseParser.addResult method in the Apache XML-RPC library, related to the restoration of unreliable data in memory, allows attackers to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of the org.apache.xmlrpc.parser.XmlRpcResponseParser.addResult method in the Apache XML-RPC library is related to an deserialization exception from the server side, serialized in the faultCause attribute of XMLRPC error messages. Exploiting this vulnerability can allow a malicio...

10CVSS7.5AI score0.49285EPSS
Exploits2References9Affected Software7
RedHat Linux
RedHat Linux
added 2020/03/26 3:46 p.m.5 views

xmlrpc: Deserialization of server-side exception from faultCause in XMLRPC error response

A flaw was discovered where the XMLRPC client implementation in Apache XMLRPC, performed deserialization of the server-side exception serialized in the faultCause attribute of XMLRPC error response messages. A malicious or compromised XMLRPC server could possibly use this flaw to execute arbitrar...

9.8CVSS6.2AI score0.49285EPSS
Exploits2References5
RedHat Linux
RedHat Linux
added 2020/01/30 7:29 p.m.5 views

xmlrpc: Deserialization of server-side exception from faultCause in XMLRPC error response

A flaw was discovered where the XMLRPC client implementation in Apache XMLRPC, performed deserialization of the server-side exception serialized in the faultCause attribute of XMLRPC error response messages. A malicious or compromised XMLRPC server could possibly use this flaw to execute arbitrar...

9.8CVSS6.2AI score0.49285EPSS
Exploits2References5
Rows per page
Query Builder