12 matches found
CVE-2022-44262
ff4j 1.8.1 is vulnerable to Remote Code Execution RCE...
CGA-67G6-Q63M-FF4J
Bulletin has no description...
io.github.together.modules:core (>=2.0 <=3.0.0), org.ff4j:ff4j-aop (>=1.8.1 <=1.8.13) +34 more potentially affected by CVE-2022-44262 via org.ff4j:ff4j-core (>=1.8.1 <=1.8.9)
org.ff4j:ff4j-core MAVEN version =1.8.1, =2.0, =1.8.1, =1.8.1, =1.8.7, =1.8.7, =1.8.1, =1.8.6, =1.8.1, =1.8.1, =1.8.4, =1.8.1, =1.8.1, =1.8.1, =1.8.1, =1.8.1, =1.8.13 and more Source cves: CVE-2022-44262 Source advisory: OSV:GHSA-65HJ-9PPW-77XC...
ff4j is vulnerable to Remote Code Execution (RCE)
ff4j 1.8.1 is vulnerable to Remote Code Execution RCE. This issue has been patched in version 1.9...
CVE-2022-44262
ff4j 1.8.1 is vulnerable to Remote Code Execution RCE...
CVE-2022-44262
ff4j 1.8.1 is vulnerable to Remote Code Execution RCE...
Remote code execution
ff4j 1.8.1 is vulnerable to Remote Code Execution RCE...
CVE-2022-44262
CVE-2022-44262 affects the FF4J library (ff4j) version 1.8.1, with confirmed Remote Code Execution (RCE) risk. Multiple sources (Red Hat, GHSA, OSV, NVD, CNNVD, PT-2022-27160) document this vulnerability and indicate it has been patched in version 1.9. The root cause details are not expanded in t...
CVE-2022-44262
ff4j 1.8.1 is vulnerable to Remote Code Execution RCE...
PT-2022-27160 · Ff4J · Ff4J
Name of the Vulnerable Software and Affected Versions: ff4j version 1.8.1 Description: The issue is related to Remote Code Execution RCE. It has been patched in version 1.9. Recommendations: For ff4j version 1.8.1, update to version 1.9 to resolve the issue...
CVE-2022-44262
ff4j 1.8.1 is vulnerable to Remote Code Execution RCE...
Man-in-the-Middle (MitM)
ff4j-store-ehcache is vulnerable to man-in-the-middle attacks. The package resolves dependencies via an insecure HTTP channel, allowing an attacker to intercept and modify the downloaded dependencies...