Arbitrary code execution in Apache ServiceComb java-chassis

When handler-router component is enabled in servicecomb-java-chassis, authenticated user may inject some data and cause arbitrary code execution. The problem happens in versions between 2.0.0 2.1.3 and fixed in Apache ServiceComb-Java-Chassis 2.1.5...

GHSA-PX4W-RCV2-6X8X Arbitrary code execution in Apache ServiceComb java-chassis

When handler-router component is enabled in servicecomb-java-chassis, authenticated user may inject some data and cause arbitrary code execution. The problem happens in versions between 2.0.0 2.1.3 and fixed in Apache ServiceComb-Java-Chassis 2.1.5...

CVE-2020-17532

When handler-router component is enabled in servicecomb-java-chassis, authenticated user may inject some data and cause arbitrary code execution. The problem happens in versions between 2.0.0 2.1.3 and fixed in Apache ServiceComb-Java-Chassis 2.1.5...

CVE-2020-17532

The CVE-2020-17532 entry affects Apache ServiceComb-Java-Chassis when the handler-router component is enabled. An authenticated user can inject data and trigger arbitrary code execution. Affected versions are 2.0.0 through 2.1.3; the issue is fixed in 2.1.5. Evidence in multiple sources corrobora...

CVE-2020-17532 Apache ServiceComb Yaml remote deserialization vulnerability

When handler-router component is enabled in servicecomb-java-chassis, authenticated user may inject some data and cause arbitrary code execution. The problem happens in versions between 2.0.0 2.1.3 and fixed in Apache ServiceComb-Java-Chassis 2.1.5...