Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.5 views

EUVD-2022-5807

Malicious code in bioql PyPI...

7.8CVSS7.8AI score0.00759EPSS
Exploits4References5
RedhatCVE
RedhatCVEadded 2022/05/20 10:58 p.m.40 views

CVE-2017-12628

The JMX server embedded in Apache James, also used by the command line client is exposed to a java de-serialization issue, and thus can be used to execute arbitrary commands. As James exposes JMX socket by default only on local-host, this vulnerability can only be used for privilege escalation...

7.8CVSS2.7AI score0.00759EPSS
Exploits4References1
OSV
OSVadded 2022/05/17 12:25 a.m.23 views

GHSA-XJ7Q-Q94C-6WR3 Apache James Privilege Escalation

The JMX server embedded in Apache James, also used by the command line client is exposed to a java de-serialization issue, and thus can be used to execute arbitrary commands. As James exposes JMX socket by default only on local-host, this vulnerability can only be used for privilege escalation...

7.8CVSS7.9AI score0.00759EPSS
Exploits4References4
Github Security Blog
Github Security Blogadded 2018/10/16 11:13 p.m.55 views

Apache Camel's Jackson and JacksonXML unmarshalling operation are vulnerable to Remote Code Execution attacks

Apache Camel's camel-jackson and camel-jacksonxml components are vulnerable to Java object de-serialisation vulnerability. Camel allows to specify such a type through the 'CamelJacksonUnmarshalType' property. De-serializing untrusted data can lead to security flaws as demonstrated in various...

9.8CVSS9.5AI score0.10604EPSS
Exploits1References23Affected Software1
Prion
Prionadded 2017/10/20 3:29 p.m.12 views

Privilege escalation

The JMX server embedded in Apache James, also used by the command line client is exposed to a java de-serialization issue, and thus can be used to execute arbitrary commands. As James exposes JMX socket by default only on local-host, this vulnerability can only be used for privilege escalation...

7.2CVSS7.9AI score0.00759EPSS
Exploits4References2Affected Software1
OSV
OSVadded 2017/10/20 3:29 p.m.9 views

CVE-2017-12628

The JMX server embedded in Apache James, also used by the command line client is exposed to a java de-serialization issue, and thus can be used to execute arbitrary commands. As James exposes JMX socket by default only on local-host, this vulnerability can only be used for privilege escalation...

7.8CVSS7.9AI score
Exploits0References2
Cvelist
Cvelistadded 2017/10/20 3:0 p.m.42 views

CVE-2017-12628

The JMX server embedded in Apache James, also used by the command line client is exposed to a java de-serialization issue, and thus can be used to execute arbitrary commands. As James exposes JMX socket by default only on local-host, this vulnerability can only be used for privilege escalation...

7.9AI score0.00759EPSS
Exploits4References2
RedhatCVE
RedhatCVEadded 2017/02/09 3:48 p.m.26 views

CVE-2016-8749

It was found that Apache Camel's camel-jackson and camel-jacksonxml components are vulnerable to Java object de-serialisation vulnerability. Camel allows such a type through the 'CamelJacksonUnmarshalType' property. De-serializing untrusted data can lead to security flaws as demonstrated in vario...

9.8CVSS2.6AI score0.10604EPSS
Exploits1References2
Rows per page
Query Builder