CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

16 matches found

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2022-3272

Malicious code in bioql PyPI...

7.5CVSS6.3AI score0.02112EPSS

Exploits0References11

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2022-3676

Malicious code in bioql PyPI...

7.5CVSS6.3AI score0.00486EPSS

Exploits0References9

Github Security Blog•added 2022/05/17 3:28 a.m.•33 views

Restlet Arbitrary Java Code Execution via a serialized object

The default configuration of the ObjectRepresentation class in Restlet before 2.1.4 deserializes objects from untrusted sources, which allows remote attackers to execute arbitrary Java code via a serialized object, a different vulnerability than CVE-2013-4221...

7.5CVSS7.2AI score0.00486EPSS

Exploits0References7Affected Software1

OSV•added 2022/05/17 3:28 a.m.•21 views

GHSA-F3MV-G3XR-FP7W Restlet Arbitrary Java Code Execution via a serialized object

7.5CVSS7.1AI score0.00486EPSS

Exploits0References7

OSV•added 2022/05/17 3:28 a.m.•19 views

GHSA-92J2-5R7P-6HJW Restlet is vulnerable to Arbitrary Java Code Execution via crafted XML

The default configuration of the ObjectRepresentation class in Restlet before 2.1.4 deserializes objects from untrusted sources using the Java XMLDecoder, which allows remote attackers to execute arbitrary Java code via crafted XML...

7.5CVSS7.2AI score0.02112EPSS

Exploits0References9

Github Security Blog•added 2022/05/17 3:28 a.m.•37 views

Restlet is vulnerable to Arbitrary Java Code Execution via crafted XML

7.5CVSS7.3AI score0.02112EPSS

Exploits0References9Affected Software1

Veracode•added 2019/07/12 6:19 a.m.•23 views

Arbitrary Code Execution

restlet is vulnerable to arbitrary code execution. A remote attacker is able to execute arbitrary Java code using a malicious XML document due to the default configuration of the ObjectRepresentation class which performs deserialization of objects from untrusted sources using the Java XMLDecoder...

7.5CVSS7.2AI score0.02112EPSS

Exploits0References6Affected Software1

NVD•added 2013/10/10 12:55 a.m.•14 views

CVE-2013-4221

7.5CVSS7.4AI score0.02112EPSS

Exploits0References6

NVD•added 2013/10/10 12:55 a.m.•17 views

CVE-2013-4271

7.5CVSS7.3AI score0.00486EPSS

Exploits0References5

Prion•added 2013/10/10 12:55 a.m.•20 views

Default configuration

7.5CVSS7.7AI score0.02112EPSS

Exploits0References6Affected Software1

UbuntuCve•added 2013/10/10 12:55 a.m.•31 views

CVE-2013-4271

7.5CVSS6.2AI score0.00486EPSS

Exploits0References2

UbuntuCve•added 2013/10/10 12:55 a.m.•26 views

CVE-2013-4221

7.5CVSS6.2AI score0.02112EPSS

Exploits0References3

Cvelist•added 2013/10/10 12:0 a.m.•24 views

CVE-2013-4271

7.2AI score0.00486EPSS

Exploits0References5

CVE•added 2013/10/10 12:0 a.m.•55 views

CVE-2013-4271

The Restlet framework vulnerability CVE-2013-4271 affects the ObjectRepresentation class in Restlet before 2.1.4. The issue arises when deserializing data from untrusted sources, using Java XMLDecoder, which can lead to remote code execution if an attacker provides a crafted serialized object. Th...

7.5CVSS7.5AI score0.00486EPSS

Exploits0References5Affected Software1

Cvelist•added 2013/10/10 12:0 a.m.•23 views

CVE-2013-4221

7.3AI score0.02112EPSS

Exploits0References6

CVE•added 2013/10/10 12:0 a.m.•57 views

CVE-2013-4221

The Restlet vulnerability CVE-2013-4221 affects Restlet before 2.1.4, where ObjectRepresentation deserializes objects from untrusted sources using XMLDecoder. This allows remote attackers to execute arbitrary Java code via crafted XML, through the deserialization process on the server. Impact is ...

7.5CVSS7.5AI score0.02112EPSS

Exploits0References6Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by