Lucene search
K

79 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 8:35 a.m.10 views

CVE-2020-10917

This vulnerability allows remote attackers to execute arbitrary code on affected installations of NEC ESMPRO Manager 6.42. Authentication is not required to exploit this vulnerability. The specific flaw exists within the RMI service. The issue results from the lack of proper validation of...

9.8CVSS7.4AI score0.05574EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2017-2572

Malware in sbrugna...

9.8CVSS9.5AI score0.03106EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2019-0709

Malware in sbrugna...

9.8CVSS7.9AI score0.05681EPSS
Exploits0References60
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2019-0747

Malware in sbrugna...

9.8CVSS7.9AI score0.04861EPSS
Exploits0References56
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2023-30275

Malicious code in bioql PyPI...

7.8CVSS7.7AI score0.00186EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2020-23784

Malicious code in bioql PyPI...

9.8CVSS9AI score0.48883EPSS
Exploits1References3
Zero Day Initiative
Zero Day Initiative
added 2025/07/28 12:0 a.m.3 views

Samsung MagicINFO 9 Server MagicInfoCache Deserialization of Untrusted Data Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Samsung MagicINFO 9 Server. Authentication is not required to exploit this vulnerability. The specific flaw exists within the RMI service. The issue results from the lack of proper validation of...

9.8CVSS6.9AI score0.00645EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:50 p.m.11 views

CVE-2021-34371

Neo4j through 3.4.18 with the shell server enabled exposes an RMI service that arbitrarily deserializes Java objects, e.g., through setSessionVariable. An attacker can abuse this for remote code execution because there are dependencies with exploitable gadget chains...

9.8CVSS7.9AI score0.13386EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:40 p.m.9 views

CVE-2020-3943

vRealize Operations for Horizon Adapter 6.7.x prior to 6.7.1 and 6.6.x prior to 6.6.1 uses a JMX RMI service which is not securely configured. An unauthenticated remote attacker who has network access to vRealize Operations, with the Horizon Adapter running, may be able to execute arbitrary code ...

9.8CVSS7.9AI score0.02331EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2024/04/17 12:0 a.m.3 views

The vulnerability of the RMI service of the IBM InfoSphere Information Server software platform allows a perpetrator to execute arbitrary code.

The vulnerability of the RMI service of the IBM InfoSphere Information Server software platform is related to the restoration of unreliable data in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

10CVSS8.1AI score0.014EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2024/03/06 10:58 a.m.24 views

BIT-NEO4J-2021-34371

Neo4j through 3.4.18 with the shell server enabled exposes an RMI service that arbitrarily deserializes Java objects, e.g., through setSessionVariable. An attacker can abuse this for remote code execution because there are dependencies with exploitable gadget chains...

9.8CVSS9.8AI score0.13386EPSS
Exploits1References2
Prion
Prion
added 2024/02/29 1:41 a.m.16 views

Code injection

An issue was discovered in Couchbase Server through 7.1.4 before 7.1.5 and before 7.2.1. There are Unauthenticated RMI Service Ports Exposed in Analytics...

7.2AI score0.00441EPSS
Exploits0References4
OSV
OSV
added 2023/11/02 2:15 p.m.5 views

CVE-2023-26455

RMI was not requiring authentication when calling ChronosRMIService:setEventOrganizer. Attackers with local or adjacent network access could abuse the RMI service to modify calendar items using RMI. RMI access is restricted to localhost by default. The interface has been updated to require...

7.8CVSS5.7AI score0.00186EPSS
Exploits0References2
NVD
NVD
added 2023/11/02 2:15 p.m.27 views

CVE-2023-26455

RMI was not requiring authentication when calling ChronosRMIService:setEventOrganizer. Attackers with local or adjacent network access could abuse the RMI service to modify calendar items using RMI. RMI access is restricted to localhost by default. The interface has been updated to require...

7.8CVSS6.1AI score0.00186EPSS
Exploits0References2
Prion
Prion
added 2023/11/02 2:15 p.m.21 views

Authentication flaw

RMI was not requiring authentication when calling ChronosRMIService:setEventOrganizer. Attackers with local or adjacent network access could abuse the RMI service to modify calendar items using RMI. RMI access is restricted to localhost by default. The interface has been updated to require...

4.3CVSS7.5AI score0.00186EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2023/09/07 12:0 a.m.51 views

Oracle Linux 8 : pki-core:10.6 / and / pki-deps:10.6 (ELSA-2020-1644)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2020-1644 advisory. - A Polymorphic Typing issue was discovered in FasterXML jackson-databind before 2.9.10. It is related to com.zaxxer.hikari.HikariDataSource. This is a...

9.8CVSS7.7AI score0.10676EPSS
Exploits1References6
IBM Security Bulletins
IBM Security Bulletins
added 2023/05/23 7:47 p.m.24 views

Security Bulletin: IBM InfoSphere Information Server is affected by a remote code execution vulnerability (CVE-2023-32336)

Summary A remote code execution vulnerability in IBM InfoSphere Information Server was addressed. Vulnerability Details CVEID:CVE-2023-32336 DESCRIPTION: IBM InfoSphere Information Server is affected by a remote code execution vulnerability due to insecure deserialization in an RMI service. CVSS...

9.8CVSS9.5AI score0.014EPSS
Exploits0Affected Software1
NVD
NVD
added 2023/05/22 1:15 a.m.20 views

CVE-2023-32336

IBM InfoSphere Information Server 11.7 is affected by a remote code execution vulnerability due to insecure deserialization in an RMI service. IBM X-Force ID: 255285...

9.8CVSS9.2AI score0.014EPSS
Exploits0References2
Prion
Prion
added 2023/05/22 1:15 a.m.18 views

Remote code execution

IBM InfoSphere Information Server 11.7 is affected by a remote code execution vulnerability due to insecure deserialization in an RMI service. IBM X-Force ID: 255285...

7.5CVSS9.3AI score0.014EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2023/05/22 12:57 a.m.68 views

CVE-2023-32336

IBM InfoSphere Information Server 11.7 is affected by a remote code execution vulnerability due to insecure deserialization in an RMI service. Root cause: insecure deserialization in the RMI handler. Impact: remote code execution with high confidentiality, integrity, and availability implications...

9.8CVSS9.2AI score0.014EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder