TIBCO JasperReports Server 8.0.2 Community Edition Code Execution Vulnerability

Due to JMX/RMI services in TIBCO JasperReports Server version 8.0.2 Community Edition performing unsafe deserialization, it is possible to execute arbitrary code and system commands on the server system. Product: JasperReports Server Manufacturer: TIBCO Software Inc. Tested Versions: 8.0.2...

TIBCO JasperReports Server 8.0.2 Community Edition Code Execution

Advisory ID: SYSS-2022-041 Product: JasperReports Server Manufacturer: TIBCO Software Inc. Tested Versions: 8.0.2 Community Edition Vulnerability Type: CWE-502: Deserialization of Untrusted Data Risk Level: High Solution Status: Fixed Manufacturer Notification: 2022-06-10 Solution Date: 2022-08-1...

Sql injection

AxiomSL's Axiom java applet module used for editing uploaded Excel files and associated Java RMI services 9.5.3 and earlier allows remote attackers to 1 access data of other basic users through arbitrary SQL commands, 2 perform a horizontal and vertical privilege escalation, 3 cause a Denial of...

CVE-2012-5417

Cisco Prime Data Center Network Manager DCNM before 6.11 does not properly restrict access to certain JBoss MainDeployer functionality, which allows remote attackers to execute arbitrary commands via JBoss Application Server Remote Method Invocation RMI services, aka Bug ID CSCtz44924...

Design/Logic Flaw

Cisco Prime Data Center Network Manager DCNM before 6.11 does not properly restrict access to certain JBoss MainDeployer functionality, which allows remote attackers to execute arbitrary commands via JBoss Application Server Remote Method Invocation RMI services, aka Bug ID CSCtz44924...