SCIMono <0.0.19 - Remote Code Execution

SCIMono before 0.0.19 is vulnerable to remote code execution because it is possible for an attacker to inject and execute java expressions and compromise the availability and integrity of the system. id: CVE-2021-21479 info: name: SCIMono 0.0.19 - Remote Code Execution author: dwisiswant0 severit...

CVE-2021-21479

In SCIMono before 0.0.19, it is possible for an attacker to inject and execute java expression compromising the availability and integrity of the system...

VulnCheck KEV: CVE-2021-21479

In SCIMono before 0.0.19, it is possible for an attacker to inject and execute java expression compromising the availability and integrity of the system...

Parvan Dobrev scimono 注入漏洞

Parvan Dobrev scimono is Parvan Dobrev an open source application . A server-side and a client-side are provided. Parvan Dobrev scimono suffers from an injection vulnerability, which stems from incorrect innocuous handling of input, where an unauthenticated attacker could inject specially designe...

Remote Code Execution in SCIMono

Impact It is possible for attacker to inject and execute java expression and compromising the availability and integrity of the system. Patches The issue was fixed on 0.0.19 version...

GHSA-29Q4-GXJQ-RX5C Remote Code Execution in SCIMono

Impact It is possible for attacker to inject and execute java expression and compromising the availability and integrity of the system. Patches The issue was fixed on 0.0.19 version...

com.sap.scimono.examples:simple-server (>=0.0.2 <=0.0.18), com.sap.scimono:scimono-client (>=0.0.1 <=0.0.18) +1 more potentially affected by CVE-2021-21479 via com.sap.scimono:scimono-server (>=0.0.1 <=0.0.18)

com.sap.scimono:scimono-server MAVEN version =0.0.1, =0.0.2, =0.0.1, =0.0.11, =0.0.18 Source cves: CVE-2021-21479 Source advisory: OSV:GHSA-29Q4-GXJQ-RX5C...

CVE-2021-21479

In SCIMono before 0.0.19, it is possible for an attacker to inject and execute java expression compromising the availability and integrity of the system...

CVE-2021-21479

In SCIMono before 0.0.19, it is possible for an attacker to inject and execute java expression compromising the availability and integrity of the system...

Information disclosure

In SCIMono before 0.0.19, it is possible for an attacker to inject and execute java expression compromising the availability and integrity of the system...

CVE-2021-21479

In SCIMono before 0.0.19, it is possible for an attacker to inject and execute java expression compromising the availability and integrity of the system...

CVE-2021-21479

SCIMono versions before 0.0.19 are affected by CVE-2021-21479, a remote code execution vulnerability due to the ability to inject and execute Java expressions. This can compromise system availability and integrity. The issue is documented across multiple sources (e.g., GHSA-29Q4-GXJQ-RX5C, NVD en...

SCIMono Injection Vulnerability

Parvan Dobrev scimono is Parvan Dobrev an open source application . It provides a server-side and a client-side. An injection vulnerability exists in SCIMono, which could allow an attacker to inject and execute java expressions, thereby compromising system availability and integrity. The followin...