Lucene search
+L

6 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2018-1297

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - When using Distributed Test only RMI based, Apache JMeter 2.x and 3.x uses an unsecured RMI connection. This could allow an attacker to get Access to JMeterEngi...

9.8CVSS7.3AI score0.10096EPSS
Exploits0References3
OSV
OSV
added 2022/05/13 1:49 a.m.28 views

GHSA-7V85-6HV2-RWGW Missing certificate validation in Apache JMeter

When using Distributed Test only RMI based, Apache JMeter 2.x and 3.x uses an unsecured RMI connection. This could allow an attacker to get Access to JMeterEngine and send unauthorized code...

9.8CVSS9.2AI score0.10096EPSS
Exploits0References6
Github Security Blog
Github Security Blog
added 2022/05/13 1:49 a.m.36 views

Missing certificate validation in Apache JMeter

When using Distributed Test only RMI based, Apache JMeter 2.x and 3.x uses an unsecured RMI connection. This could allow an attacker to get Access to JMeterEngine and send unauthorized code...

9.8CVSS4.1AI score0.10096EPSS
Exploits0References6Affected Software1
OSV
OSV
added 2018/02/13 12:29 p.m.36 views

UBUNTU-CVE-2018-1297

When using Distributed Test only RMI based, Apache JMeter 2.x and 3.x uses an unsecured RMI connection. This could allow an attacker to get Access to JMeterEngine and send unauthorized code...

9.8CVSS7.3AI score0.10096EPSS
Exploits0References4
Cvelist
Cvelist
added 2018/02/13 12:0 p.m.32 views

CVE-2018-1297

When using Distributed Test only RMI based, Apache JMeter 2.x and 3.x uses an unsecured RMI connection. This could allow an attacker to get Access to JMeterEngine and send unauthorized code...

9.4AI score0.10096EPSS
Exploits0References3
CVE
CVE
added 2018/02/13 12:0 p.m.99 views

CVE-2018-1297

CVE-2018-1297 affects Apache JMeter (versions 2.x and 3.x) in distributed testing mode using an unsecured RMI connection, allowing remote access to JMeterEngine and potential code execution. Exploitation details are shown in public PoCs (e.g., RMIRegistryExploit with CommonsCollections1) and repo...

9.8CVSS9.2AI score0.10096EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder