← Toutes les vulnérabilités

CRITICALSupply chain

GHSA-43X2-G84Q-FMQX

maven · org.openidentityplatform.opendj:opendj-server-legacy

Résumé

OpenDJ Pre-Auth RCE via Java Deserialization in JMX RMI

Références

Vulnérabilités liées

Tout Supply chain →

HIGHGHSA-9837-48HR-Q32J
Glances has Insecure Pickle Deserialization in its Version Cache that Leads to Arbitrary Code Execution
HIGHGHSA-C8Q4-9H32-2WW8
Spinnaker has uon-safe yaml deserialization, allowing RCE when using specific types
HIGHGHSA-RPJ2-4HQ8-938G
VCR.py: Arbitrary code execution via unsafe YAML deserialization of cassette files
HIGHGHSA-WV27-2VQP-J7G5
Gogs has the ability to import local repositories via Mirror Settings
HIGHGHSA-PWX3-QCGW-VH7H
Gogs Vulnerable to CSRF Leading to Organization Owner Takeover
HIGHGHSA-P9F5-H3RX-J5QW
Gogs Missing Authorization in Attachment Download