exploitDog

GHSA-9986-6v9m-7xrh

Опубликовано: 01 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Apple QuickTime before 7.4.5 enables deserialization of QTJava objects by untrusted Java applets, which allows remote attackers to execute arbitrary code via a crafted applet.

Apple QuickTime before 7.4.5 enables deserialization of QTJava objects by untrusted Java applets, which allows remote attackers to execute arbitrary code via a crafted applet.

Ссылки

EPSS

Процентиль: 85%

0.02501

Низкий

CVE ID

Связанные уязвимости

CVE-2008-1013

nvd

почти 18 лет назад

Apple QuickTime before 7.4.5 enables deserialization of QTJava objects by untrusted Java applets, which allows remote attackers to execute arbitrary code via a crafted applet.

EPSS

Процентиль: 85%

0.02501

Низкий

CVE ID