Описание
The project import functionality in SoapUI 5.3.0 allows remote attackers to execute arbitrary Java code via a crafted request parameter in a WSDL project file.
Ссылки
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:smartbear:soapui:5.3.0:*:*:*:*:*:*:*
EPSS
Процентиль: 61%
0.00412
Низкий
7.8 High
CVSS3
6.8 Medium
CVSS2
Дефекты
CWE-94
Связанные уязвимости
CVSS3: 8.8
redhat
почти 8 лет назад
The project import functionality in SoapUI 5.3.0 allows remote attackers to execute arbitrary Java code via a crafted request parameter in a WSDL project file.
CVSS3: 7.8
github
больше 3 лет назад
The project import functionality in SoapUI 5.3.0 allows remote attackers to execute arbitrary Java code via a crafted request parameter in a WSDL project file.
EPSS
Процентиль: 61%
0.00412
Низкий
7.8 High
CVSS3
6.8 Medium
CVSS2
Дефекты
CWE-94