CVE-2014-3699

Опубликовано: 17 мар. 2015

Источник: redhat

CVSS2: 7.5

Описание

eDeploy has RCE via cPickle deserialization of untrusted data

Red Hat does not currently ship eNovance edeploy in a product form and as such this issue has been filed upstream.

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat JBoss Enterprise Web Server 1	eDeploy	Affected

Показывать по

Статус:

Important

Дефект:

CWE-306

https://bugzilla.redhat.com/show_bug.cgi?id=1152544eDeploy: Remote code execution due to cPickle deserialization of untrusted data

7.5 High

CVSS2

CVE-2014-3699

CVSS3: 9.8

nvd

около 6 лет назад

eDeploy has RCE via cPickle deserialization of untrusted data

CVE-2014-3699

CVSS3: 9.8

debian

около 6 лет назад

eDeploy has RCE via cPickle deserialization of untrusted data

GHSA-2vfh-w2hp-mr2m

CVSS3: 9.8

github

больше 3 лет назад

eDeploy has RCE via cPickle deserialization of untrusted data

7.5 High

CVSS2