CVE-2016-6199

Опубликовано: 22 мая 2016

Источник: redhat

CVSS3: 8.1

Описание

ObjectSocketWrapper.java in Gradle 2.12 allows remote attackers to execute arbitrary code via a crafted serialized object.

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat JBoss Enterprise Web Server 3	gradle	Not affected

Показывать по

Статус:

Important

Дефект:

CWE-502

https://bugzilla.redhat.com/show_bug.cgi?id=1420339gradle: Unsafe data deserialization in the ObjectSocketWrapper class

8.1 High

CVSS3

CVE-2016-6199

CVSS3: 9.8

ubuntu

почти 9 лет назад

ObjectSocketWrapper.java in Gradle 2.12 allows remote attackers to execute arbitrary code via a crafted serialized object.

CVE-2016-6199

CVSS3: 9.8

nvd

почти 9 лет назад

ObjectSocketWrapper.java in Gradle 2.12 allows remote attackers to execute arbitrary code via a crafted serialized object.

CVE-2016-6199

CVSS3: 9.8

debian

почти 9 лет назад

ObjectSocketWrapper.java in Gradle 2.12 allows remote attackers to exe ...

GHSA-f65r-2xfr-g5gx

CVSS3: 9.8

github

больше 3 лет назад

ObjectSocketWrapper.java in Gradle 2.12 allows remote attackers to execute arbitrary code via a crafted serialized object.

8.1 High

CVSS3