exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 5

CVE-2015-5254

около 10 лет назад

Apache ActiveMQ 5.x before 5.13.0 does not restrict the classes that can be serialized in the broker, which allows remote attackers to execute arbitrary code via a crafted serialized Java Message Service (JMS) ObjectMessage object.

CVSS3: 9.8

EPSS: Высокий

CVE-2015-5254

около 10 лет назад

Apache ActiveMQ 5.x before 5.13.0 does not restrict the classes that can be serialized in the broker, which allows remote attackers to execute arbitrary code via a crafted serialized Java Message Service (JMS) ObjectMessage object.

CVSS2: 6

EPSS: Высокий

CVE-2015-5254

около 10 лет назад

Apache ActiveMQ 5.x before 5.13.0 does not restrict the classes that can be serialized in the broker, which allows remote attackers to execute arbitrary code via a crafted serialized Java Message Service (JMS) ObjectMessage object.

CVSS3: 9.8

EPSS: Высокий

CVE-2015-5254

около 10 лет назад

Apache ActiveMQ 5.x before 5.13.0 does not restrict the classes that c ...

CVSS3: 9.8

EPSS: Высокий

GHSA-q9hr-3pg4-3jp4

больше 3 лет назад

Improper Input Validation in Apache ActiveMQ

CVSS3: 9.8

EPSS: Высокий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2015-5254 Apache ActiveMQ 5.x before 5.13.0 does not restrict the classes that can be serialized in the broker, which allows remote attackers to execute arbitrary code via a crafted serialized Java Message Service (JMS) ObjectMessage object.	CVSS3: 9.8	77% Высокий	около 10 лет назад
CVE-2015-5254 Apache ActiveMQ 5.x before 5.13.0 does not restrict the classes that can be serialized in the broker, which allows remote attackers to execute arbitrary code via a crafted serialized Java Message Service (JMS) ObjectMessage object.	CVSS2: 6	77% Высокий	около 10 лет назад
CVE-2015-5254 Apache ActiveMQ 5.x before 5.13.0 does not restrict the classes that can be serialized in the broker, which allows remote attackers to execute arbitrary code via a crafted serialized Java Message Service (JMS) ObjectMessage object.	CVSS3: 9.8	77% Высокий	около 10 лет назад
CVE-2015-5254 Apache ActiveMQ 5.x before 5.13.0 does not restrict the classes that c ...	CVSS3: 9.8	77% Высокий	около 10 лет назад
GHSA-q9hr-3pg4-3jp4 Improper Input Validation in Apache ActiveMQ	CVSS3: 9.8	77% Высокий	больше 3 лет назад

Уязвимостей на страницу