sonatype-2015-0002

sonatype-2015-0002

commons-collections - Arbitrary Remote Code Execution due to Unsafe Deserialization

Published Mar 28, 2017

CVSS ScoreCritical

9.0

sonatype-2015-0002

commons-collections - Arbitrary Remote Code Execution due to Unsafe Deserialization

Published Mar 28, 2017

CVSS ScoreCritical

9.0

CVE ID: sonatype-2015-0002
CWE: N/A
CVE Description: commons-collections - Arbitrary Remote Code Execution due to Unsafe Deserialization
Published: Mar 28, 2017
CVSS Score & Severity: 9.0Critical
CVSS Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
EPSS Score: 0%
Malware: malware
KEV Status: Not in KEV Catalog: No known exploits
Affected Ecosystems: affected
Source: Sonatype
References: foxglovesecurity.comATTACK
Apache Jira · COLLECTIONS-580PROJECT

CVE ID: sonatype-2015-0002
CWE: N/A
CVE Description: commons-collections - Arbitrary Remote Code Execution due to Unsafe Deserialization
Published: Mar 28, 2017
CVSS Score & Severity: 9.0Critical
CVSS Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
EPSS Score: 0%
Malware: malware
KEV Status: Not in KEV Catalog: No known exploits
Affected Ecosystems: affected
Source: Sonatype
References: foxglovesecurity.comATTACK
Apache Jira · COLLECTIONS-580PROJECT

Find vulnerabilities. Fix fast with AI.