ForgeRock AM is an open source access management, privilege control platform with widespread use in universities and social organizations.ForgeRock AM is vulnerable to a code issue that could be exploited by an unauthenticated attacker to remotely execute arbitrary code by constructing a special request and take over the server running ForgeRockAM.

CPENameOperatorVersion
forgerock amlt7.0

CPE	Name	Operator	Version
	forgerock am	lt	7.0

metasploit 1

nvd 1

threatpost 1

zdt 1

packetstorm 2

cisa 1

nuclei 1

nessus 2

githubexploit 1

thn 3

hackerone 3

cisa_kev 1

prion 1

cvelist 1

attackerkb 1

seebug 1

checkpoint_advisories 1

rapid7blog 3

cve 1

exploitdb 1

trellix 2

avleonov 2

ics 1

metasploit

ForgeRock / OpenAM Jato Java Deserialization

2021-07-02 21:05:39

nvd

CVE-2021-35464

2021-07-22 18:15:23

threatpost

Critical RCE Vulnerability in ForgeRock OpenAM Under Active Attack

2021-07-12 18:01:46

zdt

ForgeRock Access Manager / OpenAM 14.6.3 - Remote Code Execution (Unauthenticated) Exploit

2021-07-16 00:00:00

packetstorm

ForgeRock / OpenAM Jato Java Deserialization

2021-07-13 00:00:00

ForgeRock Access Manager/OpenAM 14.6.3 Remote Code Execution

2021-07-16 00:00:00

cisa

Critical ForgeRock Access Management Vulnerability

2021-07-12 00:00:00

nuclei

ForgeRock OpenAM <7.0 - Remote Code Execution

2021-06-29 11:56:37

nessus

OpenAM RCE (CVE-2021-35464)

2021-07-29 00:00:00

ForgeRock Access Management < 7.0 RCE

2021-07-02 00:00:00

githubexploit

Exploit for Deserialization of Untrusted Data in Forgerock Am

2021-07-01 03:51:32

thn

Telecom and BPO Companies Under Attack by SIM Swapping Hackers

2022-12-06 11:00:00

Critical RCE Flaw in ForgeRock Access Manager Under Active Attack

2021-07-13 04:48:00

Cyber Group 'Gold Melody' Selling Compromised Access to Ransomware Attackers

2023-09-21 09:11:00

hackerone

U.S. Dept Of Defense: Pre-auth RCE in ForgeRock OpenAM (CVE-2021-35464)

2021-06-30 08:58:44

U.S. Dept Of Defense: Pre-auth RCE in ForgeRock OpenAM (CVE-2021-35464)

2021-06-30 09:11:23

U.S. Dept Of Defense: Pre-auth RCE in ForgeRock OpenAM (CVE-2021-35464)

2021-07-01 18:21:48

cisa_kev

ForgeRock Access Management (AM) Core Server Remote Code Execution Vulnerability

2021-11-03 00:00:00

prion

Deserialization of untrusted data

2021-07-22 18:15:00

cvelist

CVE-2021-35464

2021-07-22 17:10:18

attackerkb

Pre-auth RCE in ForgeRock Access Manager (CVE-2021-35464)

2021-07-22 00:00:00

seebug

ForgeRock AM远程代码执行漏洞（CVE-2021-35464）

2021-07-05 00:00:00

checkpoint_advisories

ForgeRock OpenAM Remote Code Execution (CVE-2021-35464)

2021-07-15 00:00:00

rapid7blog

ForgeRock Access Manager/OpenAM Pre-Auth Remote Code Execution Vulnerability (CVE-2021-35464): What You Need To Know

2021-06-30 15:26:49

Metasploit Wrap-Up

2021-07-16 19:47:06

What's New in InsightVM: Q3 2021 in Review

2021-10-08 13:30:00

cve

CVE-2021-35464

2021-07-22 18:15:23

exploitdb

ForgeRock Access Manager 14.6.3 - Remote Code Execution (RCE) (Unauthenticated)

2021-07-16 00:00:00

trellix

Scattered Spider: The Modus Operandi

2023-08-17 00:00:00

Scattered Spider: The Modus Operandi

2023-08-17 00:00:00

avleonov

Last Week’s Security news: PrintNightmare, Kaseya, Intune, Metasploit Docker escape

2021-07-05 15:19:07

Last Week’s Security news: Exploits for ForgeRock, vSphere, Apache Tomcat, new Print Spooler vuln, Kaseya Patch and REvil, SolarWinds, Schneider Electric, Bulletins

2021-07-19 16:29:00

ics

2021 Top Routinely Exploited Vulnerabilities

2022-04-28 12:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

0.974 High

EPSS

Percentile

99.9%

JSON

Related for CNVD-2021-101202