Lucene search
F5F5:K49233165HistoryDec 11, 2015 - 12:00 a.m.
K49233165 : Apache Groovy vulnerability CVE-2015-3253
2015-12-1100:00:00
my.f5.com
54
Security Advisory Description
The MethodClosure class in runtime/MethodClosure.java in Apache Groovy 1.7.0 through 2.4.3 allows remote attackers to execute arbitrary code or cause a denial of service via a crafted serialized object. (CVE-2015-3253)
Impact
This vulnerability could allow a remote attacker to run arbitrary code or cause a denial-of-service (DoS) on the system.
Related
zdi
zdi
gentoo
gentoo
Groovy: Arbitrary code execution
2016-10-06 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2015-0296)
2015-10-15 00:00:00
Mageia: Security Advisory (MGASA-2017-0333)
2022-01-28 00:00:00
Debian: Security Advisory (DLA-274-1)
2023-03-08 00:00:00
nvd
nvd
CVE-2015-3253
2015-08-13 14:59:02
CVE-2015-5377
2018-03-06 20:29:00
nessus
nessus
GLSA-201610-01 : Groovy: Arbitrary code execution
2016-10-07 00:00:00
Debian DLA-274-1 : groovy security update
2015-07-20 00:00:00
Fedora 25 : groovy18 (2017-6a0389a6a7)
2017-09-01 00:00:00
osv
osv
groovy - security update
2015-07-20 00:00:00
fedora
fedora
[SECURITY] Fedora 22 Update: groovy-2.4.0-2.fc22
2015-09-24 08:33:07
[SECURITY] Fedora 25 Update: groovy18-1.8.9-30.fc25
2017-09-01 03:24:20
[SECURITY] Fedora 23 Update: groovy-2.4.4-1.fc23
2015-09-24 05:30:32
mageia
mageia
Updated groovy18 packages fix security vulnerability
2017-09-07 12:07:16
Updated groovy package fixes security vulnerability
2015-07-31 00:08:51
seebug
seebug
Apache Groovy MethodClosure θΏη¨δ»£η ζ§θ‘ζΌζ΄οΌCVE-2015-3253οΌ
2016-03-02 00:00:00
XStream εεΊεεζΌζ΄
2016-03-02 00:00:00
freebsd
freebsd
groovy -- remote execution of untrusted code
2015-07-09 00:00:00
groovy -- remote execution of untrusted code/DoS vulnerability
2016-09-20 00:00:00
f5
f5
SOL49233165 - Apache Groovy vulnerability CVE-2015-3253
2015-12-11 00:00:00
cvelist
cvelist
CVE-2015-3253
2015-08-13 14:00:00
CVE-2015-5377
2018-03-06 20:00:00
veracode
veracode
Remote Code Execution Through Object Deserialization
2019-01-15 09:18:57
Remote Execution Through Object Deserialization
2017-01-16 06:27:06
ibm
ibm
Security Bulletin: Vulnerability in Apache Groovy that could affect IBM Development Package for Apache Spark (CVE-2015-3253)
2018-06-15 07:05:58
zdt
zdt
Apache Groovy 2.4.x Disclosure Vulnerabilities
2015-07-18 00:00:00
debian
debian
[SECURITY] [DLA 274-1] groovy security update
2015-07-20 00:51:46
cve
cve
CVE-2015-3253
2015-08-13 14:59:02
CVE-2015-5377
2018-03-06 20:29:00
myhack58
myhack58
debiancve
debiancve
CVE-2015-3253
2015-08-13 14:59:02
github
github
prion
prion
Information disclosure
2015-08-13 14:59:00
Design/Logic Flaw
2018-03-06 20:29:00
redhat
redhat
(RHSA-2016:0066) Moderate: Red Hat JBoss Data Virtualization 6.2.0 security update
2016-01-25 22:05:21
(RHSA-2016:0118) Critical: Red Hat JBoss Operations Network 3.3.5 update
2016-02-03 14:54:58
(RHSA-2017:2596) Important: rh-maven33-groovy security update
2017-09-05 17:06:14
symantec
symantec
SA110 : Java Deserialization Vulnerabilities
2016-01-29 08:00:00
ubuntucve
ubuntucve
CVE-2015-3253
2015-08-13 00:00:00
CVE-2015-5377
2018-03-06 00:00:00
centos
centos
groovy security update
2017-08-31 18:58:56
securityvulns
securityvulns
Elasticsearch CVE-2015-5377
2015-07-20 00:00:00
impervablog
impervablog
Deserialization Attacks Surge Motivated by Illegal Crypto-mining
2018-01-24 17:45:08
oracle
oracle
Oracle Critical Patch Update Advisory - April 2016
2016-04-19 00:00:00
Oracle Critical Patch Update - January 2018
2018-01-16 00:00:00
Oracle Critical Patch Update - July 2016
2016-07-19 00:00:00