It was discovered that Apache Groovy incorrectly handled
serialization mechanisms. An attacker could possibly use this issue
to execute arbitrary code.

References

ubuntu.com/security/CVE-2016-6814

ubuntu.com/security/notices/USN-4795-1

osv 3

nessus 18

openvas 8

debiancve 1

fedora 4

ubuntucve 1

prion 1

github 1

debian 1

mageia 1

oraclelinux 1

cvelist 1

nvd 1

cve 1

redhatcve 1

gentoo 1

ubuntu 1

symantec 1

zdi 1

centos 1

veracode 1

freebsd 1

redhat 4

ibm 5

oracle 11

osv

groovy - security update

2017-01-22 00:00:00

Deserialization of Untrusted Data in Groovy

2022-05-13 01:25:19

CVE-2016-6814

2018-01-18 18:29:00

nessus

Ubuntu 16.04 ESM : Apache Groovy vulnerability (USN-4795-1)

2023-10-23 00:00:00

Scientific Linux Security Update : groovy on SL7.x (noarch) (20170817)

2017-08-22 00:00:00

Oracle JDeveloper ADF Faces Unspecified Remote Code Execution (October 2017 CPU)

2017-10-18 00:00:00

openvas

Debian: Security Advisory (DLA-794-1)

2023-03-08 00:00:00

Ubuntu: Security Advisory (USN-4795-1)

2023-01-27 00:00:00

Fedora Update for groovy FEDORA-2017-cc0e0daf0f

2017-01-22 00:00:00

debiancve

CVE-2016-6814

2018-01-18 18:29:00

fedora

[SECURITY] Fedora 24 Update: groovy-2.4.5-8.fc24

2017-01-25 00:22:40

[SECURITY] Fedora 25 Update: groovy18-1.8.9-28.fc25

2017-08-18 04:49:26

[SECURITY] Fedora 26 Update: groovy18-1.8.9-28.fc26

2017-08-18 00:28:27

ubuntucve

CVE-2016-6814

2018-01-18 00:00:00

prion

Design/Logic Flaw

2018-01-18 18:29:00

github

Deserialization of Untrusted Data in Groovy

2022-05-13 01:25:19

debian

[SECURITY] [DLA 794-1] groovy security update

2017-01-22 22:36:22

mageia

Updated groovy and groovy18 packages fix security vulnerability

2017-08-26 23:35:31

oraclelinux

groovy security update

2017-08-17 00:00:00

cvelist

CVE-2016-6814

2018-01-18 18:00:00

nvd

CVE-2016-6814

2018-01-18 18:29:00

cve

CVE-2016-6814

2018-01-18 18:29:00

redhatcve

CVE-2016-6814

2017-01-16 04:47:28

gentoo

Groovy: Arbitrary code execution

2020-03-07 00:00:00

ubuntu

Apache Groovy vulnerability

2021-03-15 00:00:00

symantec

Apache Groovy CVE-2016-6814 Remote Code Execution Vulnerability

2017-01-14 00:00:00

zdi

Apache Groovy MethodClosure Deserialization of Untrusted Data Remote Code Execution Vulnerability

2017-12-27 00:00:00

centos

groovy security update

2017-08-31 18:58:56

veracode

Remote Execution Through Object Deserialization

2017-01-16 06:27:06

freebsd

groovy -- remote execution of untrusted code/DoS vulnerability

2016-09-20 00:00:00

redhat

(RHSA-2017:2486) Important: groovy security update

2017-08-17 01:55:06

(RHSA-2017:2596) Important: rh-maven33-groovy security update

2017-09-05 17:06:14

(RHSA-2017:0272) Moderate: Red Hat JBoss Data Virtualization security and bug fix update

2017-02-14 16:41:17

ibm

Security Bulletin: Vulnerabilities in Groovy affect IBM Cloud Pak System [CVE-2016-6814, CVE-2015-3253]

2024-01-10 11:22:36

Security Bulletin: Multiple vulnerabilities of Apache Groovy (groovy-all-2.3.11.jar) have affected APM JBoss and APM WebLogic Agent [CVE-202-17521, CVE-2016-6814, CVE-2015-3253]

2023-07-03 11:43:57

Security Bulletin: IBM Spectrum Control is vulnerable to multiple weaknesses related to Apache Groovy

2023-03-07 04:51:04

oracle

Oracle Critical Patch Update - April 2018

2018-04-17 00:00:00

Oracle Critical Patch Update Advisory - October 2019

2020-01-22 00:00:00

Oracle Critical Patch Update Advisory - January 2019

2019-01-15 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

AI Score

7.3

Confidence

Low

EPSS

0.051

Percentile

93.1%

JSON

Related for OSV:USN-4795-1