Lucene search
Veracode Vulnerability DatabaseVERACODE:20309HistoryMay 23, 2019 - 4:41 a.m.
Remote Code Execution Through Deserialisation
2019-05-2304:41:04
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
14
EPSS
0.026
Percentile
90.4%
hazelcast is susceptible to remote code execution through deserialization. An attacker can send a malicious JoinRequest through which it reaches a listening Hazelcast instance if the vulnerable class is in the classpath, subsequently causing deserialization and remote code execution.
Related
prion
prion
Remote code execution
2019-05-22 14:29:00
osv
osv
Deserialization of Untrusted Data in Hazelcast
2022-05-24 16:46:09
CVE-2016-10750
2019-05-22 14:29:00
cvelist
cvelist
CVE-2016-10750
2019-05-22 13:40:06
nvd
nvd
CVE-2016-10750
2019-05-22 14:29:00
nessus
nessus
atlassian
atlassian
cve
cve
CVE-2016-10750
2019-05-22 14:29:00
github
github
Deserialization of Untrusted Data in Hazelcast
2022-05-24 16:46:09
redhat
redhat
(RHSA-2019:2413) Important: Red Hat Fuse 7.4.0 security update
2019-08-08 10:07:26