A vulnerability was found in Apache Dubbo up to 2.7.12/3.0.1 and classified as critical. This issue affects an unknown functionality of the component Configuration Handler. Upgrading to version 2.7.13 or 3.0.2 eliminates this vulnerability.
Apache Dubbo up to 2.7.12/3.0.1 Configuration deserialization
- Virtual Patching
- September 9, 2021
- 3:04 pm
Contact us to get started
CVE-2023-28102 : DISCORDRB ENCODER.RB FILE OS COMMAND INJECTION
Description discordrb is an implementation of the Discord API using Ruby. In discordrb before commit `91e13043ffa` the `encoder.rb` file unsafely
CVE-2022-4126 : ABB RCCMD PRIOR 4.40 230207 HARD-CODED PASSWORD
Description Use of Default Password vulnerability in ABB RCCMD on Windows, Linux, MacOS allows Try Common or Default Usernames and
CVE-2023-25655 : BASERCMS UP TO 4.7.4 UNRESTRICTED UPLOAD
Description baserCMS is a Content Management system. Prior to version 4.7.5, any file may be uploaded on the management system