CVE & Exploit Intelligence Database

CVE-2019-5350 8.8 HIGH EPSS 0.32

A remote code execution vulnerability was identified in HPE Intelligent Management Center (IMC) PLAT earlier than version 7.3 E0506P09.

CWE-502 Jun 05, 2019

CVE-2019-11945 9.8 CRITICAL EPSS 0.63

A remote code execution vulnerability was identified in HPE Intelligent Management Center (IMC) PLAT earlier than version 7.3 E0506P09.

CWE-502 Jun 05, 2019

CVE-2019-11944 9.8 CRITICAL EPSS 0.33

A remote code execution vulnerability was identified in HPE Intelligent Management Center (IMC) PLAT earlier than version 7.3 E0506P09.

CWE-502 Jun 05, 2019

CVE-2019-10069 9.8 CRITICAL EPSS 0.07

In Godot through 3.1, remote code execution is possible due to the deserialization policy not being applied correctly.

CWE-502 May 31, 2019

CVE-2019-9875 8.8 HIGH KEV EPSS 0.25

Deserialization of Untrusted Data in the anti CSRF module in Sitecore through 9.1 allows an authenticated attacker to execute arbitrary code by sending a serialized .NET object in an HTTP POST parameter.

CWE-502 May 31, 2019

CVE-2019-9874 9.8 CRITICAL KEV NUCLEI EPSS 0.80

Deserialization of Untrusted Data in the Sitecore.Security.AntiCSRF (aka anti CSRF) module in Sitecore CMS 7.0 to 7.2 and Sitecore XP 7.5 to 8.2 allows an unauthenticated attacker to execute arbitrary code by sending a serialized .NET object in the HTTP POST parameter __CSRFTOKEN.

CWE-502 May 31, 2019

CVE-2019-6980 9.8 CRITICAL EPSS 0.41

Synacor Zimbra Collaboration Suite 8.7.x through 8.8.11 allows insecure object deserialization in the IMAP component.

CWE-502 May 29, 2019

CVE-2019-7091 9.8 CRITICAL EPSS 0.63

ColdFusion versions Update 1 and earlier, Update 7 and earlier, and Update 15 and earlier have a deserialization of untrusted data vulnerability. Successful exploitation could lead to arbitrary code execution.

CWE-502 May 24, 2019

CVE-2017-18375 8.8 HIGH EPSS 0.00

Ampache 3.8.3 allows PHP Object Instantiation via democratic.ajax.php and democratic.class.php.

CWE-502 May 24, 2019

CVE-2016-10753 8.8 HIGH EPSS 0.00

e107 2.1.2 allows PHP Object Injection with resultant SQL injection, because usersettings.php uses unserialize without an HMAC.

CWE-502 May 24, 2019

CVE-2016-10750 8.1 HIGH EPSS 0.03

In Hazelcast before 3.11, the cluster join procedure is vulnerable to remote code execution via Java deserialization. If an attacker can reach a listening Hazelcast instance with a crafted JoinRequest, and vulnerable classes exist in the classpath, the attacker can run arbitrary code.

CWE-502 May 22, 2019

CVE-2019-12241 9.8 CRITICAL EPSS 0.01

The Carts Guru plugin 1.4.5 for WordPress allows Insecure Deserialization via a cartsguru-source cookie to classes/wc-cartsguru-event-handler.php.

CWE-502 May 20, 2019

CVE-2019-12240 9.8 CRITICAL EPSS 0.01

The Virim plugin 0.4 for WordPress allows Insecure Deserialization via s_values, t_values, or c_values in graph.php.

CWE-502 May 20, 2019

CVE-2019-12086 7.5 HIGH 5 PoCs Analysis EPSS 0.16

A Polymorphic Typing issue was discovered in FasterXML jackson-databind 2.x before 2.9.9. When Default Typing is enabled (either globally or for a specific property) for an externally exposed JSON endpoint, the service has the mysql-connector-java jar (8.0.14 or earlier) in the classpath, and an attacker can host a crafted MySQL server reachable by the victim, an attacker can send a crafted JSON message that allows them to read arbitrary local files on the server. This occurs because of missing com.mysql.cj.jdbc.admin.MiniAdmin validation.

CWE-502 May 17, 2019

CVE-2019-4279 9.8 CRITICAL 2 PoCs Analysis EPSS 0.84

IBM WebSphere Application Server 8.5 and 9.0 could allow a remote attacker to execute arbitrary code on the system with a specially-crafted sequence of serialized objects from untrusted sources. IBM X-Force ID: 160445.

CWE-502 May 17, 2019

CVE-2019-10912 7.1 HIGH 1 Writeup EPSS 0.01

In Symfony before 2.8.50, 3.x before 3.4.26, 4.x before 4.1.12, and 4.2.x before 4.2.7, it is possible to cache objects that may contain bad user input. On serialization or unserialization, this could result in the deletion of files that the current user has access to. This is related to symfony/cache and symfony/phpunit-bridge.

CWE-502 May 16, 2019

CVE-2019-10924 7.8 HIGH EPSS 0.00

A vulnerability has been identified in LOGO! Soft Comfort (All versions < V8.3). The vulnerability could allow an attacker to execute arbitrary code if the attacker tricks a legitimate user to open a manipulated project. In order to exploit the vulnerability, a valid user must open a manipulated project file. No further privileges are required on the target system. The vulnerability could compromise the confidentiality, integrity and availability of the engineering station. At the time of advisory publication no public exploitation of this security vulnerability was known.

CWE-502 May 14, 2019

CVE-2019-11831 9.8 CRITICAL EPSS 0.10

The PharStreamWrapper (aka phar-stream-wrapper) package 2.x before 2.1.1 and 3.x before 3.1.1 for TYPO3 does not prevent directory traversal, which allows attackers to bypass a deserialization protection mechanism, as demonstrated by a phar:///path/bad.phar/../good.phar URL.

CWE-22 May 09, 2019

CVE-2019-11830 9.8 CRITICAL EPSS 0.02

PharMetaDataInterceptor in the PharStreamWrapper (aka phar-stream-wrapper) package 2.x before 2.1.1 and 3.x before 3.1.1 for TYPO3 mishandles Phar stub parsing, which allows attackers to bypass a deserialization protection mechanism.

CWE-502 May 09, 2019

CVE-2019-11458 7.5 HIGH EPSS 0.01

An issue was discovered in SmtpTransport in CakePHP 3.7.6. An unserialized object with modified internal properties can trigger arbitrary file overwriting upon destruction.

CWE-502 May 08, 2019