CVE-2015-6420

CRITICAL

Apache Commons Collections < 3.2.2 and < 4.1 - Remote Code Execution via Deserialization

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2015-6420. PoCs published by Leeziao.

AI-analyzed exploit summary This repository contains a working PoC for CVE-2015-6420, a Java deserialization vulnerability. The exploit leverages Apache Commons Collections to construct a malicious payload that executes arbitrary commands via a chain of transformers, demonstrating RCE through deserialization.

Description

Serialized-object interfaces in certain Cisco Collaboration and Social Media; Endpoint Clients and Client Software; Network Application, Service, and Acceleration; Network and Content Security Devices; Network Management and Provisioning; Routing and Switching - Enterprise and Service Provider; Unified Computing; Voice and Unified Communications Devices; Video, Streaming, TelePresence, and Transcoding Devices; Wireless; and Cisco Hosted Services products allow remote attackers to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections (ACC) library.

Exploits (1)

nomisec WORKING POC

by Leeziao · poc

https://github.com/Leeziao/CVE-2015-6420

View Code ZIP pw:eip

This repository contains a working PoC for CVE-2015-6420, a Java deserialization vulnerability. The exploit leverages Apache Commons Collections to construct a malicious payload that executes arbitrary commands via a chain of transformers, demonstrating RCE through deserialization.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Apache Commons Collections (versions with vulnerable deserialization)

No auth needed

Prerequisites: Target application must deserialize untrusted data · Apache Commons Collections library must be present in the classpath

MITRE ATT&CK