Search cyberveille.decio.ch

CVE-2024-29847 Deep Dive: Ivanti Endpoint Manager AgentPortal Deserialization of Untrusted Data Remote Code Execution Vulnerability – Horizon3.ai

CVE-2024-29847 Ivanti Endpoint Manager AgentPortal Deserialization of Untrusted Data Remote Code Execution Vulnerability.

#horizon3 #EN #2024 #CVE-2024-29847 #Ivanti #Endpoint #Manager #AgentPortal #Deserialization #analysis

·horizon3.ai·Sep 13, 2024

CVE-2024-29847 Deep Dive: Ivanti Endpoint Manager AgentPortal Deserialization of Untrusted Data Remote Code Execution Vulnerability – Horizon3.ai

ZDI-23-1578 | Zero Day Initiative

(0Day) Microsoft Exchange ChainedSerializationBinder Deserialization of Untrusted Data Remote Code Execution Vulnerability

#zerodayinitiative #EN #2023 #0-Day #Microsoft #Exchange #ChainedSerializationBinder #Deserialization #RCE

·zerodayinitiative.com·Nov 4, 2023

ZDI-23-1578 | Zero Day Initiative

CVE-2022-45047: Apache MINA SSHD unsafe deserialization vulnerability

Recently, Apache MINA fixed an unsafe deserialization vulnerability. The bug exists in the class org.apache.sshd.server.keyprovider.SimpleGeneratorHostKeyProvider, an attacker could exploit this vulnerability to deserialize and thus achieve remote code execution. Track as CVE-2022-45047, the flaw severity is important.

#securityonline #EN #2022 #CVE-2022-4504 #Apache #MINA #SSHD #unsafe #deserialization

·securityonline.info·Nov 16, 2022

CVE-2022-45047: Apache MINA SSHD unsafe deserialization vulnerability

Recently, Apache MINA fixed an unsafe deserialization vulnerability. The bug exists in the class org.apache.sshd.server.keyprovider.SimpleGeneratorHostKeyProvider, an attacker could exploit this vulnerability to deserialize and thus achieve remote code execution. Track as CVE-2022-45047, the flaw severity is important.

#securityonline #EN #2022 #CVE-2022-4504 #Apache #MINA #SSHD #unsafe #deserialization

·securityonline.info·Nov 16, 2022

CVE-2022-45047: Apache MINA SSHD unsafe deserialization vulnerability