cve/CVE-2017-8045.md at 904ba5f3d6747c58a7bb678a8dba0a13173908f5

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-06 10:41:43 +00:00

0xMarcio 49bdc782b3 Update Sun May 26 14:27:04 CEST 2024

2024-05-26 14:27:05 +02:00

Description

In Pivotal Spring AMQP versions prior to 1.7.4, 1.6.11, and 1.5.7, an org.springframework.amqp.core.Message may be unsafely deserialized when being converted into a string. A malicious payload could be crafted to exploit this and enable a remote code execution attack.

POC

Reference

No PoCs from references.

Github

https://github.com/ARPSyndicate/cvemon
https://github.com/Cryin/Paper
https://github.com/Flipkart-Grid-4-0-CyberSec-Hack/Backend
https://github.com/SecureSkyTechnology/study-struts2-s2-054_055-jackson-cve-2017-7525_cve-2017-15095
https://github.com/ax1sX/Automation-in-Java-Security
https://github.com/ax1sX/Codeql-In-Java-Security
https://github.com/langu-xyz/JavaVulnMap

1.1 KiB Raw Blame History

CVE-2017-8045

Description

POC

Reference

Github

1.1 KiB

Raw Blame History