cve/CVE-2015-5344.md at 93476d6c370e261fdc1b2b03a08066de45e4892d

admin/cve

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2025-11-28 18:48:49 +00:00

0xMarcio 49bdc782b3 Update Sun May 26 14:27:04 CEST 2024

2024-05-26 14:27:05 +02:00

703 B

Raw Blame History

CVE-2015-5344

Description

The camel-xstream component in Apache Camel before 2.15.5 and 2.16.x before 2.16.1 allow remote attackers to execute arbitrary commands via a crafted serialized Java object in an HTTP request.

POC

Reference

No PoCs from references.

Github

https://github.com/ARPSyndicate/cvemon
https://github.com/PalindromeLabs/Java-Deserialization-CVEs

703 B Raw Blame History

CVE-2015-5344

Description

POC

Reference

Github

703 B

Raw Blame History