ID CVE-2018-1297
Summary When using Distributed Test only (RMI based), Apache JMeter 2.x and 3.x uses an unsecured RMI connection. This could allow an attacker to get Access to JMeterEngine and send unauthorized code.
References
Vulnerable Configurations
CVSS
Base: None
Impact:
Exploitability:
refmap via4
confirm https://bz.apache.org/bugzilla/show_bug.cgi?id=62039
mlist [www-announce] 20180211 CVE-2018-1297: Apache JMeter uses an unsecure RMI connection in Distributed mode
Last major update 13-02-2018 - 07:29
Published 13-02-2018 - 07:29
Last modified 13-02-2018 - 07:29
Back to Top