1. Home
  2. CVEs with refmap.mlist==[dev] 20171210 [CVE-2017-15708] Apache Synapse Remote Code Execution Vulnerability
Max CVSS 7.5 Min CVSS 7.5 Total Count2
IDCVSSSummaryLast (major) updatePublished
CVE-2017-15708 7.5
In Apache Synapse, by default no authentication is required for Java Remote Method Invocation (RMI). So Apache Synapse 3.0.1 or all previous releases (3.0.0, 2.1.0, 2.0.0, 1.2, 1.1.2, 1.1.1) allows remote code execution attacks that can be performed
08-03-2022 - 15:39 11-12-2017 - 15:29
Back to Top Mark selected
Back to Top