Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5
CVE-2020-17521
- EPSS 0.36%
- Published 07.12.2020 20:15:12
- Last modified 21.11.2024 05:08:16
Apache Groovy provides extension methods to aid with creating temporary directories. Prior to this fix, Groovy's implementation of those extension methods was using a now superseded Java JDK method call that is potentially not secure on some operatin...
9.8
CVE-2016-6814
- EPSS 2.8%
- Published 18.01.2018 18:29:00
- Last modified 21.11.2024 02:56:53
When an application with unsupported Codehaus versions of Groovy from 1.7.0 to 2.4.3, Apache Groovy 2.4.4 to 2.4.7 on classpath uses standard Java serialization mechanisms, e.g. to communicate between servers or to store local data, it was possible f...
9.8
CVE-2015-3253
- EPSS 52.46%
- Published 13.08.2015 14:59:02
- Last modified 12.04.2025 10:46:40
The MethodClosure class in runtime/MethodClosure.java in Apache Groovy 1.7.0 through 2.4.3 allows remote attackers to execute arbitrary code or cause a denial of service via a crafted serialized object.
1