Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8
CVE-2020-12835
- EPSS 16.76%
- Veröffentlicht 20.05.2020 13:15:09
- Zuletzt bearbeitet 21.11.2024 05:00:22
An issue was discovered in SmartBear ReadyAPI SoapUI Pro 3.2.5. Due to unsafe use of an Java RMI based protocol in an unsafe configuration, an attacker can inject malicious serialized objects into the communication, resulting in remote code execution...
9.3
CVE-2019-12180
- EPSS 8.34%
- Veröffentlicht 05.02.2020 17:15:10
- Zuletzt bearbeitet 21.11.2024 04:22:22
An issue was discovered in SmartBear ReadyAPI through 2.8.2 and 3.0.0 and SoapUI through 5.5. When opening a project, the Groovy "Load Script" is automatically executed. This allows an attacker to execute arbitrary Groovy Language code (Java scriptin...
9.3
CVE-2018-20580
- EPSS 20.78%
- Veröffentlicht 03.05.2019 20:29:00
- Zuletzt bearbeitet 21.11.2024 04:01:46
The WSDL import functionality in SmartBear ReadyAPI 2.5.0 and 2.6.0 allows remote attackers to execute arbitrary Java code via a crafted request parameter in a WSDL file.
1