CVE-2013-7285
Published at:
-
22-12-2013 01:00
Last modified:
-
22-12-2013 01:00
Total changes:
-
10
Description
Common Vulnerability Scoring System (CVSS)
Low
Attack complexity
Network
Attack vector
Low
Availability
Low
Confidentiality
Low
Integrity
-
Privileges required
-
Scope
-
User interaction
6.8
Base score
Exploitability score
Impact score
Verification logic
Reference
- https://bugzilla.redhat.com/show_bug.cgi?id=1051277
- http://xstream.codehaus.org/security.html http://blog.diniscruz.com/2013/12/xstream-remote-code-execution-exploit.html https://securityblog.redhat.com/2014/01/23/java-deserialization-flaws-part-2-xml-deserialization/
- https://access.redhat.com/errata/RHSA-2014:0452
- https://access.redhat.com/errata/RHSA-2014:1007
- https://access.redhat.com/errata/RHSA-2014:0323
- https://access.redhat.com/errata/RHSA-2014:0371
- https://access.redhat.com/errata/RHSA-2014:0372
- https://access.redhat.com/errata/RHSA-2014:0374
- https://access.redhat.com/errata/RHSA-2014:0294
- https://access.redhat.com/errata/RHSA-2014:0216
- https://access.redhat.com/errata/RHSA-2014:1059
- https://access.redhat.com/errata/RHSA-2015:1009
- https://access.redhat.com/errata/RHSA-2015:1888
- https://access.redhat.com/errata/RHSA-2014:0389
Keywords