VYPR

CWE-502

Deserialization of Untrusted Data

BaseDraftLikelihood: Medium

Description

The product deserializes untrusted data without sufficiently ensuring that the resulting data will be valid.

Hierarchy (View 1000)

Parents

Children

none

Related attack patterns (CAPEC)

CAPEC-586

CVEs mapped to this weakness (1,721)

page 40 of 87
  • CVE-2018-14720CriJan 2, 2019
    risk 0.57cvss 9.8epss 0.08

    FasterXML jackson-databind 2.x before 2.9.7 might allow attackers to conduct external XML entity (XXE) attacks by leveraging failure to block unspecified JDK classes from polymorphic deserialization.

  • CVE-2018-14719CriJan 2, 2019
    risk 0.57cvss 9.8epss 0.10

    FasterXML jackson-databind 2.x before 2.9.7 might allow remote attackers to execute arbitrary code by leveraging failure to block the blaze-ds-opt and blaze-ds-core classes from polymorphic deserialization.

  • CVE-2018-19296HigNov 16, 2018
    risk 0.57cvss 8.8epss 0.02

    PHPMailer before 5.2.27 and 6.x before 6.0.6 is vulnerable to an object injection attack.

  • CVE-2018-18628CriOct 23, 2018
    risk 0.57cvss 9.8epss 0.05

    An issue was discovered in Pippo 1.11.0. The function SerializationSessionDataTranscoder.decode() calls ObjectInputStream.readObject() to deserialize a SessionData object without checking the object types. An attacker can create a malicious object, base64 encode it, and place it…

  • CVE-2018-18240CriOct 11, 2018
    risk 0.57cvss 9.8epss 0.04

    Pippo through 1.11.0 allows remote code execution via a command to java.lang.ProcessBuilder because the XstreamEngine component does not use XStream's available protection mechanisms to restrict unmarshalling.

  • CVE-2016-9045HigSep 17, 2018
    risk 0.57cvss 8.8epss 0.02

    A code execution vulnerability exists in ProcessMaker Enterprise Core 3.0.1.7-community. A specially crafted web request can cause unsafe deserialization potentially resulting in PHP code being executed. An attacker can send a crafted web parameter to trigger this vulnerability.

  • CVE-2018-15514HigSep 1, 2018
    risk 0.57cvss 8.8epss 0.02

    HandleRequestAsync in Docker for Windows before 18.06.0-ce-rc3-win68 (edge) and before 18.06.0-ce-win72 (stable) deserialized requests over the \\.\pipe\dockerBackend named pipe without verifying the validity of the deserialized .NET objects. This would allow a malicious user in…

  • CVE-2018-8018CriJul 20, 2018
    risk 0.57cvss 9.8epss 0.07

    In Apache Ignite before 2.4.8 and 2.5.x before 2.5.3, the serialization mechanism does not have a list of classes allowed for serialization/deserialization, which makes it possible to run arbitrary code when 3-rd party vulnerable classes are present in Ignite classpath. The…

  • CVE-2018-1000613CriJul 9, 2018
    risk 0.57cvss 9.8epss 0.05

    Legion of the Bouncy Castle Legion of the Bouncy Castle Java Cryptography APIs 1.58 up to but not including 1.60 contains a CWE-470: Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection') vulnerability in XMSS/XMSS^MT private key deserialization that…

  • CVE-2017-18342CriJun 27, 2018
    risk 0.57cvss 9.8epss 0.06

    In PyYAML before 5.1, the yaml.load() API could execute arbitrary code if used with untrusted data. The load() function has been deprecated in version 5.1 and the 'UnsafeLoader' has been introduced for backward compatibility with the function.

  • CVE-2018-6497HigJun 16, 2018
    risk 0.57cvss 8.8epss 0.01

    Remote Cross-site Request forgery (CSRF) potential has been identified in UCMBD Server version DDM Content Pack V 10.20, 10.21, 10.22, 10.22 CUP7, 10.30, 10.31, 10.32, 10.33, 10.33 CUP2, 11.0 and CMS Server version 2018.05 BACKGROUND which could allow for remote unsafe…

  • CVE-2018-6496HigJun 16, 2018
    risk 0.57cvss 8.8epss 0.01

    Remote Cross-site Request forgery (CSRF) potential has been identified in UCMBD Browser version 4.10, 4.11, 4.12, 4.13, 4.14, 4.15, 4.15.1 which could allow for remote unsafe deserialization and cross-site request forgery (CSRF).

  • CVE-2018-1131HigMay 15, 2018
    risk 0.57cvss 8.8epss 0.01

    Infinispan permits improper deserialization of trusted data via XML and JSON transcoders under certain server configurations. A user with authenticated access to the server could send a malicious object to a cache configured to accept certain types of objects, achieving code…

  • CVE-2014-3539CriApr 6, 2018
    risk 0.57cvss 9.8epss 0.03

    base/oi/doa.py in the Rope library in CPython (aka Python) allows remote attackers to execute arbitrary code by leveraging an unsafe call to pickle.load.

  • CVE-2017-8967HigFeb 15, 2018
    risk 0.57cvss 8.8epss 0.02

    A Deserialization of Untrusted Data vulnerability in Hewlett Packard Enterprise Intelligent Management Center (iMC) PLAT version 7.3 E0504P2 was found.

  • CVE-2017-8966HigFeb 15, 2018
    risk 0.57cvss 8.8epss 0.03

    A Deserialization of Untrusted Data vulnerability in Hewlett Packard Enterprise Intelligent Management Center (iMC) PLAT version 7.3 E0504P2 was found.

  • CVE-2017-8965HigFeb 15, 2018
    risk 0.57cvss 8.8epss 0.02

    A Deserialization of Untrusted Data vulnerability in Hewlett Packard Enterprise Intelligent Management Center (iMC) PLAT version 7.3 E0504P2 was found.

  • CVE-2017-8964HigFeb 15, 2018
    risk 0.57cvss 8.8epss 0.02

    A Deserialization of Untrusted Data vulnerability in Hewlett Packard Enterprise Intelligent Management Center (iMC) PLAT version 7.3 E0504P2 was found.

  • CVE-2017-8963HigFeb 15, 2018
    risk 0.57cvss 8.8epss 0.02

    A Deserialization of Untrusted Data vulnerability in Hewlett Packard Enterprise Intelligent Management Center (iMC) PLAT version 7.3 E0504P2 was found.

  • CVE-2017-8962HigFeb 15, 2018
    risk 0.57cvss 8.8epss 0.03

    A Deserialization of Untrusted Data vulnerability in Hewlett Packard Enterprise Intelligent Management Center (iMC) PLAT version 7.3 E0504P2 was found.