Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
commons collections vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2016-4373
The AdminUI in HPE Operations Manager (OM) prior to 9.21.130 on Linux, Unix, and Solaris allows remote malicious users to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections (ACC) library.
Hp Operations Manager 9.20.0
Hp Operations Manager
9.8
CVSSv3
CVE-2016-4372
HPE iMC PLAT prior to 7.2 E0403P04, iMC EAD prior to 7.2 E0405P05, iMC APM prior to 7.2 E0401P04, iMC NTA prior to 7.2 E0401P01, iMC BIMS prior to 7.2 E0402P02, and iMC UAM_TAM prior to 7.2 E0405P05 allow remote malicious users to execute arbitrary commands via a crafted serializ...
Hp Intelligent Management Center User Access Management
Hp Intelligent Management Center Platform
Hp Intelligent Management Center Network Traffic Analyzer
Hp Intelligent Management Center Endpoint Admission Defense
Hp Intelligent Management Center Branch Intelligent Management System
Hp Intelligent Management Center Application Performance Manager
1 EDB exploit
9.8
CVSSv3
CVE-2016-3642
The RMI service in SolarWinds Virtualization Manager 6.3.1 and previous versions allows remote malicious users to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections (ACC) library.
Solarwinds Virtualization Manager
8.8
CVSSv3
CVE-2016-4369
HPE Discovery and Dependency Mapping Inventory (DDMi) 9.30, 9.31, 9.32, 9.32 update 1, 9.32 update 2, and 9.32 update 3 allows remote authenticated users to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections library.
Hp Discovery And Dependency Mapping Inventory 9.31
Hp Discovery And Dependency Mapping Inventory 9.30
Hp Discovery And Dependency Mapping Inventory 9.32
9.8
CVSSv3
CVE-2016-4368
HPE Universal CMDB 10.0 up to and including 10.21, Universal CMDB Configuration Manager 10.0 up to and including 10.21, and Universal Discovery 10.0 up to and including 10.21 allow remote malicious users to execute arbitrary commands via a crafted serialized Java object, related ...
Hp Universal Cmbd Foundation 10.20
Hp Universal Cmbd Foundation 10.11
Hp Universal Cmbd Foundation 10.10
Hp Universal Cmbd Foundation 10.01
Hp Universal Cmbd Foundation 10.0
Hp Universal Cmbd Foundation 10.21
Hp Universal Cmbd Configuration Manager 10.10
Hp Universal Cmbd Configuration Manager 10.11
Hp Universal Cmbd Configuration Manager 10.20
Hp Universal Cmbd Configuration Manager 10.21
Hp Universal Cmbd Configuration Manager 10.01
Hp Universal Cmbd Configuration Manager 10.0
Hp Universal Discovery 10.11
Hp Universal Discovery 10.20
Hp Universal Discovery 10.21
Hp Universal Discovery 10.01
Hp Universal Discovery 10.0
Hp Universal Discovery 10.10
9.8
CVSSv3
CVE-2016-1999
The server in HP Release Control 9.13, 9.20, and 9.21 allows remote malicious users to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections library.
Hp Release Control 9.21
Hp Release Control 9.20
Hp Release Control 9.13
9.8
CVSSv3
CVE-2016-1114
Adobe ColdFusion 10 before Update 19, 11 before Update 8, and 2016 before Update 1 allows remote malicious users to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections library.
Adobe Coldfusion 10.0
Adobe Coldfusion 11.0
Adobe Coldfusion 2016
8.8
CVSSv3
CVE-2016-2009
HPE Network Node Manager i (NNMi) 9.20, 9.23, 9.24, 9.25, 10.00, and 10.01 allows remote authenticated users to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections (ACC) library.
Hp Network Node Manager I 10.00
Hp Network Node Manager I 9.24
Hp Network Node Manager I 9.20
Hp Network Node Manager I 10.01
Hp Network Node Manager I 9.25
Hp Network Node Manager I 9.23
9.8
CVSSv3
CVE-2016-2003
HPE P9000 Command View Advanced Edition Software (CVAE) 7.x and 8.x prior to 8.4.0-00 and XP7 CVAE 7.x and 8.x prior to 8.4.0-00 allow remote malicious users to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections (ACC) librar...
Hp Xp7 Command View Advanced Edition Suite -
Hp P9000 Command View Advanced Edition Software -
9.8
CVSSv3
CVE-2016-2170
Apache OFBiz 12.04.x prior to 12.04.06 and 13.07.x prior to 13.07.03 allow remote malicious users to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections library.
Apache Ofbiz
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
deserialization
CVE-2024-4040
cross-site scripting
CVE-2023-25790
CVE-2024-2961
XML external entity
CVE-2024-26926
CVE-2024-32806
CVE-2024-32711
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »