Description

JFrog Artifactory before 4.11 allows remote attackers to execute arbitrary code via an LDAP attribute with a crafted serialized Java object, aka LDAP entry poisoning.

Remediation

References

CVE-2016-6501

Related Vulnerabilities

MediaWiki CVE-2022-28206 Vulnerability (CVE-2022-28206)

WordPress Plugin Zingiri Web Shop Cross-Site Scripting (2.4.2)

WordPress Plugin InPost Gallery Multiple Vulnerabilities (2.1.2)

Dolibarr Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-3935)

PHP Resource Management Errors Vulnerability (CVE-2011-1148)

Severity

Critical

Classification

CVE-2016-6501 CWE-20 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities