In Apache JMeter 2.X and 3.X, when using Distributed Test only (RMI based), jmeter server binds RMI Registry to wildcard host. This could allow an attacker to get Access to JMeterEngine and send unauthorized code.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: apache
Published: 2018-02-11T00:00:00
Updated: 2019-06-09T10:06:03
Reserved: 2017-12-07T00:00:00
Link: CVE-2018-1287
JSON object: View
NVD Information
Status : Modified
Published: 2018-02-14T14:29:00.210
Modified: 2023-11-07T02:55:54.973
Link: CVE-2018-1287
JSON object: View
Redhat Information
No data.
CWE