A deserialization vulnerability in NettyRpc v1.2 allows attackers to execute arbitrary commands via sending a crafted RPC request.
References
Link | Resource |
---|---|
https://github.com/luxiaoxun/NettyRpc | Product |
https://github.com/luxiaoxun/NettyRpc/issues/53 | Exploit |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2023-12-01T00:00:00
Updated: 2023-12-01T22:26:57.648054
Reserved: 2023-11-20T00:00:00
Link: CVE-2023-48886
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-12-01T23:15:07.920
Modified: 2023-12-06T20:20:06.700
Link: CVE-2023-48886
JSON object: View
Redhat Information
No data.
CWE