A deserialization vulnerability in Jupiter v1.3.1 allows attackers to execute arbitrary commands via sending a crafted RPC request.
References
Link | Resource |
---|---|
https://github.com/fengjiachun/Jupiter | Product |
https://github.com/fengjiachun/Jupiter/issues/115 | Exploit |
https://github.com/welk1n/JNDI-Injection-Exploit/releases/tag/v1.0 | Not Applicable |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2023-12-01T00:00:00
Updated: 2023-12-01T22:30:24.851553
Reserved: 2023-11-20T00:00:00
Link: CVE-2023-48887
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-12-01T23:15:07.967
Modified: 2023-12-06T20:14:56.987
Link: CVE-2023-48887
JSON object: View
Redhat Information
No data.
CWE