In Eclipse Glassfish 5 or 6, running with old versions of JDK (lower than 6u211, or < 7u201, or < 8u191), allows remote attackers to load malicious code on the server via access to insecure ORB listeners.
References
Link | Resource |
---|---|
https://gitlab.eclipse.org/security/cve-assignement/-/issues/14 | Issue Tracking Vendor Advisory |
https://glassfish.org/docs/latest/security-guide.html#securing-glassfish-server | Product |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: eclipse
Published: 2023-11-03T06:40:43.441Z
Updated: 2023-11-03T06:40:43.441Z
Reserved: 2023-10-25T04:59:21.006Z
Link: CVE-2023-5763
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-11-03T07:15:14.617
Modified: 2023-11-13T19:55:13.637
Link: CVE-2023-5763
JSON object: View
Redhat Information
No data.