CVE-2014-1972
CVSS v2.0
7.8 (High)
EPSS
2.72 % (91th)
Affected Products
1
Advisories
1
Apache Tapestry before 5.3.6 relies on client-side object storage without checking whether a client has modified an object, which allows remote attackers to cause a denial of service (resource consumption) or execute arbitrary code via crafted serialized data.
Weaknesses
- CWE-399
- Resource Management Errors
- CVE Status
- PUBLISHED
- CNA
- JPCERT/CC
- Published Date
-
2015-08-22 23:59:00
(9 years ago) - Updated Date
-
2023-11-07 02:19:28
(10 months ago)
Affected Products
Loading...
Loading...
Configuration #1
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...