CVE Catalog

A vulnerability exists in several IBM products, including WebSphere Application Server, Cognos Controller, Watson Explorer, Watson Content Analytics, and Sterling B2B Integrator. This vulnerability arises from the deserialization of Java objects by the Apache Commons Collections library, specifically the InvokerTransformer class, which can lead to arbitrary code execution on the affected system.

A vulnerability in the Oracle Java SE Deployment component has been identified, allowing remote attackers to modify data. This issue affects multiple versions of Oracle Java SE, including 6u101, 7u85, and 8u60. The vulnerability arises from unspecified vectors related to the deployment component, which is responsible for managing the execution of Java applications in a web environment.

A deserialization vulnerability has been identified in the Libraries component of Oracle Java SE and Java SE Embedded. This vulnerability allows remote attackers to impact the confidentiality, integrity, and availability of the affected system. The issue arises in specific versions of Oracle Java SE (6u95, 7u80, and 8u45) and Java SE Embedded (7u75 and 8u33). The vulnerability can be exploited by an untrusted Java application or applet that bypasses Java sandbox restrictions.

A vulnerability in the XPC implementation of the Admin Framework in Apple OS X versions prior to 10.10.3 allows local users to bypass authentication and gain administrative privileges. This issue arises from inadequate entitlement checking in the XPC implementation, which can be exploited through unspecified vectors.

A heap-based buffer overflow vulnerability has been identified in the IOHIDFamily component of Apple iOS (prior to 8) and Apple TV (prior to 7). This vulnerability allows attackers to execute arbitrary code with system privileges by exploiting crafted key-mapping properties through an application.

A directory traversal vulnerability has been identified in Ruby on Rails versions prior to 3.2.18, 4.0.x prior to 4.0.5, and 4.1.x prior to 4.1.1. The vulnerability exists in the implicit-render implementation of Action Pack, specifically within the abstract controller base. When certain route globbing configurations are enabled, remote attackers can read arbitrary files by sending a crafted request that exploits this directory traversal flaw.

A cross-site scripting (XSS) vulnerability has been identified in the WebVPN login page of Cisco Adaptive Security Appliance (ASA) Software. This vulnerability allows remote attackers to inject arbitrary web scripts or HTML through an unspecified parameter.

A remote code execution vulnerability has been identified in Apache Struts versions 2.0.0 through 2.3.15. This vulnerability allows attackers to execute arbitrary OGNL expressions by sending crafted requests with specific prefixes, such as action:, redirect:, or redirectAction:. The issue arises from inadequate sanitization of user input, enabling the execution of malicious code on the server.

A vulnerability has been identified in the Java Runtime Environment (JRE) component of Oracle Java SE versions 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, as well as in OpenJDK 7. This vulnerability allows remote attackers to manipulate confidentiality, integrity, and availability by exploiting unknown vectors related to 2D image processing. Specifically, it involves incorrect verification of image channels, which can be leveraged to bypass the Java sandbox in certain scenarios.

A vulnerability allowing untrusted Java applications or applets to bypass sandbox restrictions has been identified in the Java Runtime Environment (JRE) component of Oracle Java SE. This issue is present in versions 7 Update 7 and earlier. The vulnerability arises because the default Java security properties configuration did not restrict access to certain packages, specifically com.sun.org.glassfish.external and com.sun.org.glassfish.gmbal. Exploitation of this vulnerability could lead to unauthorized actions or access within the Java application environment, potentially allowing for the execution of malicious code or the manipulation of application data.

A vulnerability in the Java Runtime Environment (JRE) component of Oracle Java SE 7 Update 6 and earlier versions allows remote attackers to execute arbitrary code. This is achieved by exploiting a crafted applet that bypasses SecurityManager restrictions. The vulnerability arises from the use of 'com.sun.beans.finder.ClassFinder' to access restricted classes from arbitrary packages, such as 'sun.awt.SunToolkit'. The exploit then uses reflection to access and modify private fields, effectively disabling the security manager and allowing unrestricted execution of Java code. This vulnerability was actively exploited in the wild in August 2012.

A vulnerability has been identified in the Java Runtime Environment (JRE) component of Oracle Java SE. This vulnerability affects versions 7 update 4 and earlier, 6 update 32 and earlier, 5 update 35 and earlier, and 1.4.2_37 and earlier. The issue allows remote attackers to execute arbitrary code, potentially leading to unauthorized access and manipulation of data, as well as disruption of service. The vulnerability is related to the Hotspot component of the JRE.

A vulnerability in the Java Runtime Environment (JRE) component of Oracle Java SE has been identified, specifically in versions 7 Update 2 and earlier, 6 Update 30 and earlier, and 5.0 Update 33 and earlier. This vulnerability relates to the AtomicReferenceArray class, which does not properly verify that the array is of the expected Object[] type. As a result, remote attackers could exploit this flaw to cause a denial-of-service by crashing the Java Virtual Machine or to bypass Java's sandbox restrictions, which are designed to limit the capabilities of untrusted code.

A vulnerability exists in PHP versions prior to 5.3.12 and 5.4.x prior to 5.4.2, when PHP is run as a CGI script. The issue arises because the CGI executable improperly processes query strings that lack an equals sign, allowing remote attackers to inject command-line options that can be exploited to execute arbitrary code. This vulnerability is related to the 'd' command-line option and the way PHP's 'php_getopt' function handles query strings.

A remote code execution vulnerability has been identified in Apache Struts 2 versions prior to 2.2.3.1. The issue arises in the ExceptionDelegator component, where parameter values are incorrectly processed as OGNL expressions during exception handling related to data type mismatches. This flaw allows remote attackers to execute arbitrary Java code by crafting specific parameter values.

A vulnerability has been identified in the Java Runtime Environment (JRE) component of Oracle Java SE JDK and JRE 6 Update 27 and earlier, as well as JDK and JRE 7. This vulnerability allows remote, untrusted Java Web Start applications and applets to execute arbitrary code, potentially leading to unauthorized actions on behalf of the user.

A static code injection vulnerability has been identified in phpMyAdmin versions 2.11.x prior to 2.11.9.5 and 3.x prior to 3.1.3.1. This vulnerability allows remote attackers to inject arbitrary PHP code into a configuration file through the setup script, which can then be executed on the server.

A denial-of-service vulnerability has been identified in Apache Struts versions prior to 1.2.9, when used with BeanUtils 1.7. The issue arises in the ActionForm component, where remote attackers can exploit multipart/form-data encoded forms. By including a parameter that references the public getMultipartRequestHandler method, attackers may disrupt the application's normal operation, potentially causing it to crash or leading to unauthorized access to sensitive information.