IBM Operational Decision Manager - Java Deserialization (CVE-2024-22320)
收藏pentest-tools.com2025-03-26 收录
下载链接:
https://pentest-tools.com/vulnerabilities-exploits/undefined
下载链接
链接失效反馈官方服务:
资源简介:
IBM Operational Decision Manager 8.10.3, 8.10.4, 8.10.5.1, 8.11, 8.11.0.1, and 8.12.0.1 could allow a remote authenticated attacker to execute arbitrary code on the system, caused by an unsafe deserialization. By sending specially crafted request, an attacker could exploit this vulnerability to execute arbitrary code in the context of SYSTEM. IBM X-Force ID: 279146.
IBM运营决策管理器8.10.3、8.10.4、8.10.5.1、8.11、8.11.0.1以及8.12.0.1版本可能允许远程认证攻击者利用不安全的反序列化执行任意代码,该漏洞通过发送精心构造的请求得以利用,攻击者可以在SYSTEM上下文中执行任意代码。IBM X-Force ID: 279146。
提供机构:
pentest-tools.com
