Rewterz Threat Alert – Donot APT Group – IOCs
July 30, 2021Rewterz Threat Alert – DanaBot Trojan – Active IOCs
July 30, 2021Rewterz Threat Alert – Donot APT Group – IOCs
July 30, 2021Rewterz Threat Alert – DanaBot Trojan – Active IOCs
July 30, 2021Severity
High
Analysis Summary
CVE-2021-37578
Apache jUDDi could allow a remote authenticated attacker to execute arbitrary code on the system, caused by unsafe deserialization when passing parameters in RMI invocations. By sending a specially-crafted serialized object, an attacker could exploit this vulnerability to execute arbitrary code on the system.
Impact
- Code Execution
Affected Vendors
Apache
Affected Products
- Apache jUDDI 3.3.9
Remediation
Upgrade to the latest version of Apache jUDDI, available from the Apache Web site.