Unsafe deserialization in JSCAPE MFT Server versions prior to 2023.1.9 (Windows, Linux, and MacOS) permits an attacker to run arbitrary Java code (including OS commands) via its management interface
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: rapid7
Published: 2023-09-07T17:39:42.355Z
Updated: 2024-08-02T07:31:06.559Z
Reserved: 2023-08-24T20:16:59.319Z
Link: CVE-2023-4528
Vulnrichment
No data.
NVD
Status : Modified
Published: 2023-09-07T18:15:07.797
Modified: 2024-11-21T08:35:21.220
Link: CVE-2023-4528
Redhat
No data.