Unsafe deserialization in JSCAPE MFT Server versions prior to 2023.1.9 (Windows, Linux, and MacOS) permits an attacker to run arbitrary Java code (including OS commands) via its management interface
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: rapid7

Published: 2023-09-07T17:39:42.355Z

Updated: 2024-08-02T07:31:06.559Z

Reserved: 2023-08-24T20:16:59.319Z

Link: CVE-2023-4528

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2023-09-07T18:15:07.797

Modified: 2024-11-21T08:35:21.220

Link: CVE-2023-4528

cve-icon Redhat

No data.