|
|
|||
Release Date:2015/12/23
Attack Name:EXPLOIT Oracle WebLogic Server Commons-Collections Library Insecure Deserialization -5 (CVE-2015-4852)
Severity:
BUG ID:
CVE ID:
| Description:
|
This vulnerability is due to deseralization of untrusted data while having the vulnerable version of Apache Commons-Collections library in the code path.
Impact:Remote code execution
Affected System:Others
Additional References:CVE-2015-4852
| Solution:
|
Update vendor's patch.