Trusted Design

• 重大度: Unknown
• 公開日: 2017-10-04
• 更新日: 2025-10-21

概要

In Jboss Application Server as shipped with Red Hat Enterprise Application Platform 5.2, it was found that the doFilter method in the ReadOnlyAccessFilter of the HTTP Invoker does not restrict classes for which it performs deserialization and thus allowing an attacker to execute arbitrary code via crafted serialized data.

このCVEに関連するMITRE ATT&CKテクニック

• T1557 - Adversary-in-the-Middle
• T1003.002 - Security Account Manager
• T1588.004 - Digital Certificates
• T1583.002 - DNS Server
• T1114.001 - Local Email Collection
• T1192 - Spearphishing Link
• T1121 - Regsvcs/Regasm
• T1652 - Device Driver Discovery
• T1484.002 - Trust Modification
• T1070.002 - Clear Linux or Mac System Logs
• T1598.003 - Spearphishing Link
• T1583.005 - Botnet
• T1558 - Steal or Forge Kerberos Tickets
• T1050 - New Service
• T1518.002 - Backup Software Discovery
• T1525 - Implant Internal Image
• T1562.004 - Disable or Modify System Firewall
• T1145 - Private Keys
• T1155 - AppleScript
• T1547.003 - Time Providers
• T1042 - Change Default File Association
• T1598.004 - Spearphishing Voice
• T1177 - LSASS Driver
• T1055.013 - Process Doppelgänging
• T1546.008 - Accessibility Features
• T1204.005 - Malicious Library
• T1027.017 - SVG Smuggling
• T1649 - Steal or Forge Authentication Certificates
• T1218.005 - Mshta
• T1608.005 - Link Target
• T1480 - Execution Guardrails
• T1654 - Log Enumeration
• T1496.004 - Cloud Service Hijacking
• T1546.001 - Change Default File Association
• T1679 - Selective Exclusion
• T1534 - Internal Spearphishing
• T1052.001 - Exfiltration over USB
• T1219.003 - Remote Access Hardware
• T1001 - Data Obfuscation
• T1601 - Modify System Image
• T1486 - Data Encrypted for Impact
• T1213.004 - Customer Relationship Management Software
• T1137.004 - Outlook Home Page
• T1499 - Endpoint Denial of Service
• T1027.004 - Compile After Delivery
• T1090.004 - Domain Fronting
• T1213.003 - Code Repositories
• T1543.001 - Launch Agent
• T1223 - Compiled HTML File
• T1111 - Multi-Factor Authentication Interception
• T1538 - Cloud Service Dashboard
• T1055.008 - Ptrace System Calls
• T1653 - Power Settings
• T1137.002 - Office Test
• T1204.001 - Malicious Link
• T1086 - PowerShell
• T1127 - Trusted Developer Utilities Proxy Execution

このCVEが関連しているPulses

• New Python-Based Crypto-Miner Botnet Flying Under the Radar

CVEの関係性グラフ

---

← CVE一覧に戻る