Apache Commons Text Remote Code Execution Vulnerabilities
Release Date: 18 Oct 2022
RISK: High Risk
TYPE: Servers - Web Servers
A vulnerability has been identified in Apache Commons Text. A remote user can exploit some of these vulnerabilities to trigger remote code execution on the targeted system.
Notes: Proof Of Concept Exploit Code Is Publicly Available for CVE-2022-42889
Impact
- Remote Code Execution
System / Technologies affected
- Apache Commons Text prior to 1.10.0
Solutions
Before installation of the software, please visit the vendor web-site for more details.
Apply fixes issued by the vendor:
- Apache Commons Text 1.10.0 or later
沒有留言:
發佈留言