Exploit for #VU68307 Code Injection in Apache Commons Text
Vulnerability identifier: #VU68307
Vulnerability risk: High
CVSSv3.1: 9.1 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:F/RL:O/RC:C]
CVE-ID:
CWE-ID:
CWE-94
Exploitation vector: Network
Exploits in database: 24
- January 19, 2024
- Apache Commons Text RCE [Metasploit]
- October 24, 2023
- June 29, 2023
- March 28, 2023
- December 11, 2022
- November 21, 2022
- November 7, 2022
- November 4, 2022
- October 29, 2022
- text4shell-CVE-2022-42889 () [Github]
- October 26, 2022
- October 25, 2022
- October 23, 2022
- CVE-2022-42889-Text4Shell-Exploit-POC (CVE-2022-42889 Text4Shell Exploit POC) [Github]
- CVE-2022-42889 (python script for CVE-2022-42889) [Github]
- text4shell-poc (Proof of Concept Appliction for testing CVE-2022-42889) [Github]
- CVE-2022-42889 (CVE-2022-42889 dockerized sample application (Apache Commons Text RCE)) [Github]
- CVE-2022-42889-POC (A simple dockerize application that shows how to exploit the CVE-2022-42889 vulnerability.) [Github]
- October 20, 2022
- October 19, 2022
- CVE-2022-42889-POC (A simple application that shows how to exploit the CVE-2022-42889 vulnerability) [Github]
- CVE-2022-42899 () [Github]
- text4shell-policy (ClusterImagePolicy demo for cve-2022-42889 text4shell ) [Github]
- cve-2022-42889-text4shell-docker (Dockerized POC for CVE-2022-42889 Text4Shell) [Github]
Impact: Code execution
Vulnerable software:
Apache Commons Text
Universal components / Libraries /
Software for developers
Vendor: Apache Foundation
