Vulnerability identifier: #VU78721
Vulnerability risk: High
Exploitation vector: Network
Exploit availability: No
Server applications / Frameworks for developing and running applications
The vulnerability allows a local user to escalate privileges.
The vulnerability exists due to improper privilege management. A local user can send specially crafted configuration-related classes on the classpath and exploit this vulnerability to execute arbitrary code with the privileges of the submitting user.
Install updates from vendor's website.
Vulnerable software versions
Can this vulnerability be exploited remotely?
Is there known malware, which exploits this vulnerability?