VDB
RHSA-2020%3A0310
RHSA-2020%3A0310
PUBLISHED
CVSS 9.800000190734863 CRITICAL
An update for rh-java-common-xmlrpc is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Risk Scores
CVSS 3.1
9.800000190734863
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7) | ||
| Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6) | ||
| rh | ||
| Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6) | ||
| Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5) | ||
| Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6) | ||
| Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.7) | ||
| Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7) |
Exploit Intelligence
- xmlrpc common deserialization vulnerability (github-poc-repo)
- xmlrpc common deserialization vulnerability (github-poc-repo)
- xmlrpc common deserialization vulnerability (github-poc-repo)
- CVE-2019-17570 details and proof of concept (github-poc)
- CVE-2019-17570 details and proof of concept (github-poc)
- CVE-2019-17570 details and proof of concept (github-poc)
- xmlrpc common deserialization vulnerability (github-poc)
- xmlrpc common deserialization vulnerability (github-poc)
- xmlrpc common deserialization vulnerability (github-poc)
- https://access.redhat.com/errata/RHSA-2020:0310 (circl)
…and 3 more exploits
Timeline
- Jan 30, 2020 CVE Published
- Nov 15, 2024 CVE Updated
- Apr 30, 2026 Distribution Patch
- Apr 30, 2026 Distribution Patch
- Apr 30, 2026 Security Advisory
- Apr 30, 2026 Security Advisory