National Vulnerability Database

National Vulnerability Database

National Vulnerability
Database

Search Results (Refine Search)

Search Parameters:
  • Contains Software Flaws (CVE)
  • CPE Product Version: cpe:/a:oracle:communications_online_mediation_controller:6.1
There are 1 matching records.
Vuln ID Summary CVSS Severity
CVE-2017-5645

In Apache Log4j 2.x before 2.8.2, when using the TCP socket server or UDP socket server to receive serialized log events from another application, a specially crafted binary payload can be sent that, when deserialized, can execute arbitrary code.

Published: April 17, 2017; 05:59:00 PM -04:00
V3.0: 9.8 CRITICAL
    V2: 7.5 HIGH