CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2017-16670

The project import functionality in SoapUI 5.3.0 allows remote attackers to execute arbitrary Java code via a crafted request parameter in a WSDL project file.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 49.0%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 6.8

References

http://packetstormsecurity.com/files/146339/SoapUI-5.3.0-Code-Execution.html
http://packetstormsecurity.com/files/146339/SoapUI-5.3.0-Code-Execution.html

Products affected by CVE-2017-16670

Smartbear » Soapui » Version: 5.3.0

cpe:2.3:a:smartbear:soapui:5.3.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-16670

Products

Pricing

Contact Us