CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-31826

Skyscreamer Open Source Nevado JMS v1.3.2 does not perform security checks when receiving messages. This allows attackers to execute arbitrary commands via supplying crafted data.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 10.1%

CVSS Severity

CVSS v3 Score 7.8

References

http://nevado.skyscreamer.org/
https://github.com/skyscreamer/nevado/issues/121
https://github.com/skyscreamer/nevado/releases
https://novysodope.github.io/2023/04/01/95/
http://nevado.skyscreamer.org/
https://github.com/skyscreamer/nevado/issues/121
https://github.com/skyscreamer/nevado/releases
https://novysodope.github.io/2023/04/01/95/

Products affected by CVE-2023-31826

Skyscreamer » Nevado Jms » Version: 1.3.2

cpe:2.3:a:skyscreamer:nevado_jms:1.3.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-31826

Products

Pricing

Contact Us