CVE-2014-3518: Code Injection

July 22, 2014 (updated July 23, 2014)

jmx-remoting.sar in JBoss Remoting does not properly implement the JSR specification, which allows remote attackers to execute arbitrary code via unspecified vectors.

References

bugzilla.redhat.com/CVE-2014-3518

Code Behaviors & Features

Detect and mitigate CVE-2014-3518 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →