CVE-2018-9471 - Apache Tomcat NanoAppFilter Java Deserialization-Type Confusion Local Privilege Escalation Vulnerability
CVE ID : CVE-2018-9471
Published : Nov. 20, 2024, 6:15 p.m. | 1 hour, 28 minutes ago
Description : In the deserialization constructor of NanoAppFilter.java, there is a possible loss of data due to type confusion. This could lead to local escalation of privilege in the system server with no additional execution privileges needed. User interaction is not needed for exploitation.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
Published : Nov. 20, 2024, 6:15 p.m. | 1 hour, 28 minutes ago
Description : In the deserialization constructor of NanoAppFilter.java, there is a possible loss of data due to type confusion. This could lead to local escalation of privilege in the system server with no additional execution privileges needed. User interaction is not needed for exploitation.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...