Unspecified Vulnerability in Oracle GlassFish Server and Java System Application Server
CVE-2011-0807

Currently unrated

Key Information:

Vendor
Oracle
Vendor
CVE Published:
20 April 2011

Badges

👾 Exploit Exists🟡 Public PoC🟣 EPSS 88%

Summary

An unspecified vulnerability has been identified in Oracle's GlassFish Enterprise Server and Java System Application Server, which could allow remote attackers to disrupt the confidentiality, integrity, and availability of the affected systems. This weakness is associated with unidentified vectors within the administration interface, potentially enabling unauthorized access or manipulation of server operations.

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

References

EPSS Score

88% chance of being exploited in the next 30 days.

Timeline

  • 🟡

    Public PoC available

  • 👾

    Exploit known to exist

  • Vulnerability published

  • Vulnerability Reserved

.