Apache Xml Rpc
stack.watch can notify you when security vulnerabilities are reported in Apache Xml Rpc. You can add multiple products that you use with Xml Rpc to create your own personal software stack watcher.
By the Year
In 2020 there have been 1 vulnerability in Apache Xml Rpc with an average score of 9.8 out of ten. Last year Xml Rpc had 0 security vulnerabilities published. That is, 1 more vulnerability have already been reported in 2020 as compared to last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2020 | 1 | 9.80 |
| 2019 | 0 | 0.00 |
| 2018 | 0 | 0.00 |
It may take a day or so for new Xml Rpc vulnerabilities to show up. Additionally vulnerabilities may be tagged under a different product or component name.
Latest Apache Xml Rpc Security Vulnerabilities
An untrusted deserialization was found in the org.apache.xmlrpc.parser.XmlRpcResponseParser:addResult method of Apache XML-RPC (aka ws-xmlrpc) library. A malicious XML-RPC server could target a XML-RPC client causing it to execute arbitrary code. Apache XML-RPC is no longer maintained and this issue will not be fixed
CVE-2019-17570
9.8 - Critical
- January 23, 2020
An untrusted deserialization was found in the org.apache.xmlrpc.parser.XmlRpcResponseParser:addResult method of Apache XML-RPC (aka ws-xmlrpc) library. A malicious XML-RPC server could target a XML-RPC client causing it to execute arbitrary code. Apache XML-RPC is no longer maintained and this issue will not be fixed.
Marshaling, Unmarshaling