CyberSec.Space Logo
Back to CVE Browser

CVE-2016-8736

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.1300%
EPSS Percentile44.60th
PublishedOct 12, 2017
Last ModifiedMay 13, 2026

Vulnerability Description

Apache OpenMeetings before 3.1.2 is vulnerable to Remote Code Execution via RMI deserialization attack.

Affected Platforms (CPE)

πŸ“¦
Apache

Openmeetings

< 3.1.2

References & Advisories

πŸ”— http://openmeetings.markmail.org/thread/tr47byaaopnemvne
πŸ”— http://www.securityfocus.com/bid/94145
πŸ”— http://openmeetings.markmail.org/thread/tr47byaaopnemvne
πŸ”— http://www.securityfocus.com/bid/94145

Related Vulnerabilities

CVE-2017-766410.0

Uploaded XML documents were not correctly validated in Apache OpenMeetings 3.1.0.

CVE-2017-76739.8

Apache OpenMeetings 1.0.0 uses not very strong cryptographic storage, captcha is not used in registration and forget password dial...

CVE-2017-76668.8

Apache OpenMeetings 1.0.0 is vulnerable to Cross-Site Request Forgery (CSRF) attacks, XSS attacks, click-jacking, and MIME based a...

CVE-2017-76818.8

Apache OpenMeetings 1.0.0 is vulnerable to SQL injection. This allows authenticated users to modify the structure of the existing ...