Back to directory

WRITEUP #3626

Pre-auth RCE in ForgeRock OpenAM (CVE-2021-35464)

RCEInsecure deserialization

by@artsploit(Michael Stepankin)

Program

-

Published

Jun 29, 2021

Added to HackDex

Sep 15, 2022

Read Full Writeuphttps://portswigger.net/research/pre-auth-rce-in-forgerock-openam-cve-2021-35464

▸ RELATED WRITEUPS

Attacking PowerShell CLIXML Deserialization

DeserializationInsecure deserialization

Getting code execution on Veeam through CVE-2023-27532

RCEInsecure deserialization

3 ways to get Remote Code Execution in Kafka UI

RCEInsecure deserialization

Shelltorch Explained: Multiple Vulnerabilities in Pytorch Model Server (Torchserve) (CVSS 9.9, CVSS 9.8) Walkthrough

Vulnerabilities in Open Source C2 Frameworks

RCEOS command injection

Built with ❤️ by Shubham Rawat