Apache » Jmeter » 2.11 : Security Vulnerabilities, CVEs,

cpe:2.3:a:apache:jmeter:2.11:*:*:*:*:*:*:*

CVE-2018-1297

When using Distributed Test only (RMI based), Apache JMeter 2.x and 3.x uses an unsecured RMI connection. This could allow an attacker to get Access to JMeterEngine and send unauthorized code.
Max CVSS
9.8
EPSS Score
0.39%
Published
2018-02-13
Updated
2019-10-03

CVE-2018-1287

In Apache JMeter 2.X and 3.X, when using Distributed Test only (RMI based), jmeter server binds RMI Registry to wildcard host. This could allow an attacker to get Access to JMeterEngine and send unauthorized code.
Max CVSS
9.8
EPSS Score
0.19%
Published
2018-02-14
Updated
2019-10-03
2 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close