Pega Platform 8.7.3 Remote Code Execution

Posted by deepcore on October 25, 2022 – 10:06 am

Pega Platform versions 8.1.0 through 8.7.3 suffer from a remote code execution vulnerability. If an on-premise installation of the Pega Platform is configured with the port for the JMX interface exposed to the Internet and port filtering is not properly configured, then it may be possible to upload serialized payloads to attack the underlying system. This does not affect systems running on PegaCloud due to its design and architecture.

This post is under “exploit” and has no respond so far.
If you enjoy this article, make sure you subscribe to my RSS Feed.

Post a reply

You must be logged in to post a comment.

« Email-Worm.Win32.Kipis.c MVID-2022-0652 File Write / Code Execution Backdoor.Win32.Delf.arh MVID-2022-0650 Authentication Bypass »

:: Deepquest ::

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

Pega Platform 8.7.3 Remote Code Execution

Post a reply

Tabs Switcher

Categories

Archives

Meta

BLOGROLL