Vulnerabilities > Apache > Synapse

DATE CVE VULNERABILITY TITLE RISK
2017-12-11 CVE-2017-15708 Injection vulnerability in multiple products
In Apache Synapse, by default no authentication is required for Java Remote Method Invocation (RMI).
network
low complexity
apache oracle CWE-74
critical
9.8