Unsafe Deserialization Vulnerability in JSCAPE MFT Server Allows Arbitrary Code Execution

Unsafe Deserialization Vulnerability in JSCAPE MFT Server Allows Arbitrary Code Execution

CVE-2023-4528 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Unsafe deserialization in JSCAPE MFT Server versions prior to 2023.1.9 (Windows, Linux, and MacOS) permits an attacker to run arbitrary Java code (including OS commands) via its management interface

Learn more about our Cis Benchmark Audit For Apple Macos.