CVE-2015-7501 POC (Proof-of-Concept)

Red Hat JBoss A-MQ 6.x, BPM Suite (BPMS) 6.x, BRMS 6.x and 5.x, Data Grid (JDG) 6.x, Data Virtualization (JDV) 6.x and 5.x, Enterprise Application Platform 6.x, 5.x, and 4.3.x, Fuse 6.x, Fuse Service Works (FSW) 6.x, Operations Network (JBoss ON) 3.x, Portal 6.x, SOA Platform (SOA-P) 5.x, Web Server (JWS) 3.x, Red Hat OpenShift/xPAAS 3.x, and Red Hat Subscription Asset Manager 1.3 allow remote attackers to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections (ACC) library.

Published: 2017-11-09

CVSS: 10.0

CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Download CVE-2015-7501 POC (Proof-of-Concept) here:

http://zeroday4n6aaxjruc5jgvulkdgy4mkioom5g6q7l3nz475a62vmamiyd.onion/exploit-for-cve-2015-7501.717/

Tip: Download official Tor Browser at https://www.torproject.org/download/ to access .onion links.

https://connollyfinan.ie/poc-695-cve-2022-21663/

https://connollyfinan.ie/poc-569-cve-2024-48910/

https://connollyfinan.ie/poc-539-cve-2025-66516/

https://connollyfinan.ie/poc-606-cve-2025-6218/

https://connollyfinan.ie/poc-706-cve-2025-5777/