2015 年 04 月 14 日,微软发布严重级别的安全公告 MS15-034,编号为 CVE-2015-1635,据称在 Http.sys 中的漏洞可能允许远程执行代码。 2. 漏洞描述 CWE: CWE-119 CVE: CVE-2015-1635 Http.sys 是一个位于 Windows 操作系统核心组件,能够让任何应用程序通过它提供的接口,以 Http 协议
Recently, Apache Tomcat issued a security notice regarding a remote code execution vulnerability (CVE-2024-50379) in certain versions. This vulnerability stems from a flaw in verifying file paths. If the default servlet is write enabled (readonly initialisation parameter set to the non-default ...
A remote code execution vulnerability exists in Microsoft Visual Studio 2019 and Visual Studio 2017 if an XOML (Extensible Object Markup Language) file references certain types and causes random code to be run when the file is opened in Visual Studio. There is now a restriction on which ...
Archer AX21 will automatically receive update notifications in the web administration interface and Tether application.TP-Link strongly recommends that you download and update to the latest firmware for this product model as soon as possible. Disclaimer The vulnerability will remain if you do not take...
Remote Code Execution (RCE) vulnerability in geoserver Critical severity GitHub Reviewed Published Jul 1, 2024 in geoserver/geoserver • Updated Mar 19, 2025 Vulnerability details Dependabot alerts 0 Package org.geoserver.web:gs-web-app (Maven) ...
IBM WebSphere Application Server traditional is vulnerable to a remote code execution vulnerability. This has been addressed. Vulnerability Details CVEID:CVE-2023-23477 DESCRIPTION: IBM WebSphere Application Server traditional could allow a remote attacker to execute arbitrary code on the system with a...
Recently, researchers discovered that the Apache Log4j2 Java module has a remote code execution high-risk vulnerability (CVE-2021-44228). Because this module is universally used in middleware, development frameworks, and web applications, this vulnerability is considered a...
Microsoft SharePoint Remote Code Execution Vulnerability On this page CVE-2020-17121 Subscribe RSS PowerShell API CSAFSecurity Vulnerability Released: Dec 8, 2020 Assigning CNA Microsoft CVE.org link CVE-2020-17121 Exploitability The following table provides an exploitability assessment ...
这是一个可疑的可远程执行代码的应用。 下面是关于这个问题的具体的描述: A remote code execution vulnerability exists in the remote SAP Gateway as a result of allowing non-SAP applications to communicate with, and potentially run OS commands on SAP applications. An unauthenticated attacker can run the...
Cybersecurity experts have uncovered a critical Remote Code Execution (RCE) vulnerability in Splunk, the data analytics platform that forms the backbone of many corporate IT infrastructures. Identified as CVE-2023-46214, this flaw could potentially allow attackers to infiltrate and seize control of sys...