The Sitecore Rocks plugin before 2.1.149 for Sitecore allows an unauthenticated threat actor to inject malicious commands and code via the Sitecore Rocks Hard Rocks...
9.8CVSS
9.7AI Score
0.004EPSS
Rocks Clusters 4.1 and earlier allows local users to gain privileges via commands enclosed with escaped backticks (`) in an argument to the (1) mount-loop (mount-loop.c) or (2) umount-loop (umount-loop.c) command, which is not filtered in a system function...
7.2AI Score
0.0004EPSS