Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

Veracode
Veracodeadded 2024/02/12 12:45 p.m.20 views

Drive-by Localhost Attack

micronaut server is vulnerable to Drive-by Localhost Attack. The vulnerability is caused when unsecured management endpoints are enabled, which are susceptible to malicious HTTP requests from a compromised websites targeting localhost drive by localhost attack. The issue arises because some...

7.8CVSS6.9AI score0.00036EPSS
Exploits0References4Affected Software3
OSV
OSVadded 2024/02/09 3:19 p.m.0 views

GHSA-583G-G682-CRXF Micronaut management endpoints vulnerable to drive-by localhost attack

Summary Enabled but unsecured management endpoints are susceptible to drive-by localhost attacks. While not typical of a production application, these attacks may have more impact on a development environment where such endpoints may be flipped on without much thought. Details A...

5.1CVSS5.9AI score0.00036EPSS
Exploits0References6
RedHat Linux
RedHat Linuxadded 2022/12/14 1:15 p.m.3 views

quarkus_dev_ui: Dev UI Config Editor is vulnerable to drive-by localhost attacks leading to RCE

A vulnerability was found in quarkus. This issue occurs in Dev UI Config Editor, which is vulnerable to drive-by localhost attacks leading to remote code execution...

9.8CVSS6.1AI score0.029EPSS
Exploits0References4
RedHat Linux
RedHat Linuxadded 2022/12/13 1:20 p.m.4 views

quarkus_dev_ui: Dev UI Config Editor is vulnerable to drive-by localhost attacks leading to RCE

A vulnerability was found in quarkus. This issue occurs in Dev UI Config Editor, which is vulnerable to drive-by localhost attacks leading to remote code execution...

9.8CVSS6.1AI score0.029EPSS
Exploits0References4
Veracode
Veracodeadded 2022/11/30 4:15 a.m.33 views

Remote Code Execution (RCE)

quarkus-vertx-http is vulnerable to remote code execution. The vulnerability exists in multiple functions due to drive-by localhost attacks which allows an attacker to inject and execute malicious query parameters via the Dev UI Config Editor...

9.8CVSS9.5AI score0.029EPSS
Exploits0References7Affected Software2
OSV
OSVadded 2022/11/22 9:30 p.m.19 views

GHSA-G56W-CWG4-HXX9 Code injection in quarkus dev ui config editor

A vulnerability was found in quarkus. This security flaw happens in Dev UI Config Editor which is vulnerable to drive-by localhost attacks leading to remote code execution...

9.8CVSS8.7AI score0.029EPSS
Exploits0References6
OSV
OSVadded 2022/11/22 7:15 p.m.22 views

CVE-2022-4116

A vulnerability was found in quarkus. This security flaw happens in Dev UI Config Editor which is vulnerable to drive-by localhost attacks leading to remote code execution...

9.8CVSS9.7AI score0.029EPSS
Exploits0References1
Cvelist
Cvelistadded 2022/11/22 12:0 a.m.17 views

CVE-2022-4116

A vulnerability was found in quarkus. This security flaw happens in Dev UI Config Editor which is vulnerable to drive-by localhost attacks leading to remote code execution...

9.9AI score0.029EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2022/11/22 12:0 a.m.3 views

PT-2022-6100 · Quarkus · Quarkus

Name of the Vulnerable Software and Affected Versions: quarkus affected versions not specified Description: The issue is related to the Dev UI Config Editor component of the quarkus Java framework, which is vulnerable to remote code execution due to incorrect code generation management. This can...

9.8CVSS8AI score0.029EPSS
Exploits0References20
Rows per page
Query Builder