16 matches found
Exploit for Code Injection in Geosolutionsgroup Jai-Ext
Uso del script CVE-2022-24816 Requisitos previos 1. Clo...
GeoSolutionsGroup JAI-EXT JAR Installed Packages (Windows)
Binary data geosolutionsjaiextwininstalled.nbin...
GeoServer Jai-EXT RCE (CVE-2022-24816)
Binary data geoserverjaiextCVE-2022-24816.nbin...
GeoServer JAI-EXT extension command injection
Added: 06/27/2024 Background GeoServer is an open source server for sharing geospatial data. Java Advanced Imaging JAI is an API which provides a set of high level objects for the image processing. JAI-EXT is an open source project which extends the JAI API. Jiffle is a map algebra language...
GeoServer JAI-EXT extension command injection
Added: 06/27/2024 Background GeoServer is an open source server for sharing geospatial data. Java Advanced Imaging JAI is an API which provides a set of high level objects for the image processing. JAI-EXT is an open source project which extends the JAI API. Jiffle is a map algebra language...
OSGeo GeoServer JAI-EXT Code Injection Vulnerability
OSGeo GeoServer JAI-EXT contains a code injection vulnerability that, when programs use jt-jiffle and allow Jiffle script to be provided via network request, could allow remote code execution...
Improper Control of Generation of Code ('Code Injection') in jai-ext
Impact Programs using jt-jiffle, and allowing Jiffle script to be provided via network request, are susceptible to a Remote Code Execution as the Jiffle script is compiled into Java code via Janino, and executed. In particular, this affects the downstream GeoServer project. Patches Version 1.2.22...
CVE-2022-24816
JAI-EXT is an open-source project which aims to extend the Java Advanced Imaging JAI API. Programs allowing Jiffle script to be provided via network request can lead to a Remote Code Execution as the Jiffle script is compiled into Java code via Janino, and executed. In particular, this affects th...
Remote code execution
JAI-EXT is an open-source project which aims to extend the Java Advanced Imaging JAI API. Programs allowing Jiffle script to be provided via network request can lead to a Remote Code Execution as the Jiffle script is compiled into Java code via Janino, and executed. In particular, this affects th...
CVE-2022-24816 Improper Control of Generation of Code in jai-ext
JAI-EXT is an open-source project which aims to extend the Java Advanced Imaging JAI API. Programs allowing Jiffle script to be provided via network request can lead to a Remote Code Execution as the Jiffle script is compiled into Java code via Janino, and executed. In particular, this affects th...
CVE-2022-24816 Improper Control of Generation of Code in jai-ext
JAI-EXT is an open-source project which aims to extend the Java Advanced Imaging JAI API. Programs allowing Jiffle script to be provided via network request can lead to a Remote Code Execution as the Jiffle script is compiled into Java code via Janino, and executed. In particular, this affects th...
CVE-2022-24816
CVE-2022-24816 (JAI-EXT/Jai-EXT) affects GeoServer ecosystems where JAI-EXT allows a Jiffle script to be supplied over a network and then compiled to Java code via Janino, enabling Remote Code Execution. The GeoServer downstream is specifically noted. The known remediation is that version 1.2.22 ...
CVE-2022-24816 Improper Control of Generation of Code in jai-ext
JAI-EXT is an open-source project which aims to extend the Java Advanced Imaging JAI API. Programs allowing Jiffle script to be provided via network request can lead to a Remote Code Execution as the Jiffle script is compiled into Java code via Janino, and executed. In particular, this affects th...
CVE-2022-24816
JAI-EXT is an open-source project which aims to extend the Java Advanced Imaging JAI API. Programs allowing Jiffle script to be provided via network request can lead to a Remote Code Execution as the Jiffle script is compiled into Java code via Janino, and executed. In particular, this affects th...
PT-2022-16896 · Jai-Ext +2 · Jai-Ext +2
Name of the Vulnerable Software and Affected Versions: JAI-EXT versions prior to 1.2.22 GeoServer affected versions not specified Description: Programs allowing Jiffle script to be provided via network request can lead to a Remote Code Execution as the Jiffle script is compiled into Java code via...
JAI-EXT 代码注入漏洞
JAI-EXT is an API. capable of processing images in a multi-threaded environment. A code injection vulnerability exists in JAI-EXT that allows an attacker to request a program that provides Jiffle scripts over the network and cause remote code execution...