17 matches found
CVE-2024-40516
An issue in H3C Technologies Co., Limited H3C Magic RC3000 RC3000V100R009 allows a remote attacker to execute arbitrary code via the Routing functionality...
CVE-2024-40515
An issue in SHENZHEN TENDA TECHNOLOGY CO.,LTD Tenda AX2pro V16.03.29.48cn allows a remote attacker to execute arbitrary code via the Routing functionality...
CVE-2024-40515
An issue in SHENZHEN TENDA TECHNOLOGY CO.,LTD Tenda AX2pro V16.03.29.48cn allows a remote attacker to execute arbitrary code via the Routing functionality...
CVE-2024-40503
An issue in Tenda AX12 v.16.03.49.18cn+ allows a remote attacker to cause a denial of service via the Routing functionality and ICMP packet handling...
CVE-2024-40515
CVE-2024-40515 affects SHENZHEN TENDA TECHNOLOGY CO.,LTD Tenda AX2pro (V16.03.29.48_cn). The vulnerability allows remote code execution via the device’s Routing functionality. Multiple connected sources confirm a network-remote compromise with high impact (C/H/I/A). Root cause details are not exh...
PT-2024-28892 · Tenda · Tenda Ax2Pro
Name of the Vulnerable Software and Affected Versions: Tenda AX2pro version V16.03.29.48 cn Description: The issue allows a remote attacker to execute arbitrary code via the Routing functionality. Recommendations: For Tenda AX2pro version V16.03.29.48 cn, consider disabling the Routing...
CVE-2024-40516
CVE-2024-40516 affects H3C Magic RC3000 RC3000V100R009. The vulnerability exists in the Routing functionality and enables a remote attacker to execute arbitrary code. Reported severity is CVSS 3.1 base score 8.8 (HIGH) with adjacent attack vector, no privileges, no user interaction required, and ...
PT-2024-28893 · H3C · H3C Magic Rc3000
Name of the Vulnerable Software and Affected Versions: H3C Magic RC3000 version RC3000V100R009 Description: The issue allows a remote attacker to execute arbitrary code via the Routing functionality. Recommendations: For version RC3000V100R009, consider disabling the Routing functionality until a...
CVE-2024-40516
An issue in H3C Technologies Co., Limited H3C Magic RC3000 RC3000V100R009 allows a remote attacker to execute arbitrary code via the Routing functionality...
CVE-2024-40516
An issue in H3C Technologies Co., Limited H3C Magic RC3000 RC3000V100R009 allows a remote attacker to execute arbitrary code via the Routing functionality...
SUSE CVE-2022-22963
In Spring Cloud Function versions 3.1.6, 3.2.2 and older unsupported versions, when using routing functionality it is possible for a user to provide a specially crafted SpEL as a routing-expression that may result in remote code execution and access to local resources...
Exploit for Code Injection in Vmware Spring_Cloud_Function
CVE-2022-22963 Exploit Description In Spring Cloud Funct...
CVE-2022-22963
In Spring Cloud Function versions 3.1.6, 3.2.2 and older unsupported versions, when using routing functionality it is possible for a user to provide a specially crafted SpEL as a routing-expression that may result in remote code execution and access to local resources...
CVE-2022-22963
In Spring Cloud Function versions 3.1.6, 3.2.2 and older unsupported versions, when using routing functionality it is possible for a user to provide a specially crafted SpEL as a routing-expression that may result in remote code execution and access to local resources...
Remote code execution
In Spring Cloud Function versions 3.1.6, 3.2.2 and older unsupported versions, when using routing functionality it is possible for a user to provide a specially crafted SpEL as a routing-expression that may result in remote code execution and access to local resources...
CVE-2022-22963
In Spring Cloud Function versions 3.1.6, 3.2.2 and older unsupported versions, when using routing functionality it is possible for a user to provide a specially crafted SpEL as a routing-expression that may result in remote code execution and access to local resources...
Remote Code Execution
spring-cloud-function-context is vulnerable to remote code execution. The routing functionality allows a user to provide a malicious SpEL as a routing-expression which would allow arbitrary OS commands to be executed remotely...