Lucene search
K

10 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 9:56 p.m.22 views

CVE-2022-24816

JAI-EXT is an open-source project which aims to extend the Java Advanced Imaging JAI API. Programs allowing Jiffle script to be provided via network request can lead to a Remote Code Execution as the Jiffle script is compiled into Java code via Janino, and executed. In particular, this affects th...

10CVSS9.7AI score0.98739EPSS
Exploits1References1
GithubExploit
GithubExploit
added 2025/01/17 12:50 p.m.191 views

Exploit for Code Injection in Geosolutionsgroup Jai-Ext

Uso del script CVE-2022-24816 Requisitos previos 1. Clo...

10CVSS6.9AI score0.98739EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2024/08/06 12:0 a.m.31 views

GeoServer Jai-EXT RCE (CVE-2022-24816)

Binary data geoserverjaiextCVE-2022-24816.nbin...

10CVSS9.5AI score0.98739EPSS
Exploits1References3
VulnCheck KEV
VulnCheck KEV
added 2024/01/22 12:0 a.m.5 views

VulnCheck KEV: CVE-2022-24816

OSGeo GeoServer JAI-EXT contains a code injection vulnerability that, when programs use jt-jiffle and allow Jiffle script to be provided via network request, could allow remote code execution...

10CVSS7.5AI score0.98739EPSS
Exploits1References1
OSV
OSV
added 2023/06/12 3:30 p.m.38 views

GHSA-59X6-G4JR-4HXC GeoServer RCE due to improper control of generation of code in jai-ext`Jiffle` map algebra language

GeoServer 2, in some configurations, allows remote attackers to execute arbitrary code via java.lang.Runtime.getRuntime.exec in wps:LiteralData within a wps:Execute request, as exploited in the wild in June 2023. RCE in Jiffle The Jiffle map algebra language, provided by jai-ext, allows efficient...

9.8CVSS9.8AI score0.43235EPSS
Exploits0References6
Github Security Blog
Github Security Blog
added 2023/06/12 3:30 p.m.57 views

GeoServer RCE due to improper control of generation of code in jai-ext`Jiffle` map algebra language

GeoServer 2, in some configurations, allows remote attackers to execute arbitrary code via java.lang.Runtime.getRuntime.exec in wps:LiteralData within a wps:Execute request, as exploited in the wild in June 2023. RCE in Jiffle The Jiffle map algebra language, provided by jai-ext, allows efficient...

9.8CVSS8.8AI score0.43235EPSS
Exploits0References6Affected Software3
Circl
Circl
added 2022/04/14 12:18 a.m.9 views

CVE-2022-24816

creationtimestamp| type| source ---|---|--- 2022-04-14 00:18:15+00:00| seen| https://t.me/cibsecurity/40743 2024-06-26 18:10:02+00:00| seen| MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123 2024-11-08 00:00:00+00:00| seen| The Shadowserver honeypot/common-vulnerabilities - 2024-11-08 2024-11-13...

10CVSS7AI score0.98739EPSS
In wildExploits1References6
Cvelist
Cvelist
added 2022/04/13 8:45 p.m.42 views

CVE-2022-24816 Improper Control of Generation of Code in jai-ext

JAI-EXT is an open-source project which aims to extend the Java Advanced Imaging JAI API. Programs allowing Jiffle script to be provided via network request can lead to a Remote Code Execution as the Jiffle script is compiled into Java code via Janino, and executed. In particular, this affects th...

10CVSS9.9AI score0.98739EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2022/04/13 8:45 p.m.24 views

CVE-2022-24816 Improper Control of Generation of Code in jai-ext

JAI-EXT is an open-source project which aims to extend the Java Advanced Imaging JAI API. Programs allowing Jiffle script to be provided via network request can lead to a Remote Code Execution as the Jiffle script is compiled into Java code via Janino, and executed. In particular, this affects th...

10CVSS7.4AI score0.98739EPSS
Exploits1References2
CVE
CVE
added 2022/04/13 8:45 p.m.244 views

CVE-2022-24816

CVE-2022-24816 (JAI-EXT/Jai-EXT) affects GeoServer ecosystems where JAI-EXT allows a Jiffle script to be supplied over a network and then compiled to Java code via Janino, enabling Remote Code Execution. The GeoServer downstream is specifically noted. The known remediation is that version 1.2.22 ...

10CVSS9.6AI score0.98739EPSS
In wildExploits1References3Affected Software1
Rows per page
Query Builder