3 matches found
JEHC-BPM - Remote Code Execute
A Remote Command Execution vulnerability in the component /server/executeExec of JEHC-BPM = v2.0.1 allows attackers to execute arbitrary code. The vulnerability exists due to insufficient authorization checks in the executeExec endpoint which allows direct command execution. id: CVE-2025-45854...
CVE-2025-45854
/server/executeExec of JEHC-BPM 2.0.1 allows attackers to execute arbitrary code via execParams...
CVE-2025-45854
creationtimestamp| type| source ---|---|--- 2025-06-03 03:57:32+00:00| seen| https://gist.github.com/Cafe-Tea/bc14b38f4bfd951de2979a24c3358460 2025-06-03 17:28:15+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lqpsu7sisk2s 2025-06-17 17:16:45+00:00| confirmed|...