CVE-2018-5704
CVE-2018-5704 affects OpenOCD 0.10.0, enabling cross‑protocol scripting via crafted web content that can trigger arbitrary command execution on the host (targeted by HTTP POST to 127.0.0.1:4444). Public advisories note a remedy: OpenOCD defaults bound to localhost and patches/upstream fixes have ...