exploitDog

GHSA-x863-q7hx-5hmw

Опубликовано: 13 июн. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

A remote code execution (RCE) vulnerability in the Plugin Management component of OpenC3 COSMOS v6.0.0 allows attackers to execute arbitrary code via uploading a crafted .txt file.

A remote code execution (RCE) vulnerability in the Plugin Management component of OpenC3 COSMOS v6.0.0 allows attackers to execute arbitrary code via uploading a crafted .txt file.

Ссылки

EPSS

Процентиль: 78%

0.01163

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-94

Связанные уязвимости

CVE-2025-28386

CVSS3: 9.8

nvd

8 месяцев назад

A remote code execution (RCE) vulnerability in the Plugin Management component of OpenC3 COSMOS v6.0.0 allows attackers to execute arbitrary code via uploading a crafted .txt file.

EPSS

Процентиль: 78%

0.01163

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-94