Описание
A vulnerability was found in quarkus. This security flaw happens in Dev UI Config Editor which is vulnerable to drive-by localhost attacks leading to remote code execution.
A vulnerability was found in quarkus. This issue occurs in Dev UI Config Editor, which is vulnerable to drive-by localhost attacks leading to remote code execution.
Дополнительная информация
Статус:
Important
Дефект:
CWE-94
https://bugzilla.redhat.com/show_bug.cgi?id=2144748quarkus_dev_ui: Dev UI Config Editor is vulnerable to drive-by localhost attacks leading to RCE
7.5 High
CVSS3
Связанные уязвимости
CVSS3: 9.8
nvd
около 3 лет назад
A vulnerability was found in quarkus. This security flaw happens in Dev UI Config Editor which is vulnerable to drive-by localhost attacks leading to remote code execution.
CVSS3: 9.8
fstec
около 3 лет назад
Уязвимость компонента Dev UI Config Editor Java-фреймворка quarkus, позволяющая нарушителю выполнить произвольный код
7.5 High
CVSS3