Количество 2
Количество 2
CVE-2021-34435
больше 4 лет назад
In Eclipse Theia 0.3.9 to 1.8.1, the "mini-browser" extension allows a user to preview HTML files in an iframe inside the IDE. But with the way it is made it is possible for a previewed HTML file to trigger an RCE. This exploit only happens if a user previews a malicious file..
CVSS3: 8.8
EPSS: Низкий
GHSA-v9w2-v7j9-rjpr
больше 4 лет назад
Remote code execution in Eclipse Theia
CVSS3: 8.8
EPSS: Низкий
Уязвимостей на страницу
20
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2021-34435 In Eclipse Theia 0.3.9 to 1.8.1, the "mini-browser" extension allows a user to preview HTML files in an iframe inside the IDE. But with the way it is made it is possible for a previewed HTML file to trigger an RCE. This exploit only happens if a user previews a malicious file.. | CVSS3: 8.8 | 0% Низкий | больше 4 лет назад |
| GHSA-v9w2-v7j9-rjpr Remote code execution in Eclipse Theia | CVSS3: 8.8 | 0% Низкий | больше 4 лет назад |
Уязвимостей на страницу
20