Количество 2
Количество 2
CVE-2023-38693
11 месяцев назад
Lucee Server (or simply Lucee) is a dynamic, Java based, tag and scripting language used for rapid web application development. The Lucee REST endpoint is vulnerable to RCE via an XML XXE attack. This vulnerability is fixed in Lucee 5.4.3.2, 5.3.12.1, 5.3.7.59, 5.3.8.236, and 5.3.9.173.
CVSS3: 9.8
EPSS: Низкий
GHSA-vwjx-mmwm-pwrf
11 месяцев назад
Lucee RCE/XXE Vulnerability
CVSS3: 10
EPSS: Низкий
Уязвимостей на страницу
20
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2023-38693 Lucee Server (or simply Lucee) is a dynamic, Java based, tag and scripting language used for rapid web application development. The Lucee REST endpoint is vulnerable to RCE via an XML XXE attack. This vulnerability is fixed in Lucee 5.4.3.2, 5.3.12.1, 5.3.7.59, 5.3.8.236, and 5.3.9.173. | CVSS3: 9.8 | 0% Низкий | 11 месяцев назад |
| GHSA-vwjx-mmwm-pwrf Lucee RCE/XXE Vulnerability | CVSS3: 10 | 0% Низкий | 11 месяцев назад |
Уязвимостей на страницу
20