CVE-2024-55062

Critical CVSS: 9.8

Code Injection vulnerability in EasyVirt DCScope <= 8.6.0 and CO2Scope <= 1.3.0 allows remote unauthenticated attackers to execute arbitrary code to /api/license/sendlicense/.

Vendor

Easyvirt

Product

Co2scope

CWE

CWE-77

Yayın Tarihi

2025-01-31 22:15:10

Güncelleme

2025-05-24 01:18:38

Source Identifier

cve@mitre.org

KEV Date Added

Kategoriler

CWE-77 Co2scope CRITICAL Easyvirt 2025

Referanslar

https://github.com/Elymaro/CVE/blob/main/EasyVirt/CVE-2024-55062.md https://github.com/Elymaro/CVE/blob/main/EasyVirt/CVE-2024-55062.md

Benzer Kayıtlar

High

CVE-2024-55063

Multiple Code Injection vulnerabilities in EasyVirt DC NetScope

Medium

CVE-2024-55064

Multiple cross-site scripting (XSS) vulnerabilities in EasyVirt DC NetScope

Critical

CVE-2024-57587

Multiple SQL injection vulnerabilities in EasyVirt DCScope

Medium

CVE-2024-53354

Multiple SQL injection vulnerabilities in EasyVirt DCScope

High

CVE-2024-53355

Multiple incorrect access control issues in EasyVirt DCScope

Critical

CVE-2024-53356

Weak JWT Secret vulnerabilitiy in EasyVirt DCScope