CVE-2024-55063

High CVSS: 8.8

Multiple Code Injection vulnerabilities in EasyVirt DC NetScope <= 8.7.0 allows remote authenticated attackers to execute arbitrary code via the (1) lang parameter to /international/keyboard/options; the (2) keyboard_layout or (3) keyboard_variant parameter to /international/settings/keyboard; the (4) timezone parameter to /international/settings/timezone.

Vendor

Easyvirt

Product

Dc Netscope

CWE

CWE-77

Yayın Tarihi

2025-05-19 15:15:22

Güncelleme

2025-06-12 16:25:51

Source Identifier

cve@mitre.org

KEV Date Added

Kategoriler

CWE-77 Dc Netscope HIGH Easyvirt 2025

Referanslar

https://github.com/Elymaro/CVE/blob/main/EasyVirt/CVE-2024-55063.md

Benzer Kayıtlar

Medium

CVE-2024-55064

Multiple cross-site scripting (XSS) vulnerabilities in EasyVirt DC NetScope

Critical

CVE-2024-57587

Multiple SQL injection vulnerabilities in EasyVirt DCScope

Critical

CVE-2024-55062

Code Injection vulnerability in EasyVirt DCScope

Medium

CVE-2024-53354

Multiple SQL injection vulnerabilities in EasyVirt DCScope

High

CVE-2024-53355

Multiple incorrect access control issues in EasyVirt DCScope

Critical

CVE-2024-53356

Weak JWT Secret vulnerabilitiy in EasyVirt DCScope