Skip to main content
CVE-2017-8046 CRITICAL POC PATCH THREAT Act Now

Malicious PATCH requests submitted to servers using Spring Data REST versions prior to 2.6.9 (Ingalls SR9), versions prior to 3.0.1 (Kay SR1) and Spring Boot versions prior to 1.5.9, 2.0 M6 can use. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 72.8%.

RCE Java Spring Boot Spring Data Rest
NVD Exploit-DB VulDB
CVSS 3.0
9.8
EPSS
72.8%
Threat
5.6
CVE-2018-0104 CRITICAL Act Now

A vulnerability in Cisco WebEx Network Recording Player for Advanced Recording Format (ARF) files could allow a remote attacker to execute arbitrary code on the system of a targeted user. Rated critical severity (CVSS 9.6), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Cisco Webex Business Suite Webex Meetings Webex Meetings Server +1
NVD
CVSS 3.0
9.6
EPSS
3.8%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy