F6JO

2 exploits Active since Mar 2020

CVE-2022-22947 NOMISEC CRITICAL SCANNER

Spring Cloud Gateway Remote Code Execution

In spring cloud gateway versions prior to 3.1.1+ and 3.0.7+ , applications are vulnerable to a code injection attack when the Gateway Actuator endpoint is enabled, exposed and unsecured. A remote attacker could make a maliciously crafted request that could allow arbitrary remote execution on the remote host.

2 stars

CVSS 10.0

View Code

CVE-2020-0796 NOMISEC CRITICAL SCANNER

Microsoft Windows 10 1903 - Memory Corruption

A remote code execution vulnerability exists in the way that the Microsoft Server Message Block 3.1.1 (SMBv3) protocol handles certain requests, aka 'Windows SMBv3 Client/Server Remote Code Execution Vulnerability'.

1 stars

CVSS 10.0

View Code