Description
An issue was discovered in Electerm 1.3.22, allows attackers to execute arbitrary code via unverified request to electerms service.
Remediation
References
https://github.com/electerm/electerm/issues/1686
Related Vulnerabilities
CVE-2019-18212 Vulnerability in maven package org.lsp4xml:org.eclipse.lsp4xml.extensions.web
CVE-2023-46998 Vulnerability in maven package org.webjars.npm:bootbox.js
CVE-2020-7760 Vulnerability in maven package org.webjars:codemirror
CVE-2020-26217 Vulnerability in maven package org.jvnet.hudson:xstream
CVE-2023-24163 Vulnerability in maven package cn.hutool:hutool-all