Datax-web Project - Datax-web CVE - CVE Search - CVE Details

Filtered by vendor Datax-web Project Subscribe

Filtered by product Datax-web

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2022-46478	1 Datax-web Project	1 Datax-web	2023-01-23	N/A	9.8 CRITICAL
The RPC interface in datax-web v1.0.0 and v2.0.0 to v2.1.2 contains no permission checks by default which allows attackers to execute arbitrary commands via crafted Hessian serialized data.

Vulnerabilities (CVE)