Description
An issue was discovered in Electerm 1.3.22, allows attackers to execute arbitrary code via unverified request to electerms service.
Remediation
References
https://github.com/electerm/electerm/issues/1686
Related Vulnerabilities
CVE-2023-44483 Vulnerability in maven package org.apache.santuario:xmlsec
CVE-2023-46653 Vulnerability in maven package org.jenkins-ci.plugins:lambdatest-automation
CVE-2022-43405 Vulnerability in maven package io.jenkins.plugins:pipeline-groovy-lib
CVE-2022-39944 Vulnerability in maven package org.apache.linkis:linkis-engineplugin-jdbc
CVE-2021-41084 Vulnerability in maven package org.http4s:http4s-server_3