CVE-2024-55063

Description

Multiple Code Injection vulnerabilities in EasyVirt DC NetScope <= 8.7.0 allows remote authenticated attackers to execute arbitrary code via the (1) lang parameter to /international/keyboard/options; the (2) keyboard_layout or (3) keyboard_variant parameter to /international/settings/keyboard; the (4) timezone parameter to /international/settings/timezone.

Reserved 2024-12-06 | Published 2025-05-19 | Updated 2025-05-19 | Assigner mitre

References

github.com/Elymaro/CVE/blob/main/EasyVirt/CVE-2024-55063.md

cve.org (CVE-2024-55063)

nvd.nist.gov (CVE-2024-55063)

Download JSON