CVE-2022-23330 · Vexday

CVE-2022-23330

EPSS 1.9%

A remote code execution (RCE) vulnerability in HelloWorldAddonController.java of jpress v4.2.0 allows attackers to execute arbitrary code via a crafted JAR package.

Affected products

n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://gitee.com/JPressProjects/jpress/issues/I4QZZ8