Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Rogue Wave JViews before 8.8 patch 21 and 8.9 before patch 1 allows remote attackers to execute arbitrary Java code that exists in the classpath, such as test code or administration code. The issue exists because the ilog.views.faces.IlvFacesController servlet in jviews-framework-all.jar does not require explicit configuration of servlets that can be called.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Rogue Wave JViews 权限许可和访问控制问题漏洞
Vulnerability Description
Rogue Wave JViews是Rogue Wave公司的基于JAVA的用于做可视化展示的库。 Rogue Wave JViews 8.8 patch 21之前的版本和8.9 patch 1之前的8.9版本存在权限许可和访问控制问题漏洞。远程攻击者可利用该漏洞执行任意的Java代码。
CVSS Information
N/A
Vulnerability Type
N/A