Threats Tagged 'cwe-94'

vLLM versions prior to 0.22.0 contain a code injection vulnerability due to an assert-based security check bypass when running in Python optimized mode. This allows unauthenticated attackers to execute arbitrary code by publishing a malicious HuggingFace model. The issue is fixed in version 0.22.0.

CVE-2026-55388 is a high-severity code injection vulnerability in the piscina Node.js worker pool library. Versions prior to 4.9.3 and between 4.9.3 and before 5.2.0 are affected. The vulnerability arises because the constructor and run() methods read the filename option via plain member access, which falls through the prototype chain if the caller's options object lacks an own filename property. If Object.prototype.filename is polluted, an attacker can cause arbitrary .mjs code to run in a worker thread. This issue is fixed in versions 4.9.3, 5.2.0, and later.

CVE-2026-54271 is a high-severity code injection vulnerability in protobufjs-cli, a command line add-on for protobuf.js. Versions prior to 1.3.2 and 2.5.0 contain an incomplete fix for unsafe name handling in static code generation, allowing crafted JSON descriptor input to produce unsafe JavaScript references. This vulnerability does not affect the common case of parsing schemas from .proto files. An attacker able to influence pre-parsed JSON descriptors used in static code generation could inject attacker-controlled code that executes when the generated JavaScript file is run or imported. The issue is a bypass of a previous vulnerability CVE-2026-44295 and is fixed in versions 1.3.2 and 2.5.0.

A maliciously crafted webpage, when visited by a user with Autodesk Fusion Desktop running and the MCP extension enabled, can trigger a vulnerability in the MCP extension that could allow arbitrary code execution. A successful exploit may allow code to execute with the privileges of the current user.

IBM i 7.6, 7.5, 7.4, and 7.3, IBM WebSphere Application Server, and IBM WebSphere Application Server Liberty - when using Intelligent Management with the WebSphere WebServer Plug-in component - are vulnerable to remote code execution and denial of service. This vulnerability can be exploited when an attacker impersonates backend servers and sends crafted responses to the plug-in.

IBM i 7.6, 7.5, 7.4, and 7.3, IBM WebSphere Application Server and IBM WebSphere Application Server Liberty are vulnerable to remote code execution and denial of service in the WebSphere Web Server Plug-in component. This vulnerability can be exploited when an attacker impersonates the application server and sends crafted responses to the plug-in.

IBM Langflow OSS 1.0.0 through 1.9.3 has an vulnerability due to an improper isolation of Python execution combined with an authentication bypass that allows an unauthenticated attacker to execute arbitrary code on the host system, resulting in complete compromise

Prefect version 3.6.23 is vulnerable to remote code execution due to improper handling of user-controlled input in the `GitRepository` storage class. The `commit_sha` parameter, which is passed to git commands, lacks validation and does not include a `--` separator to distinguish user input from git flags. This allows attackers to inject arbitrary git flags, such as `--upload-pack`, enabling execution of external programs. Additionally, the `directories` parameter can be exploited to inject git flags during sparse-checkout operations. These vulnerabilities allow any user with deployment creation permissions to execute arbitrary commands on worker machines, compromising shared work pools in multi-tenant environments.

Improper Control of Generation of Code ('Code Injection') vulnerability in Monetizemore Advanced Ads allows Remote Code Inclusion. This issue affects Advanced Ads: from n/a through 2.0.21.

Contributor Remote Code Execution (RCE) in Blocksy Companion Pro <= 2.1.37 versions.