Remote Code Execution

⚔️ Attack Types Related 19
slug: rce

Explanation

RCE (Remote Code Execution) は「攻撃者が遠隔から、サーバー上で任意のプログラムを実行できる」最も深刻な脆弱性です。 これが成立すると、サーバー全体が乗っ取られ、データ全削除・暗号通貨マイニング・ランサムウェア感染・他社攻撃の踏み台化など何でもされます。 セキュリティ業界では「最悪レベル」「最優先で塞ぐべき」と扱われます。
📌 Example
Log4Shell (CVE-2021-44228), Heartbleed (CVE-2014-0160) の後継 OpenSSL系, MOVEit Transfer (CVE-2023-34362) など。被害規模は数千億円〜兆円単位。

🔖 Related tags

🛡 Vulnerabilities tagged with this 1,235

ID Title
CVE-2026-40453 Vulnerability in org.apache.camel:camel-coap (CVE-2026-40453)
CVE-2026-40860 Unsafe Deserialization in apache (CVE-2026-40860)
CVE-2026-6951 Code Injection in simple-git (CVE-2026-6951)
CVE-2024-7399 KEV [KEV] Path Traversal in Samsung magicinfo-9-server (CVE-2024-7399)
CVE-2024-57728 KEV [KEV] Path Traversal in Simplehelp path-traversal (CVE-2024-57728)
CVE-2024-57726 KEV [KEV] Vulnerability in Simplehelp auth (CVE-2024-57726)
CVE-2026-6942 OS Command Injection in radare (CVE-2026-6942)
CVE-2026-3960 Code Injection in h2o (CVE-2026-3960)
CVE-2026-39987 KEV [KEV] Vulnerability in Marimo remote-attack (CVE-2026-39987)
CVE-2026-41144 Vulnerability in cpp (CVE-2026-41144)
CVE-2026-31019 OS Command Injection in dolibarr (CVE-2026-31019)
CVE-2024-27199 KEV [KEV] Vulnerability in Jetbrains teamcity (CVE-2024-27199)
CVE-2026-5718 Unrestricted File Upload in wordpress (CVE-2026-5718)
CVE-2026-41113 OS Command Injection in c (CVE-2026-41113)
CVE-2026-5426 Vulnerability in csharp (CVE-2026-5426)
CVE-2026-31843 Vulnerability in laravel (CVE-2026-31843)
CVE-2026-34197 KEV [KEV] Vulnerability in Apache activemq (CVE-2026-34197)
CVE-2026-40316 OWASP BLT is a QA testing and vulnerability disclosure platform that encompasses websites, apps, git repositories, and more. Versions prior to 2.1.1 contain an RCE vulnerability in the .github/workflo...
CVE-2026-30461 Command Injection in thedaylightstudio (CVE-2026-30461)
CVE-2009-0238 KEV [KEV] Code Injection in Microsoft office (CVE-2009-0238)
CVE-2026-34621 KEV [KEV] Vulnerability in Adobe acrobat-and-reader (CVE-2026-34621)
CVE-2026-21643 KEV [KEV] SQL Injection in Fortinet forticlient-ems (CVE-2026-21643)
CVE-2020-9715 KEV [KEV] Use-After-Free in Adobe acrobat (CVE-2020-9715)
CVE-2023-21529 KEV [KEV] Unsafe Deserialization in Microsoft exchange-server (CVE-2023-21529)
CVE-2012-1854 KEV [KEV] Vulnerability in Microsoft visual-basic-for-applications-vba (CVE-2012-1854)
CVE-2026-32146 Improper Path Validation in Git Dependency Handling Allows Arbitrary File System Modification
CVE-2026-4153 Vulnerability in gimp (CVE-2026-4153)
CVE-2026-4154 Vulnerability in gimp (CVE-2026-4154)
CVE-2026-4152 Vulnerability in gimp (CVE-2026-4152)
CVE-2026-4151 Vulnerability in gimp (CVE-2026-4151)

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →