Remote Code Execution

⚔️ Attack Types Related 19

slug: rce

Explanation

RCE (Remote Code Execution) は「攻撃者が遠隔から、サーバー上で任意のプログラムを実行できる」最も深刻な脆弱性です。これが成立すると、サーバー全体が乗っ取られ、データ全削除・暗号通貨マイニング・ランサムウェア感染・他社攻撃の踏み台化など何でもされます。セキュリティ業界では「最悪レベル」「最優先で塞ぐべき」と扱われます。

📌 Example

Log4Shell (CVE-2021-44228), Heartbleed (CVE-2014-0160) の後継 OpenSSL系, MOVEit Transfer (CVE-2023-34362) など。被害規模は数千億円〜兆円単位。

🔖 Related tags

Denial of Service85 Cross-Site Scripting27 SQL Injection23 Server-Side Request Forgery17 Path Traversal14 Privilege Escalation7 Authentication Bypass4 Insecure Deserialization4 Cross-Site Request Forgery1

🛡 Vulnerabilities tagged with this 66

ID	Title	Severity	Detected
CVE-2025-63706	Code Injection in npm (CVE-2025-63706)	Critical	2 days ago
CVE-2026-8094	Code Injection in firefox (CVE-2026-8094)	Critical	2 days ago
CVE-2026-6973 KEV	[KEV] Vulnerability in Ivanti endpoint-manager-mobile-epmm (CVE-2026-6973)	High	2 days ago
CVE-2026-43208	Vulnerability in linux (CVE-2026-43208)	Critical	3 days ago
CVE-2026-43197	Vulnerability in linux (CVE-2026-43197)	Critical	3 days ago
CVE-2026-43185	Vulnerability in linux (CVE-2026-43185)	Critical	3 days ago
CVE-2026-43125	Out-of-Bounds Write in linux (CVE-2026-43125)	Critical	3 days ago
CVE-2026-0300 KEV	[KEV] Out-of-Bounds Write in Palo alto networks palo-alto-networks (CVE-2026-0300)	High	3 days ago
CVE-2026-34084	Unsafe Deserialization in phpoffice/phpspreadsheet (CVE-2026-34084)	Critical	3 days ago
CVE-2026-33324	SQL Injection in fit2cloud (CVE-2026-33324)	High	3 days ago
CVE-2026-43067	Vulnerability in linux (CVE-2026-43067)	Critical	4 days ago
CVE-2026-26956	Vulnerability in vm2-project (CVE-2026-26956)	Critical	5 days ago
CVE-2026-24120	Code Injection in vm2-project (CVE-2026-24120)	Critical	5 days ago
CVE-2026-24118	Code Injection in vm2-project (CVE-2026-24118)	Critical	5 days ago
CVE-2026-24781	Code Injection in vm2-project (CVE-2026-24781)	Critical	5 days ago
CVE-2026-43038	Vulnerability in linux (CVE-2026-43038)	Critical	1 week ago
CVE-2026-44015	SSRF (Server-Side Request Forgery) in github.com/0xJacky/Nginx-UI (CVE-2026-44015)		1 week ago
CVE-2024-1708 KEV	[KEV] Path Traversal in Connectwise screenconnect (CVE-2024-1708)	High	1 week ago
CVE-2024-57726 KEV	[KEV] Vulnerability in Simplehelp auth (CVE-2024-57726)	High	2 weeks ago
CVE-2024-57728 KEV	[KEV] Path Traversal in Simplehelp path-traversal (CVE-2024-57728)	High	2 weeks ago
CVE-2024-7399 KEV	[KEV] Path Traversal in Samsung magicinfo-9-server (CVE-2024-7399)	High	2 weeks ago
CVE-2026-39987 KEV	[KEV] Vulnerability in Marimo remote-attack (CVE-2026-39987)	High	2 weeks ago
CVE-2024-27199 KEV	[KEV] Vulnerability in Jetbrains teamcity (CVE-2024-27199)	High	2 weeks ago
CVE-2026-34197 KEV	[KEV] Vulnerability in Apache activemq (CVE-2026-34197)	High	3 weeks ago
CVE-2009-0238 KEV	[KEV] Code Injection in Microsoft office (CVE-2009-0238)	High	3 weeks ago
CVE-2026-34621 KEV	[KEV] Vulnerability in Adobe acrobat-and-reader (CVE-2026-34621)	High	3 weeks ago
CVE-2026-21643 KEV	[KEV] SQL Injection in Fortinet forticlient-ems (CVE-2026-21643)	High	3 weeks ago
CVE-2020-9715 KEV	[KEV] Use-After-Free in Adobe acrobat (CVE-2020-9715)	High	3 weeks ago
CVE-2023-21529 KEV	[KEV] Unsafe Deserialization in Microsoft exchange-server (CVE-2023-21529)	High	3 weeks ago
CVE-2012-1854 KEV	[KEV] Vulnerability in Microsoft visual-basic-for-applications-vba (CVE-2012-1854)	High	3 weeks ago

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →