Remote Code Execution

⚔️ Attack Types Related 19
slug: rce

Explanation

RCE (Remote Code Execution) は「攻撃者が遠隔から、サーバー上で任意のプログラムを実行できる」最も深刻な脆弱性です。 これが成立すると、サーバー全体が乗っ取られ、データ全削除・暗号通貨マイニング・ランサムウェア感染・他社攻撃の踏み台化など何でもされます。 セキュリティ業界では「最悪レベル」「最優先で塞ぐべき」と扱われます。
📌 Example
Log4Shell (CVE-2021-44228), Heartbleed (CVE-2014-0160) の後継 OpenSSL系, MOVEit Transfer (CVE-2023-34362) など。被害規模は数千億円〜兆円単位。

🔖 Related tags

🛡 Vulnerabilities tagged with this 1,234

ID Title
CVE-2026-42288 Code Injection in CVE-2026-42288 (CVE-2026-42288)
CVE-2026-43685 OS Command Injection in claris (CVE-2026-43685)
CVE-2026-42854 Vulnerability in espressif (CVE-2026-42854)
CVE-2026-44403 Code Injection in wftpserver (CVE-2026-44403)
CVE-2026-44854 Command Injection in arubanetworks (CVE-2026-44854)
CVE-2026-44853 Command Injection in arubanetworks (CVE-2026-44853)
CVE-2026-44852 Vulnerability in arubanetworks (CVE-2026-44852)
CVE-2026-23827 Vulnerability in dos (CVE-2026-23827)
CVE-2026-8430 Code Injection in nginx (CVE-2026-8430)
CVE-2026-8429 Code Injection in CVE-2026-8429 (CVE-2026-8429)
CVE-2026-31233 Code Injection in guardrails-ai (CVE-2026-31233)
CVE-2026-31232 Unsafe Deserialization in deserialization (CVE-2026-31232)
CVE-2026-31234 Unsafe Deserialization in horovod (CVE-2026-31234)
CVE-2026-31229 Unsafe Deserialization in deserialization (CVE-2026-31229)
CVE-2026-31231 Code Injection in CVE-2026-31231 (CVE-2026-31231)
CVE-2026-43892 Cross-Site Scripting (XSS) in CVE-2026-43892 (CVE-2026-43892)
CVE-2026-20887 Vulnerability in dos (CVE-2026-20887)
CVE-2026-31228 Code Injection in CVE-2026-31228 (CVE-2026-31228)
CVE-2026-31226 OS Command Injection in CVE-2026-31226 (CVE-2026-31226)
CVE-2026-31225 Code Injection in superduper-framework (CVE-2026-31225)
CVE-2026-31220 Code Injection in syft (CVE-2026-31220)
CVE-2026-8111 SQL Injection in sqli (CVE-2026-8111)
CVE-2026-8051 OS Command Injection in ivanti (CVE-2026-8051)
CVE-2026-5029 Vulnerability in CVE-2026-5029 (CVE-2026-5029)
CVE-2025-40947 OS Command Injection in siemens (CVE-2025-40947)
CVE-2026-43899 Vulnerability in CVE-2026-43899 (CVE-2026-43899)
CVE-2026-43893 Vulnerability in exiftool-vendored (CVE-2026-43893)
CVE-2026-42046 Vulnerability in CVE-2026-42046 (CVE-2026-42046)
CVE-2026-2614 MLflow allows an unauthenticated remote attacker to read arbitrary files from the server's filesystem
CVE-2026-39850 Vulnerability in yiisoft/yii2 (CVE-2026-39850)

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →