Storm core is vulnerable to remote code execution (RCE) attacks. Vulnerable getGroupsCommand
function is subject to unsafe deserialization, allowing remote authenticated attackers to execute arbitrary code in the server.
CPE | Name | Operator | Version |
---|---|---|---|
storm core | le | 1.2.3 | |
storm core | le | 1.2.3 |