HtmlUnit is a GUI-less browser for Java programs. HtmlUnit is vulnerable to Remote Code Execution (RCE) via XSTL, when browsing the attacker’s webpage. This vulnerability has been patched in version 3.9.0
History

Fri, 11 Oct 2024 21:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'poc', 'Technical Impact': 'total'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published: 2023-12-04T04:47:27.145Z

Updated: 2024-10-10T20:14:07.250Z

Reserved: 2023-11-21T18:57:30.429Z

Link: CVE-2023-49093

cve-icon Vulnrichment

Updated: 2024-08-02T21:46:28.698Z

cve-icon NVD

Status : Modified

Published: 2023-12-04T05:15:07.430

Modified: 2024-11-21T08:32:48.503

Link: CVE-2023-49093

cve-icon Redhat

Severity : Important

Publid Date: 2023-12-04T00:00:00Z

Links: CVE-2023-49093 - Bugzilla