Skip to content
The Nexus
DossierENTITY

arbitrary code execution

Coverage of arbitrary code execution in the Nexus archive.

Earliest in view: Apr 21 · 10:52 UTCMost recent: May 28 · 17:24 UTC
Co-mentioned in this coverage
Recent coverage
  • SECURITYMay 28 · 17:24 UTCTHE HACKER NEWS
    Critical Gogs RCE Vulnerability Lets Any Authenticated User Execute Arbitrary Code

    A critical remote code execution (RCE) vulnerability has been disclosed in Gogs, an open-source self-hosted Git service, allowing authenticated users to execute arbitrary code. The flaw is rated 9.4 on the CVSS scoring system and currently lacks a CVE identifier.

  • SECURITYApr 30 · 07:07 UTCTHE HACKER NEWS
    Google Fixes CVSS 10 Gemini CLI CI RCE and Cursor Flaws Enable Code Execution

    Google has patched a critical security vulnerability (CVSS 10) in the Gemini CLI npm package and GitHub Actions workflow, which could have enabled unprivileged attackers to execute arbitrary code on host systems by injecting malicious configuration content.

  • SECURITYApr 21 · 10:52 UTCDARK READING
    Google Fixes Critical RCE Flaw in AI-Based Antigravity Tool

    Google addressed a critical remote code execution (RCE) vulnerability in its AI-based Antigravity Tool. The flaw, a prompt injection vulnerability in an agentic AI product for filesystem operations, stemmed from a sanitization issue enabling sandbox escape and arbitrary code execution.

arbitrary code execution · Dossier · The Nexus