由SEC咨询漏洞实验室发布,2026年4月29日通过Fulldisclosure发布 咨询漏洞实验室安全咨询< 20260427-0 >
=======================================================================
标题:缺失TLS证书验证导致RCE
产品:DeskTime 时间追踪应用
易受攻击版本:1.3.671
修正版本:-
CVE编号:CVE-2025-10539
影响:中等
主页:https://desktime.com...
bsky.app
Hacker & Security News on Bluesky @hacker.at.thenote.app
seclists.org
SEC Consult SA-20260427-0 :: Missing TLS Certificate Validation leading to RCE in DeskTime Time Tracking App
RSS Hunter
2026-04-29
Create attached notes ...