Critical severity9.6NVD Advisory· Published Jan 16, 2018· Updated Jun 17, 2026

CVE-2018-5704

Description

Open On-Chip Debugger (OpenOCD) 0.10.0 does not block attempts to use HTTP POST for sending data to 127.0.0.1 port 4444, which allows remote attackers to conduct cross-protocol scripting attacks, and consequently execute arbitrary commands, via a crafted web site.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

Openocd Org/Openocdllm-fuzzy
Range: =0.10.0

Patches

Vulnerability mechanics

References

sourceforge.net/p/openocd/mailman/message/36188041/nvdExploitPatchThird Party Advisory
lists.debian.org/debian-lts-announce/2018/01/msg00027.htmlnvdThird Party Advisory
www.debian.org/security/2018/dsa-4093nvdThird Party Advisory

News mentions

No linked articles in our index yet.

cvss	0.624
epss	0.004
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000