GLOSSARY / Remote Code Execution (RCE)

What is Remote Code Execution (RCE)?

A vulnerability that lets an attacker run arbitrary code on a target system over a network.

RCE is among the most severe vulnerability classes because it gives direct control of the target. It arises from injection flaws, unsafe deserialization, memory-corruption bugs, and more.

Log4Shell (CVE-2021-44228) is a famous example.

How to defend

Patch promptly, validate and sanitize input, run services with least privilege, and isolate with sandboxing.

Related free tools

CVE Lookup → CISA KEV →

Related terms

Vulnerability Exploit Zero-Day

Part of the Ciphers Security glossary. Free reference for analysts, defenders & learners.