CVE-2021-23758

Summary

All versions of package ajaxpro.2 are vulnerable to Deserialization of Untrusted Data due to the possibility of deserialization of arbitrary .NET classes, which can be abused to gain remote code execution.

Affected Software

VendorProductVersion RangeStatus
n/aAjaxPro.20 < unspecifiedaffected

Weaknesses

  • Deserialization of Untrusted Data

ADP Enrichment

CVE Program Container

Additional References

References