CVE-2021-27852
Checkbox Survey Deserialization of Untrusted Data Vulnerability
CVSS
—
Sin CVSS
EPSS
31.9%
p98
KEV
SÍ
11 abr 2022
Exploit Today
79
0-100
Publicado: — · Última mod.: —
Producto
Checkbox / Checkbox Survey
Vulnerabilidad
Checkbox Survey Deserialization of Untrusted Data Vulnerability
Añadido a KEV
11 abr 2022
Remediar antes de
2 may 2022
Uso conocido en ransomware
No
Descripción resumida
Deserialization of Untrusted Data vulnerability in CheckboxWeb.dll of Checkbox Survey allows an unauthenticated remote attacker to execute arbitrary code.
Acción requerida
Versions 6 and earlier for this product are end-of-life and must be removed from agency networks. Versions 7 and later are not considered vulnerable.
Notas
https://nvd.nist.gov/vuln/detail/CVE-2021-27852
Sin CVEs relacionados por CWE o producto.