CVE-2021-21863

CVE-2021-21863

A unsafe deserialization vulnerability exists in the ComponentModel Profile.FromFile() functionality of CODESYS GmbH CODESYS Development System 3.5.16 and 3.5.17. A specially crafted file can lead to arbitrary command execution. An attacker can provide a malicious file to trigger this vulnerability.

Source: CVE-2021-21863

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다