Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:CVE-2019-18211
HistoryDec 23, 2019 - 11:15 p.m.

CVE-2019-18211

2019-12-2323:15:12
Google
osv.dev
4

8 High

AI Score

Confidence

High

0.006 Low

EPSS

Percentile

77.7%

JSON

An issue was discovered in Orckestra C1 CMS through 6.6. The EntityTokenSerializer class in Composite.dll is prone to unvalidated deserialization of wrapped BinaryFormatter payloads, leading to arbitrary remote code execution for any low-privilege user.

Related

nvd 1
cve 1
cvelist 1
prion 1
kitploit 1
nvd
nvd
CVE-2019-18211
2019-12-23 23:15:12
cve
cve
CVE-2019-18211
2019-12-23 23:15:12
cvelist
cvelist
CVE-2019-18211
2019-12-23 22:13:58
prion
prion
Deserialization of untrusted data
2019-12-23 23:15:00
kitploit
kitploit
Heyserial - Programmatically Create Hunting Rules For Deserialization Exploitation With Multiple Keywords, Gadget Chains, Object Types, Encodings, And Rule Types
2022-05-12 21:30:00

8 High

AI Score

Confidence

High

0.006 Low

EPSS

Percentile

77.7%

JSON
Related for OSV:CVE-2019-18211
nvd1cve1cvelist1prion1kitploit1