Vulnerabilities > CVE-2021-42631 - Deserialization of Untrusted Data vulnerability in Printerlogic Virtual Appliance and web Stack

047910
CVSS 9.3 - CRITICAL
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
COMPLETE
Integrity impact
COMPLETE
Availability impact
COMPLETE
network
printerlogic
CWE-502
critical

Summary

PrinterLogic Web Stack versions 19.1.1.13 SP9 and below deserializes attacker controlled leading to pre-auth remote code execution.

Common Weakness Enumeration (CWE)