Vulnerabilities > Deserialization of Untrusted Data
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-12-16 | CVE-2021-42550 | Deserialization of Untrusted Data vulnerability in multiple products In logback version 1.2.7 and prior versions, an attacker with the required privileges to edit configurations files could craft a malicious configuration allowing to execute arbitrary code loaded from LDAP servers. | 6.6 |
| 2021-12-15 | CVE-2021-0970 | Deserialization of Untrusted Data vulnerability in Google Android In createFromParcel of GpsNavigationMessage.java, there is a possible Parcel serialization/deserialization mismatch. | 7.8 |
| 2021-12-14 | CVE-2021-4104 | Deserialization of Untrusted Data vulnerability in multiple products JMSAppender in Log4j 1.2 is vulnerable to deserialization of untrusted data when the attacker has write access to the Log4j configuration. | 7.5 |
| 2021-12-07 | CVE-2021-42127 | Deserialization of Untrusted Data vulnerability in Ivanti Avalanche A deserialization of untrusted data vulnerability exists in Ivanti Avalanche before 6.3.3 using Inforail Service allows arbitrary code execution via Data Repository Service. | 9.8 |
| 2021-12-07 | CVE-2021-42130 | Deserialization of Untrusted Data vulnerability in Ivanti Avalanche A deserialization of untrusted data vulnerability exists in Ivanti Avalanche before 6.3.3 allows an attacker with access to the Inforail Service to perform arbitrary code execution. | 8.8 |
| 2021-12-06 | CVE-2021-44677 | Deserialization of Untrusted Data vulnerability in Veritas Enterprise Vault An issue (1 of 6) was discovered in Veritas Enterprise Vault through 14.1.2. | 9.8 |
| 2021-12-06 | CVE-2021-44678 | Deserialization of Untrusted Data vulnerability in Veritas Enterprise Vault An issue (2 of 6) was discovered in Veritas Enterprise Vault through 14.1.2. | 9.8 |
| 2021-12-06 | CVE-2021-44679 | Deserialization of Untrusted Data vulnerability in Veritas Enterprise Vault An issue (3 of 6) was discovered in Veritas Enterprise Vault through 14.1.2. | 9.8 |
| 2021-12-06 | CVE-2021-44680 | Deserialization of Untrusted Data vulnerability in Veritas Enterprise Vault An issue (4 of 6) was discovered in Veritas Enterprise Vault through 14.1.2. | 9.8 |
| 2021-12-06 | CVE-2021-44681 | Deserialization of Untrusted Data vulnerability in Veritas Enterprise Vault An issue (5 of 6) was discovered in Veritas Enterprise Vault through 14.1.2. | 9.8 |