Vulnerabilities > Deserialization of Untrusted Data
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-07-30 | CVE-2021-29781 | Deserialization of Untrusted Data vulnerability in IBM Partner Engagement Manager 2.0 IBM Partner Engagement Manager 2.0 could allow a remote attacker to execute arbitrary code on the system, caused by an unsafe deserialization flaw. | 9.8 |
| 2021-07-29 | CVE-2021-37578 | Deserialization of Untrusted Data vulnerability in Apache Juddi Apache jUDDI uses several classes related to Java's Remote Method Invocation (RMI) which (as an extension to UDDI) provides an alternate transport for accessing UDDI services. | 9.8 |
| 2021-07-28 | CVE-2020-5341 | Deserialization of Untrusted Data vulnerability in Dell products Deserialization of Untrusted Data Vulnerability Dell EMC Avamar Server versions 7.4.1, 7.5.0, 7.5.1, 18.2, 19.1 and 19.2 and Dell EMC Integrated Data Protection Appliance versions 2.0, 2.1, 2.2, 2.3, 2.4 and 2.4.1 contain a Deserialization of Untrusted Data Vulnerability. | 9.8 |
| 2021-07-22 | CVE-2021-35464 | Deserialization of Untrusted Data vulnerability in Forgerock Access Management and Openam ForgeRock AM server before 7.0 has a Java deserialization vulnerability in the jato.pageSession parameter on multiple pages. | 9.8 |
| 2021-07-09 | CVE-2021-32742 | Deserialization of Untrusted Data vulnerability in Vapor Project Vapor 4.29.4 Vapor is a web framework for Swift. | 9.1 |
| 2021-07-08 | CVE-2021-29150 | Deserialization of Untrusted Data vulnerability in Arubanetworks Clearpass Policy Manager A remote insecure deserialization vulnerability was discovered in Aruba ClearPass Policy Manager version(s): Prior to 6.10.0, 6.9.6 and 6.8.9. | 7.2 |
| 2021-06-30 | CVE-2021-35971 | Deserialization of Untrusted Data vulnerability in Veeam Backup & Replication Veeam Backup and Replication 10 before 10.0.1.4854 P20210609 and 11 before 11.0.0.837 P20210507 mishandles deserialization during Microsoft .NET remoting. | 9.8 |
| 2021-06-29 | CVE-2021-22439 | Deserialization of Untrusted Data vulnerability in Huawei Anyoffice V200R006C10 There is a deserialization vulnerability in Huawei AnyOffice V200R006C10. | 8.1 |
| 2021-06-29 | CVE-2021-29485 | Deserialization of Untrusted Data vulnerability in Ratpack Project Ratpack Ratpack is a toolkit for creating web applications. | 8.8 |
| 2021-06-24 | CVE-2021-31649 | Deserialization of Untrusted Data vulnerability in Jfinal In applications using jfinal 4.9.08 and below, there is a deserialization vulnerability when using redis,may be vulnerable to remote code execute | 9.8 |