Vulnerabilities > Forgerock > AM

DATE CVE VULNERABILITY TITLE RISK
2021-07-22 CVE-2021-35464 Deserialization of Untrusted Data vulnerability in Forgerock AM and Openam
ForgeRock AM server before 7.0 has a Java deserialization vulnerability in the jato.pageSession parameter on multiple pages.
network
low complexity
forgerock CWE-502
critical
10.0