Vulnerabilities > Kollectapp

DATE CVE VULNERABILITY TITLE RISK
2021-02-18 CVE-2021-27335 Deserialization of Untrusted Data vulnerability in Kollectapp Kollect 4.8.16
KollectApps before 4.8.16c is affected by insecure Java deserialization, leading to Remote Code Execution via a ysoserial.payloads.CommonsCollections parameter.
network
low complexity
kollectapp CWE-502
7.5
7.5