Vulnerabilities > Unit4 > High

DATE CVE VULNERABILITY TITLE RISK
2021-08-31 CVE-2021-36231 Deserialization of Untrusted Data vulnerability in Unit4 Mik.Starlight 7.9.5.24363
Deserialization of untrusted data in multiple functions in MIK.starlight 7.9.5.24363 allows authenticated remote attackers to execute operating system commands by crafting serialized objects.
network
low complexity
unit4 CWE-502
8.8
8.8
2021-08-31 CVE-2021-36232 Missing Authorization vulnerability in Unit4 Mik.Starlight 7.9.5.24363
Improper Authorization in multiple functions in MIK.starlight 7.9.5.24363 allows an authenticated attacker to escalate privileges.
network
low complexity
unit4 CWE-862
8.8
8.8