CVE-2024-5675 | Summar Software Mentor Employee Portal 3.83.35 ViewState deserialization

Inserito da Angelo Barbosa | Giu 6, 2024 | CVE

A vulnerability classified as very critical has been found in Summar Software Mentor Employee Portal 3.83.35. Affected is an unknown function. The manipulation of the argument ViewState leads to deserialization.

This vulnerability is traded as CVE-2024-5675. It is possible to launch the attack remotely. There is no exploit available.

CVE-2024-5675 | Summar Software Mentor Employee Portal 3.83.35 ViewState deserialization

Post correlati

CVE-2024-23454 | Apache Hadoop up to 3.3.x runJar.run temp file (HADOOP-19031)

CVE-2024-52584 | Autolab 3.0.1 authorization (GHSA-rjg4-cf66-x6gr)

CVE-2023-52842 | Linux Kernel up to 6.6.1 virtio_transport_recv_pkt initialization (cd12535b97dd/0b8906fb48b9/34c4effacfc3)

CVE-2024-43990 | StylemixThemes Masterstudy LMS Starter Plugin up to 1.1.8 on WordPress log file