Skip to main content

Ajaxpro 2

1 CVEs product

Monthly

CVE-2021-23758 NuGet CRITICAL POC PATCH THREAT Act Now

All versions of package ajaxpro.2 are vulnerable to Deserialization of Untrusted Data due to the possibility of deserialization of arbitrary .NET classes, which can be abused to gain remote code. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Deserialization RCE Ajaxpro 2
NVD GitHub
CVSS 3.1
9.8
EPSS
88.8%
EPSS 89% CVSS 9.8
CRITICAL POC PATCH THREAT Act Now

All versions of package ajaxpro.2 are vulnerable to Deserialization of Untrusted Data due to the possibility of deserialization of arbitrary .NET classes, which can be abused to gain remote code. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Deserialization RCE Ajaxpro 2
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy