Skip to main content

Breeze Server Net

1 CVEs product

Monthly

CVE-2017-9424 CRITICAL Act Now

IdeaBlade Breeze Breeze.Server.NET before 1.6.5 allows remote attackers to execute arbitrary code, related to use of TypeNameHandling in JSON deserialization. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Deserialization RCE Breeze Server Net
NVD
CVSS 3.0
9.8
EPSS
4.4%
EPSS 4% CVSS 9.8
CRITICAL Act Now

IdeaBlade Breeze Breeze.Server.NET before 1.6.5 allows remote attackers to execute arbitrary code, related to use of TypeNameHandling in JSON deserialization. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Deserialization RCE Breeze Server Net
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy