SmartSoft SmartBPM.NET has a vulnerability of using hard-coded machine key. An unauthenticated remote attacker can use the machine key to send serialized payload to the server to execute arbitrary code and disrupt service.
CPE | Name | Operator | Version |
---|---|---|---|
smartbpm.net | eq | 6.70 |