CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7 matches found

Veracode•added 2025/12/13 5:34 a.m.•4 views

Remote Code Execution (RCE)

CSLA .NET is vulnerable to remote code execution RCE. The vulnerability is due to the use of the obsolete NetDataContractSerializer NDCS in WcfProxy, which allows an attacker to execute arbitrary code during the deserialization process...

9.8CVSS6.7AI score0.00555EPSS

Exploits0References5Affected Software1

RedhatCVE•added 2025/12/10 3:26 a.m.•4 views

CVE-2025-66631

CSLA .NET is a framework designed for the development of reusable, object-oriented business layers for applications. Versions 5.5.4 and below allow the use of WcfProxy. WcfProxy uses the now-obsolete NetDataContractSerializer NDCS and is vulnerable to remote code execution during deserialization...

9.2CVSS7.8AI score0.00555EPSS

Exploits0References1

NVD•added 2025/12/09 4:18 p.m.•2 views

CVE-2025-66631

9.8CVSS0.00555EPSS

Exploits0References3

Vulnrichment•added 2025/12/09 3:18 a.m.•4 views

CVE-2025-66631 CSLA .NET is vulnerable to Remote Code Execution via WcfProxy

9.2CVSS7.7AI score0.00555EPSS

Exploits0References3

EUVD•added 2025/12/09 3:18 a.m.•4 views

EUVD-2025-201825

9.2CVSS7.5AI score0.00555EPSS

Exploits0References5

CVE•added 2025/12/09 3:18 a.m.•18 views

CVE-2025-66631

CSLA .NET prior to 6.0.0 is vulnerable to remote code execution during deserialization when using WcfProxy, which relies on the obsolete NetDataContractSerializer (NDCS). Supported details from multiple sources show that versions 5.5.4 and below are affected, while version 6.0.0 and above remove ...

9.8CVSS7.7AI score0.00555EPSS

Exploits0References3Affected Software1

Positive Technologies•added 2025/12/09 12:0 a.m.•4 views

PT-2025-49778

9.2CVSS8AI score0.00555EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by