4 matches found
Remote code execution
Sitecore Experience Platform XP prior to 9.1.1 is vulnerable to remote code execution via deserialization, aka TFS 293863. An authenticated user with necessary permissions is able to remotely execute OS commands by sending a crafted serialized object...
CVE-2019-11080
Sitecore Experience Platform XP prior to 9.1.1 is vulnerable to remote code execution via deserialization, aka TFS 293863. An authenticated user with necessary permissions is able to remotely execute OS commands by sending a crafted serialized object...
CVE-2019-11080
Sitecore Experience Platform XP prior to 9.1.1 is vulnerable to remote code execution via deserialization, aka TFS 293863. An authenticated user with necessary permissions is able to remotely execute OS commands by sending a crafted serialized object...
CVE-2019-11080
Sitecore Experience Platform (XP) prior to 9.1.1 is affected by a deserialization-based remote code execution vulnerability (CVE-2019-11080). An authenticated user with the required permissions can remotely execute OS commands by sending a crafted serialized object. Public sources (including Red ...