The affected products are vulnerable of untrusted data due to deserialization without prior authorization/authentication, which may allow an attacker to remotely execute arbitrary code.
9.8CVSS
9.7AI Score
0.006EPSS
N6854A Geolocation Server versions 2.4.2 are vulnerable to untrusted data deserialization, which may allow a malicious actor to escalate privileges in the affected deviceβs default configuration and achieve remote code execution.
9.8CVSS
9.8AI Score
0.002EPSS