A CWE-502: Deserialization of untrusted data vulnerability exists that could allow an attackerlogged in with a user level account to gain higher privileges by providing a harmful serializedobject.
7.8CVSS
7.6AI Score
0.0005EPSS
CWE-428: Unquoted search path or element vulnerability exists in Easergy Studio, which couldcause privilege escalation when a valid user replaces a trusted file name on the system andreboots the machine.
7.8CVSS
7.9AI Score
0.0004EPSS