Apache ShardingSphere-UI Deserialization of Untrusted Data Vulnerability

Apache ShardingSphere-UI Deserialization of Untrusted Data Vulnerability

CVE-2021-26558 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Deserialization of Untrusted Data vulnerability of Apache ShardingSphere-UI allows an attacker to inject outer link resources. This issue affects Apache ShardingSphere-UI Apache ShardingSphere-UI version 4.1.1 and later versions; Apache ShardingSphere-UI versions prior to 5.0.0.

Learn more about our Cis Benchmark Audit For Apache Http Server.