Deserialization Vulnerability in Cognex In-Sight OPC Server

Deserialization Vulnerability in Cognex In-Sight OPC Server

CVE-2021-32935 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

The affected Cognex product, the In-Sight OPC Server versions v5.7.4 (96) and prior, deserializes untrusted data, which could allow a remote attacker access to system level permission commands and local privilege escalation.

Learn more about our Cis Benchmark Audit For Server Software.