Critical Remote Code Execution Vulnerability Found in Orion Platform 2020.2.5

Critical Remote Code Execution Vulnerability Found in Orion Platform 2020.2.5

CVE-2021-35215 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Insecure deserialization leading to Remote Code Execution was detected in the Orion Platform version 2020.2.5. Authentication is required to exploit this vulnerability.

Learn more about our Web Application Penetration Testing UK.