Filtered by vendor Kvf-admin Project
Subscriptions
Filtered by product Kvf-admin
Subscriptions
Total
1 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2022-35857 | 1 Kvf-admin Project | 1 Kvf-admin | 2024-08-03 | 9.8 Critical |
| kvf-admin through 2022-02-12 allows remote attackers to execute arbitrary code because deserialization is mishandled. The rememberMe parameter is encrypted with a hardcoded key from the com.kalvin.kvf.common.shiro.ShiroConfig file. | ||||
Page 1 of 1.