Unrated severityNVD Advisory· Published Feb 17, 2021· Updated Sep 16, 2024
Soar Cloud System Co., Ltd. HR Portal - Arbitrary Code Execution
CVE-2021-22855
Description
The specific function of HR Portal of Soar Cloud System accepts any type of object to be deserialized. Attackers can send malicious serialized objects to execute arbitrary commands.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)range: 0 7.3.2020.1013
Patches
Vulnerability mechanics
References
2- www.chtsecurity.com/news/d334641f-2b28-4eab-a5ed-c6ec6740557emitrex_refsource_CONFIRM
- www.twcert.org.tw/tw/cp-132-4405-2ddde-1.htmlmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.