Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

  1. Reconshell
  2. Vulnerabilities (CVE)
Filtered by vendor Kvf-admin Project Subscribe
Filtered by product Kvf-admin
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-35857 1 Kvf-admin Project 1 Kvf-admin 2022-07-21 N/A 9.8 CRITICAL
kvf-admin through 2022-02-12 allows remote attackers to execute arbitrary code because deserialization is mishandled. The rememberMe parameter is encrypted with a hardcoded key from the com.kalvin.kvf.common.shiro.ShiroConfig file.