CVE-2021-27850
maven/org.apache.tapestry/tapestry-core
Deserialization of Untrusted Data
A critical unauthenticated remote code execution vulnerability was found in Apache Tapestry.
All versions starting from 5.4.0 before 5.6.2, all versions starting from 5.7.0 before 5.7.1
Upgrade to versions 5.6.2, 5.7.1 or above.
2021-04-23
source |