CVE-2023-39680

HIGH

Sollace Unicopia < 1.2.0 - Insecure Deserialization

Title source: rule

Description

Sollace Unicopia version 1.1.1 and before was discovered to deserialize untrusted data, allowing attackers to execute arbitrary code.

References (1)

Scores

CVSS v3 7.5
EPSS 0.0010
EPSS Percentile 27.0%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

Classification

CWE
CWE-502
Status published

Affected Products (1)

sollace/unicopia < 1.2.0

Timeline

Published Oct 20, 2023
Tracked Since Feb 18, 2026