Vulnerabilities (CVE)

Filtered by vendor Entando Subscribe
Filtered by product Admin Console
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-35450 1 Entando 1 Admin Console 2024-02-28 9.0 HIGH 7.2 HIGH
A Server Side Template Injection in the Entando Admin Console 6.3.9 and before allows a user with privileges to execute FreeMarker template with command execution via freemarker.template.utility.Execute