|Impact||CVSS V3 rating: 10 (Critical)|
|Reported||21st January, 2021|
|Reported by||Johannes Mortiz, an independent Security researcher|
|Fixed||8th February, 2021|
|Affected Builds||→ Builds 125219 and below|
|Fixed in||Builds 125220/125314|
|Overview||Unauthenticated Remote Code Execution (RCE) vulnerability due to general bypass for the deserialization class.|
→ For builds 125219 and below, please upgrade to OpUtils version 125220
Unauthenticated Remote Code Execution (RCE) vulnerability due to general bypass for the deserialization class.
Source and Acknowledgements
Find out more about CVE-2020-28653 from the CVE dictionary.