Remote Code Execution on ██.8x8.com via .NET VSTATE Deserialization
Critical
8
8x8
Submitted None
Team Summary
Official summary from 8x8
@0daystolive reported to us a flaw in a 3rd party community platform, which could be exploited to achieve RCE. We swiftly relayed this to the vendor and their engineering team turned off the affected code, which resolved the issue.
Actions:
Reported by
0daystolive
Report Details
Additional information and metadata
State
Closed
Substate
Resolved
Submitted
Weakness
Code Injection