Loading HuntDB...

Remote Code Execution on ██.8x8.com via .NET VSTATE Deserialization

Critical
8
8x8
Submitted None

Team Summary

Official summary from 8x8

@0daystolive reported to us a flaw in a 3rd party community platform, which could be exploited to achieve RCE. We swiftly relayed this to the vendor and their engineering team turned off the affected code, which resolved the issue.

Reported by 0daystolive

Report Details

Additional information and metadata

State

Closed

Substate

Resolved

Submitted

Weakness

Code Injection