Skip to content

CVE lookup

CVE-2026-57527

Pruva has a verified reproduction for CVE-2026-57527: ZAP ViewState add-on insecure deserialization RCE. The canonical evidence record is REPRO-2026-00249.

REPRO

REPRO-2026-00249

Package

zaproxy/zap-extensions · github

Severity

HIGH

Status

published