CVE-2021-42237

Sitcore XP contains an insecure deserialization vulnerability which can allow for remote code execution. Vendor/Product: Sitecore XP. Added to CISA KEV 2022-03-25; required action: Apply updates per vendor instructions.