CVE-2021-33420: replicator vulnerable to Deserialization of Untrusted Data

Severity: Critical

CVSS Score: 9.8

A deserialization issue discovered in inikulin replicator before 1.0.4 allows remote attackers to run arbitrary code via the fromSerializable function in TypedArray object.