Lucene search
Broadcom Security ResponseBSA-2022-1983HistoryJul 12, 2022 - 12:00 a.m.
BSA-2022-1983
2022-07-1200:00:00
Broadcom Security Response
support.broadcom.com
13
Security Advisory ID : BSA-2022-1983
Component : com.alibaba:fastjson
Revision : 1.0: Final
**
The package com.alibaba:fastjson before 1.2.83 are vulnerable to Deserialization of Untrusted Data by bypassing the default autoType shutdown restrictions, which is possible under certain conditions. Exploiting this vulnerability allows attacking remote servers. Workaround: If upgrading is not possible, you can enable safeMode.
Related
gitlab
gitlab
Unsafe deserialization in com.alibaba:fastjson
2022-06-10 00:00:00
osv
osv
Unsafe deserialization in com.alibaba:fastjson
2022-06-11 00:00:17
CVE-2022-25845
2022-06-10 20:15:08
veracode
veracode
Deserialization Of Untrusted Data
2022-06-13 06:27:57
prion
prion
Deserialization of untrusted data
2022-06-10 20:15:00
redhatcve
redhatcve
CVE-2022-25845
2022-06-23 22:36:51
github
github
Unsafe deserialization in com.alibaba:fastjson
2022-06-11 00:00:17
githubexploit
githubexploit
Exploit for Deserialization of Untrusted Data in Alibaba Fastjson
2022-09-27 18:14:28
Exploit for Deserialization of Untrusted Data in Alibaba Fastjson
2023-03-01 16:17:08
thn
thn
High-Severity RCE Vulnerability Reported in Popular Fastjson Library
2022-06-16 08:25:00
cve
cve
CVE-2022-25845
2022-06-10 20:15:00
redhat
redhat
(RHSA-2022:5532) Important: Red Hat Fuse 7.11.0 release and security update
2022-07-07 14:16:35
oracle
oracle
Oracle Critical Patch Update Advisory - July 2022
2022-07-19 00:00:00