Lucene search

K
cvelistMitreCVELIST:CVE-2020-24164
HistorySep 11, 2020 - 5:49 a.m.

CVE-2020-24164

2020-09-1105:49:06
mitre
www.cve.org

0.001 Low

EPSS

Percentile

28.5%

A deserialization flaw is present in Taoensso Nippy before 2.14.2. In some circumstances, it is possible for an attacker to create a malicious payload that, when deserialized, will allow arbitrary code to be executed. This occurs because there is automatic use of the Java Serializable interface.

0.001 Low

EPSS

Percentile

28.5%

Related for CVELIST:CVE-2020-24164