7.9 High
AI Score
Confidence
High
0.024 Low
EPSS
Percentile
90.0%
The BDew BdLib library before 1.16.1.7 for Minecraft allows remote code execution because it deserializes untrusted data in ObjectInputStream.readObject as part of its use of Java serialization.
bdew.net
github.com/bdew-minecraft/bdlib/commit/447210530ceec72fb3374efecb0930ed359d2297
vuln.ryotak.me/advisories/46
www.curseforge.com/minecraft/mc-mods/bdlib/files/3331330