CVE-2023-38264

CVE-2023-38264 affects IBM SDK, Java Technology Edition ORB (7.1.0.0–7.1.5.21 and 8.0.0.0–8.0.8.21) due to improper enforcement of JEP 290 MaxRef and MaxDepth deserialization filters, enabling potential denial-of-service through unsafe deserialization. The Connected IBM advisories confirm multipl...