27 matches found
CVE-2025-59328
A vulnerability in Apache Fory allows a remote attacker to cause a Denial of Service DoS. The issue stems from the insecure deserialization of untrusted data. An attacker can supply a large, specially crafted data payload that, when processed, consumes an excessive amount of CPU resources during...
CVE-2025-59328 Apache Fory: Denial of Service (DoS) due to Deserialization of Untrusted malicious large Data
A vulnerability in Apache Fory allows a remote attacker to cause a Denial of Service DoS. The issue stems from the insecure deserialization of untrusted data. An attacker can supply a large, specially crafted data payload that, when processed, consumes an excessive amount of CPU resources during...
CVE-2025-59328
CVE-2025-59328 describes a DoS vulnerability in the Apache Fory library caused by insecure deserialization of untrusted data. A remote attacker can submit a large, crafted payload that, when deserialized, fuels high CPU usage, leading to CPU exhaustion and unresponsiveness of the affected applica...
CVE-2025-59328 Apache Fory: Denial of Service (DoS) due to Deserialization of Untrusted malicious large Data
A vulnerability in Apache Fory allows a remote attacker to cause a Denial of Service DoS. The issue stems from the insecure deserialization of untrusted data. An attacker can supply a large, specially crafted data payload that, when processed, consumes an excessive amount of CPU resources during...
CVE-2025-59328 Apache Fory: Denial of Service (DoS) due to Deserialization of Untrusted malicious large Data
A vulnerability in Apache Fory allows a remote attacker to cause a Denial of Service DoS. The issue stems from the insecure deserialization of untrusted data. An attacker can supply a large, specially crafted data payload that, when processed, consumes an excessive amount of CPU resources during...
PT-2025-37727
Name of the Vulnerable Software and Affected Versions: Apache Fory versions prior to 0.12.2 Description: A vulnerability in Apache Fory allows a remote attacker to cause a Denial of Service DoS. The issue is due to the insecure deserialization of untrusted data. An attacker can provide a large,...
Apache Fory 代码问题漏洞
Apache Fory is a serialization framework from the Apache Foundation. A code issue vulnerability exists in Apache Fory that stems from consuming excessive CPU resources when deserializing untrustworthy data, which could lead to a denial of service attack...