Apache bRPC 输入验证错误漏洞

Apache bRPC is the United States Apache Apache Foundation's industrial-grade RPC framework for building reliable and high-performance services. An input validation error vulnerability exists in Apache bRPC that stems from improper input validation in the product and can be exploited by an attacke...

The vulnerability of the org.apache.xmlrpc.parser.XmlRpcResponseParser.addResult method in the Apache XML-RPC library, related to the restoration of unreliable data in memory, allows attackers to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of the org.apache.xmlrpc.parser.XmlRpcResponseParser.addResult method in the Apache XML-RPC library is related to an deserialization exception from the server side, serialized in the faultCause attribute of XMLRPC error messages. Exploiting this vulnerability can allow a malicio...