Lucene search
+L

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 1:55 a.m.7 views

CVE-2023-24162

Deserialization vulnerability in Dromara Hutool v5.8.11 allows attacker to execute arbitrary code via the XmlUtil.readObjectFromXml parameter...

9.8CVSS7.7AI score0.0127EPSS
Exploits1References1
vulnersOsv
vulnersOsv
added 2023/01/31 6:30 p.m.4 views

art.rightbrain.tool.vega:vega_api (>=1.0.0 <=1.0.3), cc.autoapi.pucong:auto-flow-core-flow (>=2.0.0 <=2.0.9) +5080 more potentially affected by CVE-2023-24162 via cn.hutool:hutool-all (>=4.0.1 <=5.8.11)

cn.hutool:hutool-all MAVEN version =4.0.1, =1.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =0.5.0, =0.1.0, =0.3.0, =0.5.0, =0.3.0, =0.3.0, =0.2.0, =0.2.0, =0.4.0, =0.8.0 and more Source cves: CVE-2023-24162 Source advisory: OSV:GHSA-77H8-5J3H-JCJF...

9.8CVSS7.2AI score0.0127EPSS
Exploits1
Vulnrichment
Vulnrichment
added 2023/01/31 12:0 a.m.7 views

CVE-2023-24162

Deserialization vulnerability in Dromara Hutool v5.8.11 allows attacker to execute arbitrary code via the XmlUtil.readObjectFromXml parameter...

9.6AI score0.0127EPSS
Exploits1References2
CVE
CVE
added 2023/01/31 12:0 a.m.158 views

CVE-2023-24162

CVE-2023-24162 is a deserialization vulnerability in Dromara Hutool v5.8.11. The issue allows an attacker to achieve arbitrary code execution through XmlUtil.readObjectFromXml. Connected sources confirm the product and vulnerable component, but the documents do not provide concrete exploit detail...

9.8CVSS9.6AI score0.0127EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2023/01/31 12:0 a.m.21 views

CVE-2023-24162

Deserialization vulnerability in Dromara Hutool v5.8.11 allows attacker to execute arbitrary code via the XmlUtil.readObjectFromXml parameter...

9.9AI score0.0127EPSS
Exploits1References2
Rows per page
Query Builder