Deserialization Of Untrusted Data
com.datadoghq:dd-java-agent is vulnerable to Deserialization of Untrusted Data. The vulnerability is due to unsafe deserialization of incoming data by a custom RMI endpoint without applying serialization filters, which allows a network-based attacker to exploit a gadget chain and potentially...