4 matches found
VulnCheck KEV: CVE-2026-27971
Qwik is a performance focused javascript framework. qwik =1.19.0 is vulnerable to RCE due to an unsafe deserialization vulnerability in the server$ RPC mechanism that allows any unauthenticated user to execute arbitrary code on the server with a single HTTP request. Affects any deployment where...
Swift-corelibs-foundation denial of service in JSON decoding with JSONDecoder
Impact A program using swift-corelibs-foundation is vulnerable to a denial of service attack caused by a potentially malicious source producing a JSON document containing a type mismatch. This vulnerability is caused by the interaction between a deserialization mechanism offered by the Swift...
PT-2022-2828 · Laravel · Laravel
Name of the Vulnerable Software and Affected Versions: Laravel version 9.1.8 Description: The issue is related to the implementation of the destruct function and the dispatch$command method in the Laravel PHP framework, which is connected to weaknesses in the deserialization mechanism. This can...
PT-2020-4192
Name of the Vulnerable Software and Affected Versions: FasterXML jackson-databind versions 2.x before 2.9.10.5 Description: The issue is related to the deserialization mechanism in the Jackson-databind library, specifically with the com.sun.org.apache.xalan.internal.lib.sql.JNDIConnectionPool...