Lucene search
K

4 matches found

ATTACKERKB
ATTACKERKB
added 2 days ago4 views

CVE-2026-43825

Untrusted Java Deserialization in Apache OpenNLP SvmDoccatModel Versions Affected: before 3.0.0-M4 libsvm document categorization module; introduced in OPENNLP-1808 and only present on the 3.x line Description: SvmDoccatModel.deserializeInputStream reads an attacker-controlled stream with...

7.3CVSS6.7AI score0.04809EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/04/23 12:0 a.m.9 views

Pipecat 代码问题漏洞

Pipecat is an open-source development framework developed by Pipecat that supports real-time audio and video stream processing as well as AI-powered dialogue interactions. Versions 0.0.41 to 0.0.93 of Pipecat contain code vulnerabilities. These vulnerabilities stem from the deserialize method of...

9.8CVSS6.2AI score0.00701EPSS
Exploits1References1
BDU FSTEC
BDU FSTEC
added 2025/04/22 12:0 a.m.8 views

The vulnerability of the pgCodeKeeper plugin for the PostgreSQL database, related to deserialization mechanism flaws, allows a hacker to execute arbitrary code.

The vulnerability of the pgCodeKeeper plugin for the PostgreSQL database is related to deficiencies in the deserialization mechanism in the “deserialize” method of the “Utils” class. Exploiting this vulnerability allows an attacker to execute arbitrary code through a specially crafted file with t...

9.3CVSS6AI score
Exploits0References3Affected Software1
Snyk
Snyk
added 2025/02/21 6:40 p.m.2 views

XML External Entity (XXE) Injection

Overview Affected versions of this package are vulnerable to XML External Entity XXE Injection via the deserialize method, when handling untrusted XML data, which may contain external entity references. Details XXE Injection is a type of attack against an application that parses XML input. XML is...

8.7CVSS7.6AI score0.00211EPSS
Exploits0References2
Rows per page
Query Builder