CVE-2017-3199
Insight: CVE-2017-3199 affects GraniteDS 3.1.1.GA, where AMF3 deserializers instantiate classes via java.io.Externalizable instead of the AMF3-recommended flash.utils.IExternalizable. This insecure deserialization could allow a remote attacker with RMI-control over a server connection to deliver ...