GHSA-2GMP-34J9-FQJM Replicator deserializes untrusted user input

An unauthenticated Remote Code Execution RCE vulnerability exists in applications that use the Replicator node package manager npm version 1.0.5 to deserialize untrusted user input and execute the resulting object...

replicator 安全漏洞

Replicator is a high-level JavaScript object serialization library developed by Ivan Nikulin. Version 1.0.5 of Replicator contains a security vulnerability that stems from deserializing untrusted user inputs, potentially allowing unauthorized remote code execution...

CVE-2024-43383

Deserialization of Untrusted Data vulnerability in Apache Lucene.Net.Replicator. This issue affects Apache Lucene.NET's Replicator library: from 4.8.0-beta00005 through 4.8.0-beta00016. An attacker that can intercept traffic between a replication client and server, or control the target replicati...

GHSA-2QW8-PPR5-M96C Apache Lucene.Net.Replicator Deserialization of Untrusted Data vulnerability

Deserialization of Untrusted Data vulnerability in Apache Lucene.Net.Replicator. This issue affects Apache Lucene.NET's Replicator library: from 4.8.0-beta00005 through 4.8.0-beta00016. An attacker that can intercept traffic between a replication client and server, or control the target replicati...

PT-2024-7646 · Apache · Apache Lucene.Net.Replicator

Name of the Vulnerable Software and Affected Versions: Apache Lucene.Net.Replicator versions 4.8.0-beta00005 through 4.8.0-beta00016 Description: This issue is related to the deserialization of untrusted data, which can result in remote code execution or other potential unauthorized access. An...