3 matches found
org.apache.avro/avro: Apache Avro Java SDK: Code injection on Java generated code
A code injection flaw has been discovered in Apache Avro. This vulnerability manifests when generating specific records from untrusted Avro schemas...
CVE-2021-37213
The check-in record page of Flygo contains Insecure Direct Object Reference IDOR vulnerability. After being authenticated as a general user, remote attackers can manipulate the employee ID and date in specific parameters to access particular employee’s check-in record...
bind DoS
A problem in RBT algorythm implementation causes hang on specific combination of records...