com.google.code.gson-gson: Deserialization of Untrusted Data in com.google.code.gson-gson

A flaw was found in gson, which is vulnerable to Deserialization of Untrusted Data via the writeReplace method in internal classes. This issue may lead to availability attacks...

gson 代码问题漏洞

gson is a Java library that can be used to convert Java objects to their JSON representation. A security vulnerability exists in com.google.code.gson:gson versions prior to 2.8.9 that stems from the writeReplace method deserializing untrusted data, which can lead to a DoS attack...