Lucene search
Spring Advanced Message Queuing Protocol Security Vulnerabilities - 2023
cve
In spring AMQP versions 1.0.0 to2.4.16 and 3.0.0 to 3.0.9 , allowed list patterns for deserializable classnames were added to Spring AMQP, allowing users to lock down deserialization ofdata in messages from untrusted sources; however by default, when no allowedlist was provided, all classes could b...
5CVSS
4.8AI Score
0.0005EPSS
2023-10-19 08:15 AM
61