Lucene search
Veracode Vulnerability DatabaseVERACODE:39966HistoryMar 28, 2023 - 4:13 a.m.
Deserialization Of Untrusted Data
2023-03-2804:13:41
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
12
deserialization
untrusted data
mysql
jdbc url
remote code execution
EPSS
0.001
Percentile
44.4%
manager-pojo is vulnerable to Deserialization Of Untrusted Data. The vulnerability exists because the library does not properly encode the MySQL JDBC URL in MySQLDataNode, which allows an attacker to inject and execute malicious code, resulting in Remote Code Execution.
Related
cnvd
cnvd
Apache InLong Deserialization Vulnerability (CNVD-2023-25936)
2023-03-29 00:00:00
github
github
Apache InLong vulnerable to JDBC Deserialization of Untrusted Data
2023-03-27 15:30:16
cvelist
cvelist
CVE-2023-27296 Apache InLong: JDBC Deserialization Vulnerability in InLong
2023-03-27 14:10:32
cve
cve
CVE-2023-27296
2023-03-27 15:15:08
prion
prion
Deserialization of untrusted data
2023-03-27 15:15:00
osv
osv
CVE-2023-27296
2023-03-27 15:15:08
Apache InLong vulnerable to JDBC Deserialization of Untrusted Data
2023-03-27 15:30:16
nvd
nvd
CVE-2023-27296
2023-03-27 15:15:08