CVE-2023-29234
CVSS v3.1
9.8 (Critical)
EPSS
6.86 % (94th)
Affected Products
1
Advisories
1
A deserialization vulnerability existed when decode a malicious package.This issue affects Apache Dubbo: from 3.1.0 through 3.1.10, from 3.2.0 through 3.2.4.
Users are recommended to upgrade to the latest version, which fixes the issue.
Weaknesses
- CWE-502
- Deserialization of Untrusted Data
- CVE Status
- PUBLISHED
- CNA
- Apache Software Foundation
- Published Date
-
2023-12-15 09:15:07
(9 months ago) - Updated Date
-
2023-12-21 04:48:31
(9 months ago)
Affected Products
Loading...
Loading...
Loading...
Configuration #1
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...