1. Home
  2. Vulnerabilities
  3. CVE-2023-46279

CVE-2023-46279

CVSS v3.1 9.8 (Critical)
98% Progress
EPSS 4.96 % (93th)
4.96% Progress
Affected Products 1
Advisories 1
Info CVSS EPSS CAPEC Affected Configurations References Security Advisories Packages & Software Graph Web & Social Timeline

Deserialization of Untrusted Data vulnerability in Apache Dubbo.This issue only affects Apache Dubbo 3.1.5.

Users are recommended to upgrade to the latest version, which fixes the issue.

Weaknesses
CWE-502
Deserialization of Untrusted Data
CVE Status
PUBLISHED
CNA
Apache Software Foundation
Published Date
2023-12-15 09:15:07
(9 months ago)
Updated Date
2023-12-19 17:40:49
(9 months ago)

Affected Products

Apache

Configuration #1

    CPE23 From Up To
  Apache Dubbo 3.1.5 cpe:2.3:a:apache:dubbo:3.1.5