Description
An XML Deserialization vulnerability in glazedlists v1.11.0 allows an attacker to execute arbitrary code via the BeanXMLByteCoder.decode() parameter.
Remediation
References
https://github.com/glazedlists/glazedlists/issues/709
Related Vulnerabilities
CVE-2022-25876 Vulnerability in npm package link-preview-js
CVE-2020-2247 Vulnerability in maven package org.jenkins-ci.plugins:klocwork
CVE-2017-12617 Vulnerability in maven package org.apache.tomcat:tomcat-util
CVE-2019-17495 Vulnerability in maven package org.webjars:swagger-ui
CVE-2020-28459 Vulnerability in npm package markdown-it-decorate