Description
An XML Deserialization vulnerability in glazedlists v1.11.0 allows an attacker to execute arbitrary code via the BeanXMLByteCoder.decode() parameter.
Remediation
References
https://github.com/glazedlists/glazedlists/issues/709
Related Vulnerabilities
CVE-2023-47327 Vulnerability in maven package org.silverpeas.core:silverpeas-core-web
CVE-2022-36083 Vulnerability in maven package org.webjars.npm:jose
CVE-2020-8147 Vulnerability in npm package utils-extend
CVE-2020-15130 Vulnerability in npm package slpjs
CVE-2023-34189 Vulnerability in maven package org.apache.inlong:manager-web