CVE-2024-47561 | Apache Avro Java SDK up to 1.11.3 Schema Parser deserialization

Inserito da Angelo Barbosa | Ott 3, 2024 | CVE

A vulnerability was found in Apache Avro Java SDK up to 1.11.3. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Schema Parser. The manipulation leads to deserialization.

This vulnerability is handled as CVE-2024-47561. The attack can only be initiated within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-47561 | Apache Avro Java SDK up to 1.11.3 Schema Parser deserialization

Post correlati

CVE-2024-4326 | parisneo lollms-webui up to 9.4 /apply_settings unknown vulnerability

CVE-2024-3193 | MailCleaner up to 2023.03.14 Admin Endpoints os command injection (MZ-24-01)

CVE-2023-29962 | S-CMS 5.0 path traversal

CVE-2024-27334 | Kofax Power PDF JPEG File Parser out-of-bounds