CVE-2026-42778 | Apache MINA up to 2.1.11/2.2.6 AbstractIoBuffer.getObject deserialization

Inserito da Angelo Barbosa | Mag 1, 2026 | CVE

A vulnerability marked as critical has been reported in Apache MINA up to 2.1.11/2.2.6. The affected element is the function AbstractIoBuffer.getObject. This manipulation causes deserialization.

This vulnerability appears as CVE-2026-42778. The attack may be initiated remotely. There is no available exploit.

It is suggested to upgrade the affected component.

CVE-2026-42778 | Apache MINA up to 2.1.11/2.2.6 AbstractIoBuffer.getObject deserialization

Post correlati

CVE-2026-21713 | Node.js up to 20.20.1/22.22.1/24.14.0/25.8.1 HMAC Verification crypto_hmac.cc memcmp comparison

CVE-2026-1042 | WP Hello Bar Plugin up to 1.02 on WordPress digit_one/digit_two cross site scripting

CVE-2024-13287 | Drupal Views SVG Animation up to 1.0.0 cross site scripting

CVE-2024-12132 | WP Job Portal Plugin up to 2.2.4 on WordPress resource injection