CVE-2024-52046 | Apache MINA up to 2.0.26/2.1.9/2.2.3 ObjectSerializationDecoder deserialization

Inserito da Angelo Barbosa | Dic 25, 2024 | CVE

A vulnerability was found in Apache MINA up to 2.0.26/2.1.9/2.2.3. It has been classified as critical. This affects an unknown part of the component ObjectSerializationDecoder. The manipulation leads to deserialization.

This vulnerability is uniquely identified as CVE-2024-52046. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-52046 | Apache MINA up to 2.0.26/2.1.9/2.2.3 ObjectSerializationDecoder deserialization

Post correlati

CVE-2024-35880 | Linux Kernel up to 6.6.25/6.8.4 kbuf io_buffer_list use after free (65938e81df21/5fd8e2359498/561e4f9451d6)

CVE-2024-20076 | MediaTek MT8788 Modem memory corruption (MSV-1481 / MOLY01297806)

CVE-2024-49897 | Linux Kernel up to 6.10.13/6.11.2 AMD Display phantom_stream use after free (1decf695ce08/3ba1219e299a/3718a619a8c0)

CVE-2024-22019 | Node.js HTTP Request denial of service