Hacker Times
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
chillax
on March 30, 2022
|
parent
|
context
|
favorite
| on:
Possible Spring core RCE
For some reason the link didnt work for me previously, so I linked to github. The notice can also be found at bugalert.org:
https://bugalert.org/content/notices/2022-03-29-spring.html
cotillion
on March 30, 2022
[–]
This appears to be some Chinese source with the same info:
https://cn-sec.com/archives/853339.html
Looking at Github and uses of SerializationUtils.deserialize this is going to be painful.
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
