Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-502 (可信数据的反序列化) — Vulnerability Class 1677

1677 vulnerabilities classified as CWE-502 (可信数据的反序列化). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2023-29215 Apache Linkis JDBC EngineCon has a deserialization command execution — Apache Linkis 9.8 -2023-04-10
CVE-2023-29006 Order GLPI plugin vulnerable to remote code execution from authenticated user — order 8.8 High2023-04-05
CVE-2023-20102 Cisco Secure Network Analytics Remote Code Execution Vulnerability — Cisco Secure Network Analytics 8.8 High2023-04-05
CVE-2022-2561 OPC Labs QuickOPC 代码问题漏洞 — QuickOPC 7.8 -2023-03-29
CVE-2022-28685 AVEVA Edge 代码问题漏洞 — Edge 7.8 -2023-03-29
CVE-2022-36971 Ivanti Avalanche 代码问题漏洞 — Avalanche 9.8 -2023-03-29
CVE-2022-36974 Ivanti Avalanche 代码问题漏洞 — Avalanche 9.8 -2023-03-29
CVE-2022-36977 Ivanti Avalanche 代码问题漏洞 — Avalanche 9.8 -2023-03-29
CVE-2022-36978 Ivanti Avalanche 代码问题漏洞 — Avalanche 9.8 -2023-03-29
CVE-2023-1399 Keysight Technologies N6854A Geolocation server 代码问题漏洞 — N6854A Geolocation Server 7.8 High2023-03-27
CVE-2023-1145 Delta Electronics InfraSuite Device Master 代码问题漏洞 — InfraSuite Device Master 7.8 High2023-03-27
CVE-2023-27296 Apache InLong: JDBC Deserialization Vulnerability in InLong — Apache InLong 8.8 -2023-03-27
CVE-2023-26359 Adobe ColdFusion Deserialization of Untrusted Data Arbitrary code execution — ColdFusion 9.8 Critical2023-03-23
CVE-2023-27978 Schneider Electric IGSS Data Server代码问题漏洞 — IGSS Data Server(IGSSdataServer.exe) 7.8 High2023-03-21
CVE-2023-28115 Snappy vulnerable to PHAR deserialization, allowing remote code execution — snappy 9.8 Critical2023-03-17
CVE-2023-26464 Apache Log4j 1.x (EOL) allows DoS in Chainsaw and SocketAppender — Apache Log4j 7.5 -2023-03-10
CVE-2023-23638 Apache Dubbo Deserialization Vulnerability Gadgets Bypass — Apache Dubbo 5.0 Medium2023-03-08
CVE-2022-23535 LiteDB contains Deserialization of Untrusted Data — LiteDB 7.3 High2023-02-24
CVE-2023-0960 SeaCMS Picture Management config.ftp.php deserialization — SeaCMS 4.7 Medium2023-02-22
CVE-2022-48282 Deserializing compromised object with MongoDB .NET/C# Driver may cause remote code execution — MongoDB .NET/C# Driver 6.6 Medium2023-02-21
CVE-2022-47986 IBM Aspera Faspex code execution — Aspera Faspex 9.8 Critical2023-02-17
CVE-2022-38111 SolarWinds Platform Deserialization of Untrusted Data Vulnerability — SolarWinds Platform 7.2 High2023-02-15
CVE-2022-47503 SolarWinds Platform Deserialization of Untrusted Data Vulnerability — SolarWinds Platform 7.2 High2023-02-15
CVE-2022-47504 SolarWinds Platform Deserialization of Untrusted Data Vulnerability — SolarWinds Platform 7.2 High2023-02-15
CVE-2022-47507 SolarWinds Platform Deserialization of Untrusted Data Vulnerability — SolarWinds Platform 7.2 High2023-02-15
CVE-2023-23836 SolarWinds Platform Deserialization of Untrusted Data Vulnerability — SolarWinds Platform 7.2 High2023-02-15
CVE-2023-21713 Microsoft SQL Server Remote Code Execution Vulnerability — Microsoft SQL Server 2016 Service Pack 3 Azure Connect Feature Pack 8.8 High2023-02-14
CVE-2023-21710 Microsoft Exchange Server Remote Code Execution Vulnerability — Microsoft Exchange Server 2016 Cumulative Update 23 7.2 High2023-02-14
CVE-2023-21703 Azure Data Box Gateway Remote Code Execution Vulnerability — Azure Data Box Gateway 6.5 Medium2023-02-14
CVE-2023-21529 Microsoft Exchange Server Remote Code Execution Vulnerability — Microsoft Exchange Server 2019 Cumulative Update 12 8.8 High2023-02-14

Vulnerabilities classified as CWE-502 (可信数据的反序列化) represent 1677 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.