Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-502 (可信数据的反序列化) — Vulnerability Class 1677

1677 vulnerabilities classified as CWE-502 (可信数据的反序列化). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2022-2830 Deserialization of Untrusted Data in GravityZone Console On-Premise (VA-10573) — GravityZone Console On-Premise 8.8 High2022-09-05
CVE-2022-29063 Java Deserialization via RMI Connection from the Solr plugin of Apache OFBiz — Apache OFBiz 9.8 -2022-09-02
CVE-2022-37023 Apache Geode deserialization of untrusted data flaw when using REST API on Java 8 or Java 11 — Apache Geode 8.8 -2022-08-31
CVE-2022-37022 Apache Geode deserialization of untrusted data flaw when using JMX over RMI on Java 11 — Apache Geode 9.8 -2022-08-31
CVE-2022-37021 Apache Geode deserialization of untrusted data flaw when using JMX over RMI on Java 8. — Apache Geode 9.8 -2022-08-31
CVE-2022-34668 NVIDIA NVFLARE 代码问题漏洞 — NVIDIA FLARE 9.8 Critical2022-08-29
CVE-2022-2465 ISaGRAF Workbench Deserialization of Untrusted Data CWE-502 — ISaGRAF Workbench 8.6 High2022-08-25
CVE-2021-25642 Apache Hadoop YARN remote code execution in ZKConfigurationStore of capacity scheduler — Apache Hadoop 8.8 -2022-08-25
CVE-2021-4178 Kubernetes 代码问题漏洞 — kubernetes-client 6.7 -2022-08-24
CVE-2022-2886 Laravel deserialization — Laravel 5.0 Medium2022-08-19
CVE-2022-2870 laravel deserialization — laravel 4.1 Medium2022-08-17
CVE-2022-36006 Authenticated remote code execution due to insecure deserialization (GHSL-2022-063) — arvados 7.9 High2022-08-14
CVE-2022-33947 BIG-IP DNS TMUI Vulnerability CVE-2022-33947 — BIG-IP DNS 5.4 Medium2022-08-04
CVE-2022-28684 DevExpress 代码问题漏洞 — DevExpress 8.8 -2022-08-03
CVE-2022-35223 EasyUse MailHunter Ultimate - Deserialization of Untrusted Data — MailHunter Ultimate 9.8 Critical2022-08-02
CVE-2022-35872 Inductive Automation Ignition 代码问题漏洞 — Ignition 7.8 -2022-07-25
CVE-2022-35870 Inductive Automation Ignition 代码问题漏洞 — Ignition 8.4 -2022-07-25
CVE-2022-33318 Mitsubishi Electric MC Works64 代码问题漏洞 — GENESIS64 9.8 Critical2022-07-20
CVE-2022-33320 Mitsubishi Electric MC Works64 代码问题漏洞 — GENESIS64 7.8 High2022-07-20
CVE-2022-33315 Mitsubishi Electric MC Works64和ICONICS GENESIS64 代码问题漏洞 — GENESIS64 7.8 High2022-07-20
CVE-2022-33316 Mitsubishi Electric MC Works64 和 ICONICS GENESIS64 代码问题漏洞 — GENESIS64 7.8 High2022-07-20
CVE-2022-27580 Safety 代码问题漏洞 — SICK Safety Designer 7.8 -2022-07-19
CVE-2022-27579 SICK Flexi Soft Designer 代码问题漏洞 — SICK Flexi Soft Designer 7.8 -2022-07-19
CVE-2022-1984 HYPR 代码问题漏洞 — HYPR Windows WFA 4.5 Medium2022-07-19
CVE-2022-24082 Pegasystem PEGA Platform 代码问题漏洞 — Pega Infinity 9.8 -2022-07-19
CVE-2022-2437 Feed Them Social – for Twitter feed, Youtube and more <= 2.9.8.5 - Unauthenticated PHAR Deserialization — Feed Them Social – Social Media Feeds, Video, and Photo Galleries 9.8 Critical2022-07-18
CVE-2022-2444 Visualizer: Tables and Charts Manager for WordPress <= 3.7.9 - Authenticated (Contributor+) PHAR Deserialization — Visualizer: Tables and Charts Manager for WordPress 8.8 High2022-07-18
CVE-2022-31605 NVIDIA NVFLARE 代码问题漏洞 — NVIDIA FLARE 9.8 Critical2022-07-01
CVE-2022-31604 NVIDIA NVFLARE 代码问题漏洞 — NVIDIA FLARE 9.8 Critical2022-07-01
CVE-2022-31115 Unsafe YAML deserialization in opensearch-ruby — opensearch-ruby 8.8 High2022-06-30

Vulnerabilities classified as CWE-502 (可信数据的反序列化) represent 1677 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.