Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Apache Olingo versions 4.0.0 to 4.6.0 provide the AbstractService class, which is public API, uses ObjectInputStream and doesn't check classes being deserialized. If an attacker can feed malicious metadata to the class, then it may result in running attacker's code in the worse case.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Apache Olingo 代码问题漏洞
Vulnerability Description
Apache Olingo是美国阿帕奇(Apache)软件基金会的一款用于实现Open Data Protocol(OData,开放数据协议)的Java库。 Apache Olingo 4.0.0版本至4.6.0版本中存在安全漏洞。攻击者可利用该漏洞执行代码或造成其他危害。
CVSS Information
N/A
Vulnerability Type
N/A