Vulnerabilities > Alibabacloud

DATE CVE VULNERABILITY TITLE RISK
2023-08-21 CVE-2023-39106 Deserialization of Untrusted Data vulnerability in Alibabacloud Nacos Spring Project
An issue in Nacos Group Nacos Spring Project v.1.1.1 and before allows a remote attacker to execute arbitrary code via the SnakeYamls Constructor() component.
network
low complexity
alibabacloud CWE-502
8.8