Vulnerabilities > Deserialization of Untrusted Data

DATE CVE VULNERABILITY TITLE RISK
2022-10-25 CVE-2022-39312 Deserialization of Untrusted Data vulnerability in Dataease
Dataease is an open source data visualization analysis tool.
network
low complexity
dataease CWE-502
critical
9.8
2022-10-20 CVE-2022-36957 Deserialization of Untrusted Data vulnerability in Solarwinds Orion Platform
SolarWinds Platform was susceptible to the Deserialization of Untrusted Data.
network
low complexity
solarwinds CWE-502
7.2
2022-10-20 CVE-2022-36958 Deserialization of Untrusted Data vulnerability in Solarwinds Orion Platform
SolarWinds Platform was susceptible to the Deserialization of Untrusted Data.
network
low complexity
solarwinds CWE-502
8.8
2022-10-20 CVE-2022-38108 Deserialization of Untrusted Data vulnerability in Solarwinds Orion Platform
SolarWinds Platform was susceptible to the Deserialization of Untrusted Data.
network
low complexity
solarwinds CWE-502
7.2
2022-10-19 CVE-2022-43019 Deserialization of Untrusted Data vulnerability in Opencats 0.9.6
OpenCATS v0.9.6 was discovered to contain a remote code execution (RCE) vulnerability via the getDataGridPager's ajax functionality.
network
low complexity
opencats CWE-502
critical
9.8
2022-10-19 CVE-2022-23734 Deserialization of Untrusted Data vulnerability in Github Enterprise Server
A deserialization of untrusted data vulnerability was identified in GitHub Enterprise Server that could potentially lead to remote code execution on the SVNBridge.
network
low complexity
github CWE-502
8.8
2022-10-18 CVE-2022-40889 Deserialization of Untrusted Data vulnerability in PHPok 6.1
Phpok 6.1 has a deserialization vulnerability via framework/phpok_call.php.
network
low complexity
phpok CWE-502
critical
9.8
2022-10-18 CVE-2022-22241 Deserialization of Untrusted Data vulnerability in Juniper Junos
An Improper Input Validation vulnerability in the J-Web component of Juniper Networks Junos OS may allow an unauthenticated attacker to access data without proper authorization.
network
low complexity
juniper CWE-502
critical
9.8
2022-10-17 CVE-2022-3291 Deserialization of Untrusted Data vulnerability in Gitlab
Serialization of sensitive data in GitLab EE affecting all versions from 14.9 prior to 15.2.5, 15.3 prior to 15.3.4, and 15.4 prior to 15.4.1 can leak sensitive information via cache
network
low complexity
gitlab CWE-502
6.5
2022-10-14 CVE-2022-39311 Deserialization of Untrusted Data vulnerability in Thoughtworks Gocd
GoCD is a continuous delivery server.
network
low complexity
thoughtworks CWE-502
8.8