Vulnerabilities > Deserialization of Untrusted Data

DATE	CVE	VULNERABILITY TITLE	RISK
2022-10-19	CVE-2022-23734	Deserialization of Untrusted Data vulnerability in Github Enterprise Server A deserialization of untrusted data vulnerability was identified in GitHub Enterprise Server that could potentially lead to remote code execution on the SVNBridge. network low complexity github CWE-502	8.8
2022-10-18	CVE-2022-40889	Deserialization of Untrusted Data vulnerability in PHPok 6.1 Phpok 6.1 has a deserialization vulnerability via framework/phpok_call.php. network low complexity phpok CWE-502 critical	9.8
2022-10-18	CVE-2022-22241	Deserialization of Untrusted Data vulnerability in Juniper Junos An Improper Input Validation vulnerability in the J-Web component of Juniper Networks Junos OS may allow an unauthenticated attacker to access data without proper authorization. network low complexity juniper CWE-502 critical	9.8
2022-10-17	CVE-2022-3291	Deserialization of Untrusted Data vulnerability in Gitlab Serialization of sensitive data in GitLab EE affecting all versions from 14.9 prior to 15.2.5, 15.3 prior to 15.3.4, and 15.4 prior to 15.4.1 can leak sensitive information via cache network low complexity gitlab CWE-502	6.5
2022-10-14	CVE-2022-39311	Deserialization of Untrusted Data vulnerability in Thoughtworks Gocd GoCD is a continuous delivery server. network low complexity thoughtworks CWE-502	8.8
2022-10-12	CVE-2022-39297	Deserialization of Untrusted Data vulnerability in Melistechnology Meliscms MelisCms provides a full CMS for Melis Platform, including templating system, drag'n'drop of plugins, SEO and many administration tools. network low complexity melistechnology CWE-502 critical	9.8
2022-10-12	CVE-2018-18446	Deserialization of Untrusted Data vulnerability in Dotpdn Paint.Net dotPDN Paint.NET before 4.1.2 allows Deserialization of Untrusted Data (issue 1 of 2). network low complexity dotpdn CWE-502 critical	9.8
2022-10-12	CVE-2018-18447	Deserialization of Untrusted Data vulnerability in Dotpdn Paint.Net dotPDN Paint.NET before 4.1.2 allows Deserialization of Untrusted Data (issue 2 of 2). network low complexity dotpdn CWE-502 critical	9.8
2022-10-07	CVE-2022-31680	Deserialization of Untrusted Data vulnerability in VMWare Vcenter Server The vCenter Server contains an unsafe deserialisation vulnerability in the PSC (Platform services controller). network low complexity vmware CWE-502 critical	9.1
2022-10-07	CVE-2022-26471	Deserialization of Untrusted Data vulnerability in Google Android 12.0 In telephony, there is a possible escalation of privilege due to a parcel format mismatch. local low complexity google CWE-502	7.8