Vulnerabilities > Deserialization of Untrusted Data
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-11-24 | CVE-2024-53912 | Deserialization of Untrusted Data vulnerability in Veritas Enterprise Vault An issue was discovered in the server in Veritas Enterprise Vault before 15.2, ZDI-CAN-24341. | 9.8 |
| 2024-11-24 | CVE-2024-53914 | Deserialization of Untrusted Data vulnerability in Veritas Enterprise Vault An issue was discovered in the server in Veritas Enterprise Vault before 15.2, ZDI-CAN-24344. | 9.8 |
| 2024-11-24 | CVE-2024-53915 | Deserialization of Untrusted Data vulnerability in Veritas Enterprise Vault An issue was discovered in the server in Veritas Enterprise Vault before 15.2, ZDI-CAN-24405. | 9.8 |
| 2024-11-24 | CVE-2024-53913 | Deserialization of Untrusted Data vulnerability in Veritas Enterprise Vault An issue was discovered in the server in Veritas Enterprise Vault before 15.2, ZDI-CAN-24343. | 9.8 |
| 2024-11-22 | CVE-2024-11392 | Deserialization of Untrusted Data vulnerability in Huggingface Transformers Hugging Face Transformers MobileViTV2 Deserialization of Untrusted Data Remote Code Execution Vulnerability. | 8.8 |
| 2024-11-22 | CVE-2024-11393 | Deserialization of Untrusted Data vulnerability in Huggingface Transformers Hugging Face Transformers MaskFormer Model Deserialization of Untrusted Data Remote Code Execution Vulnerability. | 8.8 |
| 2024-11-22 | CVE-2024-11394 | Deserialization of Untrusted Data vulnerability in Huggingface Transformers Hugging Face Transformers Trax Model Deserialization of Untrusted Data Remote Code Execution Vulnerability. | 8.8 |
| 2024-11-20 | CVE-2018-9474 | Deserialization of Untrusted Data vulnerability in Google Android In writeToParcel of MediaPlayer.java, there is a possible serialization/deserialization mismatch due to improper input validation. | 7.8 |
| 2024-11-18 | CVE-2024-52433 | Deserialization of Untrusted Data vulnerability in Mindstien MY GEO Posts Free Deserialization of Untrusted Data vulnerability in Mindstien Technologies My Geo Posts Free allows Object Injection.This issue affects My Geo Posts Free: from n/a through 1.2. | 9.8 |
| 2024-11-14 | CVE-2024-10962 | The Migration, Backup, Staging – WPvivid plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 0.9.107 via deserialization of untrusted input in the 'replace_row_data' and 'replace_serialize_data' functions. | 8.8 |