2.2.0

DATE	CVE	VULNERABILITY TITLE	RISK
2018-06-11	CVE-2017-3201	Deserialization of Untrusted Data vulnerability in Exadel Flamingo Amf-Serializer 2.2.0 The Java implementation of AMF3 deserializers used in Flamingo amf-serializer by Exadel, version 2.2.0 derives class instances from java.io.Externalizable rather than the AMF3 specification's recommendation of flash.utils.IExternalizable. network high complexity exadel CWE-502	8.1