Vulnerabilities > Sofastack

DATE CVE VULNERABILITY TITLE RISK
2024-01-23 CVE-2024-23636 Deserialization of Untrusted Data vulnerability in Sofastack Sofarpc
SOFARPC is a Java RPC framework.
network
low complexity
sofastack CWE-502
critical
9.8
2023-09-12 CVE-2023-41331 Expression Language Injection vulnerability in Sofastack Sofarpc
SOFARPC is a Java RPC framework.
network
low complexity
sofastack CWE-917
critical
9.8