cve/CVE-2022-25647.md at 43553e9af13bbdba84028635c21659dede3160a7

admin/cve

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-06 02:31:38 +00:00

0xMarcio 6100550298 Update CVE sources 2024-06-22 09:37

2024-06-22 09:37:59 +00:00

1.3 KiB

Raw Blame History

CVE-2022-25647

Description

The package com.google.code.gson:gson before 2.8.9 are vulnerable to Deserialization of Untrusted Data via the writeReplace() method in internal classes, which may lead to DoS attacks.

POC

Reference

https://www.oracle.com/security-alerts/cpujul2022.html

Github

https://github.com/ARPSyndicate/cvemon
https://github.com/CGCL-codes/PHunter
https://github.com/LibHunter/LibHunter
https://github.com/hinat0y/Dataset1
https://github.com/hinat0y/Dataset10
https://github.com/hinat0y/Dataset11
https://github.com/hinat0y/Dataset12
https://github.com/hinat0y/Dataset2
https://github.com/hinat0y/Dataset3
https://github.com/hinat0y/Dataset4
https://github.com/hinat0y/Dataset5
https://github.com/hinat0y/Dataset6
https://github.com/hinat0y/Dataset7
https://github.com/hinat0y/Dataset8
https://github.com/hinat0y/Dataset9
https://github.com/scordero1234/java_sec_demo-main

1.3 KiB Raw Blame History

CVE-2022-25647

Description

POC

Reference

Github

1.3 KiB

Raw Blame History