admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-07-29 05:56:59 +00:00
Code Issues Packages Projects Releases Wiki Activity

edit versions

Browse Source
This commit is contained in:
Laura Pardo 2019-07-22 17:52:28 -03:00
parent 6ae120878f
commit dc2ac56932
No known key found for this signature in database
GPG Key ID: CA36726D6C381D8A
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
2019/10xxx/CVE-2019-10173.json
View File

@ -57,7 +57,7 @@
"description_data": [
{
"lang": "eng",
"value": "It was found that xstream API version before 1.4.11 introduced a regression for a previous deserialization flaw. If the security framework has not been initialized, it may allow a remote attacker to run arbitrary shell commands when unmarshalling XML or any supported format. e.g. JSON. (regression of CVE-2013-7285)"
"value": "It was found that xstream API version 1.4.10 before 1.4.11 introduced a regression for a previous deserialization flaw. If the security framework has not been initialized, it may allow a remote attacker to run arbitrary shell commands when unmarshalling XML or any supported format. e.g. JSON. (regression of CVE-2013-7285)"
}
]
},