CVE-2023-24162

Published January 31st, 2023

View on NVD ↗

CVSS v3

9.8

CRITICAL

CVSS v2

N/A

Affected

1

PROJECT

Description

Deserialization vulnerability in Dromara Hutool v5.8.11 allows attacker to execute arbitrary code via the XmlUtil.readObjectFromXml parameter.

chinabugotech/hutool

🍬A set of tools that keep Java sweet.

GitHub

30.3K