Threat Advisories

A Deserialization Vulnerability Found in Apache Dubbo

March 23, 2023

Threat Level

Vulnerability Report

For a detailed threat advisory, download the pdf file here

Summary

Apache has released a security notice for a deserialization vulnerability (CVE-2023-23638) in Apache Dubbo that allows remote attackers to execute arbitrary code on the target system.

To receive real-time threat advisories, please follow HiveForce Labs on LinkedIn.

Mispadu Targets Latin America with MalSpamming

ALC: Is It a Scareware or a Ransomware?