A Deserialization Vulnerability Found in Apache Dubbo
A Deserialization Vulnerability Found in Apache Dubbo
Threat Level
Vulnerability Report
For a detailed threat advisory, download the pdf file here
Summary
Apache has released a security notice for a deserialization vulnerability (CVE-2023-23638) in Apache Dubbo that allows remote attackers to execute arbitrary code on the target system.
To receive real-time threat advisories, please follow HiveForce Labs on LinkedIn.