Deserialization – TheCyberThrone

Splunk Patches CVE-2024-23678 Deserialization bug

Splunk has addressed multiple vulnerabilities in Splunk Enterprise that includes a high-severity deserialization flaw. The vulnerability tracked as CVE-2024-23678 with CVSS score 7.5, impacting the Windows version. The advisory stats…

PravinKarthik January 24, 2024

Spring AMQP Project Vulnerability – CVE-2023-34050

CVE-2023-34050 is a deserialization vulnerability in the Spring AMQP project, the vulnerability allows an attacker to inject malicious code into a Spring AMQP application by sending a specially crafted message.…

PravinKarthik October 20, 2023

Imunify 360 Bug Could Deserialize PHP

A severe PHP deserialization vulnerability leading to code execution has been patched in Imunify360. Imunify360 is a security platform for web-hosting servers that allows users to configure various settings for…

PravinKarthik November 23, 2021