restlet-framework-java icon indicating copy to clipboard operation
restlet-framework-java copied to clipboard
verified publisher icon restlet

About the RCE 0day Vulnerability

Open chenhliang opened this issue 3 years ago • 1 comments

Component of restlet-framework-java [spring-beans 3.2.8.RELEASE]. The RCE 0day vulnerability may exist. Please check whether exists. If yes, how to rectify the fault. Thank you.

chenhliang avatar Mar 31 '22 11:03 chenhliang

Restlet does not refer to Spring's SerializationUtils, which appears to be at the heart of the vulnerability.

Tembrel avatar Mar 31 '22 13:03 Tembrel