exploitDog

GHSA-h4mr-59x2-64f9

Опубликовано: 28 апр. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 3.5

Описание

DevExpress before 23.1.3 has a data-source protection mechanism bypass during deserialization on XML data.

DevExpress before 23.1.3 has a data-source protection mechanism bypass during deserialization on XML data.

Ссылки

EPSS

Процентиль: 31%

0.00118

Низкий

3.5 Low

CVSS3

CVE ID

Дефекты

CWE-502

Связанные уязвимости

CVE-2023-35815

CVSS3: 3.5

nvd

10 месяцев назад

DevExpress before 23.1.3 has a data-source protection mechanism bypass during deserialization on XML data.

EPSS

Процентиль: 31%

0.00118

Низкий

3.5 Low

CVSS3

CVE ID

Дефекты

CWE-502