CVE-2021-31649
EPSS 0.40%JFinal Java Deserialization Vulnerability
發布日:2022/5/24修改日:2024/12/7
描述
In applications using jfinal 4.9.08 and below, there is a deserialization vulnerability when using redis which can lead to remote code execution
受影響套件(1)
- Maven/com.jfinal:jfinalfrom 0, <= 4.9.08