Security Advisory

CVE-2022-25647

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-05-01 15:30:29

Last updated 2026-05-27 14:03:51

Assigner snyk

State PUBLISHED

Description

The package com.google.code.gson:gson before 2.8.9 are vulnerable to Deserialization of Untrusted Data via the writeReplace() method in internal classes, which may lead to DoS attacks.

← Browse all CVEs View on cve.org ↗