Security Advisory

CVE-2025-31129

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-03-31 19:10:57

Last updated 2025-04-01 13:53:56

Assigner GitHub_M

State PUBLISHED

Description

Jooby is a web framework for Java and Kotlin. The pac4j io.jooby.internal.pac4j.SessionStoreImpl#get module deserializes untrusted data. This vulnerability is fixed in 2.17.0 (2.x) and 3.7.0 (3.x).

← Browse all CVEs View on cve.org ↗