National Cyber Warfare Foundation (NCWF)

Critical Apache Avro SDK Flaw Allows Remote Code Execution in Java Applications


0 user ratings
2024-10-07 09:55:17
milo
Developers , Blue Team (CND)
A critical security flaw has been disclosed in the Apache Avro Java Software Development Kit (SDK) that, if successfully exploited, could allow the execution of arbitrary code on susceptible instances.
The flaw, tracked as CVE-2024-47561, impacts all versions of the software prior to 1.11.4.
"Schema parsing in the Java SDK of Apache Avro 1.11.3 and previous versions allows bad actors to execute



Source: TheHackerNews
Source Link: https://thehackernews.com/2024/10/critical-apache-avro-sdk-flaw-allows.html


Comments
new comment
Nobody has commented yet. Will you be the first?
 
Forum
Developers
Blue Team (CND)



Copyright 2012 through 2024 - National Cyber Warfare Foundation - All rights reserved worldwide.