MidnightBSD

Advisories for glazedlists

CVE-2023-31890

An XML Deserialization vulnerability in glazedlists v1.11.0 allows an attacker to execute arbitrary code via the BeanXMLByteCoder.decode() parameter.

Products Affected

Vendor Product Version
glazedlists glazed_lists 1.11.0