Akka versions <=2.4.16 and 2.5-M1 are vulnerable to a java deserialization attack in its Remoting component resulting in remote code execution in the context of the ActorSystem.
CVSS Score
8.1
EPSS Score
0.096
Published
2017-07-17