CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Apache: >> Dubbo >> 2.7.21 Security Vulnerabilities

CVE-2023-23638

A deserialization vulnerability existed when dubbo generic invoke, which could lead to malicious code execution. This issue affects Apache Dubbo 2.7.x version 2.7.21 and prior versions; Apache Dubbo 3.0.x version 3.0.13 and prior versions; Apache Dubbo 3.1.x version 3.1.5 and prior versions.

CVSS Score

5.0

EPSS Score

0.656

Published

2023-03-08

Page 1

Vulnerabilities

Vulnerable Software

Apache: >> Dubbo >> 2.7.21 Security Vulnerabilities

Products

Pricing

Contact Us