Clojure: >> Clojure >> 1.7.0 Security Vulnerabilities
An issue in Clojure versions 1.20 to 1.12.0-alpha5 allows an attacker to cause a denial of service (DoS) via the clojure.core$partial$fn__5920 function.
CVSS Score
7.5
EPSS Score
0.001
Published
2024-02-29
In Clojure before 1.9.0, classes can be used to construct a serialized object that executes arbitrary code upon deserialization. This is relevant if a server deserializes untrusted objects.
CVSS Score
9.8
EPSS Score
0.03
Published
2024-01-22