Lucene search
PRIOn knowledge basePRION:CVE-2022-25647HistoryMay 01, 2022 - 4:15 p.m.
Deserialization of untrusted data
2022-05-0116:15:00
PRIOn knowledge base
www.prio-n.com
11
The package com.google.code.gson:gson before 2.8.9 are vulnerable to Deserialization of Untrusted Data via the writeReplace() method in internal classes, which may lead to DoS attacks.
References
github.com/google/gson/pull/1991
github.com/google/gson/pull/1991/commits
lists.debian.org/debian-lts-announce/2022/05/msg00015.html
lists.debian.org/debian-lts-announce/2022/09/msg00009.html
security.netapp.com/advisory/ntap-20220901-0009/
snyk.io/vuln/SNYK-JAVA-COMGOOGLECODEGSON-1730327
www.debian.org/security/2022/dsa-5227
www.oracle.com/security-alerts/cpujul2022.html
Related
f5
f5
K00994461: GSON vulnerability CVE-2022-25647
2022-08-29 00:00:00
debian
debian
[SECURITY] [DSA 5227-1] libgoogle-gson-java security update
2022-09-07 10:22:18
[SECURITY] [DLA 3100-1] libgoogle-gson-java security update
2022-09-07 09:14:24
[SECURITY] [DLA 3001-1] libgoogle-gson-java security update
2022-05-13 21:45:43
nessus
nessus
Debian DLA-3100-1 : libgoogle-gson-java - LTS security update
2022-09-07 00:00:00
Oracle Application Testing Suite DoS (October 2023 CPU)
2023-10-26 00:00:00
Oracle Enterprise Manager Cloud Control (Jan 2023 CPU)
2023-01-18 00:00:00
openvas
openvas
Debian: Security Advisory (DLA-3001-1)
2022-05-14 00:00:00
Ubuntu: Security Advisory (USN-6692-1)
2024-03-13 00:00:00
SUSE: Security Advisory (SUSE-SU-2022:2044-1)
2022-06-13 00:00:00
nvd
nvd
CVE-2022-25647
2022-05-01 16:15:08
atlassian
atlassian
ibm
ibm
Security Bulletin: IBM Security Guardium is affected by a denial of service vulnerability (CVE-2022-25647)
2023-01-18 22:01:26
cve
cve
CVE-2022-25647
2022-05-01 16:15:08
osv
osv
libgoogle-gson-java vulnerability
2024-03-12 15:54:06
Deserialization of Untrusted Data in Gson
2022-05-03 00:00:44
CVE-2022-25647
2022-05-01 16:15:08
cgr
cgr
CVE-2022-25647 vulnerabilities
2024-05-19 03:07:16
debiancve
debiancve
CVE-2022-25647
2022-05-01 16:15:08
ubuntucve
ubuntucve
CVE-2022-25647
2022-05-01 00:00:00
alpinelinux
alpinelinux
CVE-2022-25647
2022-05-01 16:15:08
cvelist
cvelist
CVE-2022-25647 Deserialization of Untrusted Data
2022-05-01 00:00:00
redhatcve
redhatcve
CVE-2022-25647
2022-05-02 07:38:06
mageia
mageia
Updated google-gson packages fix security vulnerability
2022-09-21 21:15:27
suse
suse
Security update for google-gson (important)
2022-06-10 00:00:00
broadcom
broadcom
ubuntu
ubuntu
Gson vulnerability
2024-03-12 00:00:00
wolfi
wolfi
CVE-2022-25647 vulnerabilities
2024-06-29 09:08:33
veracode
veracode
Denial Of Service (DoS)
2022-05-04 14:43:44
github
github
Deserialization of Untrusted Data in Gson
2022-05-03 00:00:44
redhat
redhat
hivepro
hivepro
Critical Security Vulnerabilities Discovered in Atlassian Products
2023-09-27 10:22:43
thn
thn
High-Severity Flaws Uncovered in Atlassian Products and ISC BIND Server
2023-09-22 08:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - January 2024
2024-01-16 00:00:00
Oracle Critical Patch Update Advisory - January 2023
2023-01-17 00:00:00
Oracle Critical Patch Update Advisory - October 2023
2023-10-17 00:00:00