mysql-connector-java is vulnerable to deserialization attacks. The vulnerability exists as there is an improper automatic deserialization issue in the getNativeConvertToString
function of ResultSetImpl
.
CPE | Name | Operator | Version |
---|---|---|---|
mysql-connector-java | le | 5.1.40 |