CNNVD-202601-3675 Information

CNNVD ID

CNNVD-202601-3675

Related CVE

CVE-2026-23956

• CNNVD Published: 2026-01-22

Description (Chinese)

seroval是Alexis H. Munsayac个人开发者的一个格式化Java库。 seroval 1.4.0及之前版本存在安全漏洞，该漏洞源于反序列化特制RegExp时可能耗尽内存或导致正则表达式拒绝服务。

Description (English)

The seroval is a formatted Java bank for Alexis H. Munsayac’s personal developer. There is a security loophole in seroval 1.4.0 and earlier versions, which stems from the fact that regExp, which is unique to the back-sequence, may run out of memory or lead to a regular expression of rejection.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2026-01-22

Last Modified

2026-02-24

References

https://github.com/lxsmnsyc/seroval/commit/ce9408ebc87312fcad345a73c172212f2a798060 https://github.com/lxsmnsyc/seroval/security/advisories/GHSA-hx9m-jf43-8ffr https://access.redhat.com/security/cve/cve-2026-23956

Patch

https://github.com/lxsmnsyc/seroval/releases