CNNVD-202601-3684 Information

CNNVD ID

CNNVD-202601-3684

Related CVE

CVE-2026-23957

• CNNVD Published: 2026-01-22

Description (Chinese)

seroval是Alexis H. Munsayac个人开发者的一个格式化Java库。 seroval 1.4.0及之前版本存在安全漏洞，该漏洞源于反序列化过程中处理被覆盖的过大数组长度值，可能导致处理时间显著增加。

Description (English)

The seroval is a formatted Java bank for Alexis H. Munsayac’s personal developer. There is a security gap in seroval 1.4.0 and previous versions, which stems from the treatment of over-large array length values covered during the back-sequencing process, which may lead to a significant increase in processing time.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2026-01-22

Last Modified

2026-02-24

References

https://github.com/lxsmnsyc/seroval/commit/ce9408ebc87312fcad345a73c172212f2a798060 https://github.com/lxsmnsyc/seroval/security/advisories/GHSA-66fc-rw6m-c2q6 https://access.redhat.com/security/cve/cve-2026-23957

Patch

https://github.com/lxsmnsyc/seroval/releases