CNNVD-202601-3694 Information

CNNVD ID

CNNVD-202601-3694

Related CVE

CVE-2026-24006

• CNNVD Published: 2026-01-22

Description (Chinese)

seroval是Alexis H. Munsayac个人开发者的一个格式化Java库。 seroval 1.4.0及之前版本存在安全漏洞，该漏洞源于序列化深度极大的对象时可能超出最大调用堆栈限制。

Description (English)

The seroval is a formatted Java bank for Alexis H. Munsayac’s personal developer. There is a security loophole in seroval 1.4.0 and previous versions, which stems from the possibility of exceeding the maximum call stack limit when the object has a very serialized depth.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2026-01-22

Last Modified

2026-02-24

References

https://github.com/lxsmnsyc/seroval/commit/ce9408ebc87312fcad345a73c172212f2a798060 https://github.com/lxsmnsyc/seroval/security/advisories/GHSA-3j22-8qj3-26mx https://access.redhat.com/security/cve/cve-2026-24006

Patch

https://github.com/lxsmnsyc/seroval/releases