CVE-2024-28213 Information

Description

nGrinder before 3.5.9 allows to accept serialized Java objects from unauthenticated users which could allow remote attacker to execute arbitrary code via unsafe Java objects deserialization.

Reference

https://cve.naver.com/detail/cve-2024-28213.html