High severity8.1NVD Advisory· Published Jul 17, 2017· Updated Jun 17, 2026
CVE-2017-1000034
CVE-2017-1000034
Description
Akka versions <=2.4.16 and 2.5-M1 are vulnerable to a java deserialization attack in its Remoting component resulting in remote code execution in the context of the ActorSystem.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
com.typesafe.akka:akka-actorMaven | < 2.4.17 | 2.4.17 |
Affected products
3Patches
Vulnerability mechanics
References
5- doc.akka.io/docs/akka/2.4/security/2017-02-10-java-serialization.htmlnvdVendor AdvisoryWEB
- github.com/advisories/GHSA-mm57-9j6q-rxm2ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2017-1000034ghsaADVISORY
- github.com/akka/akka/commit/cc6561b47e5958923df520b8a9514010d3e11d49ghsaWEB
- github.com/akka/akka/issues/22283ghsaWEB
News mentions
0No linked articles in our index yet.