Critical severityNVD Advisory· Published Jan 31, 2023· Updated Mar 27, 2025
CVE-2023-24162
CVE-2023-24162
Description
Deserialization vulnerability in Dromara Hutool v5.8.11 allows attacker to execute arbitrary code via the XmlUtil.readObjectFromXml parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
cn.hutool:hutool-allMaven | <= 5.8.11 | — |
Affected products
2- Dromara/Hutooldescription
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.