VYPR

Msgpack Java

by Msgpack

Source repositories

CVEs (1)

  • CVE-2026-21452Jan 2, 2026
    risk 0.00cvss epss 0.01

    MessagePack for Java is a serializer implementation for Java. A denial-of-service vulnerability exists in versions prior to 0.9.11 when deserializing .msgpack files containing EXT32 objects with attacker-controlled payload lengths. While MessagePack-Java parses extension headers…