VYPR

Causeway

by Apache

Source repositories

CVEs (1)

  • CVE-2025-64408Nov 19, 2025
    risk 0.00cvss epss 0.09

    Apache Causeway faces Java deserialization vulnerabilities that allow remote code execution (RCE) through user-controllable URL parameters. These vulnerabilities affect all applications using Causeway's ViewModel functionality and can be exploited by authenticated attackers…