CESA-2018:1779 -- centos 6 xmlrpc3ID: oval:org.secpod.oval:def:204831 | Date: (C)2018-06-19 (M)2024-01-29 |
Class: PATCH | Family: unix |
Apache XML-RPC is a Java implementation of XML-RPC, a popular protocol that uses XML over HTTP to implement remote procedure calls. Security Fix: * xmlrpc: Deserialization of untrusted Java object through <ex:serializable> tag For more details about the security issue, including the impact, a CVSS score, and other related information, refer to the CVE page listed in the References section.