CX: Cx6a5f7948-7054 in Maven-commons-collections:commons-collections and 3.2.1 @ JavaVulnerableLab.refs/heads/master

**Description**

An unsafe deserialization vulnerability in the Apache Commons Collections (ACC) versions through 3.2.1 and 4.0.0 might lead to code execution.

**HIGH Vulnerable Package** issue exists @ **commons-collections:commons-collections** in branch **refs/heads/master**

**Vulnerability ID:** Cx6a5f7948-7054

**Package Name:** commons-collections:commons-collections

**Severity:** HIGH

**CVSS Score:** 9.8

**Publish Date:** 2015-11-06T22:00:00

**Current Package Version:** 3.2.1

**Remediation Upgrade Recommendation:** 3.2.2

[Link To SCA](https://sca.scacheckmarx.com/#/projects/43c66723-1c23-4989-9e51-bfa32766271e/reports/e3c3068d-3289-466b-aa0f-b9c2cf00b4ea/vulnerabilities/Cx6a5f7948-7054%3AMaven-commons-collections%3Acommons-collections-3.2.1/vulnerabilityDetails/vulnerabilities/Cx6a5f7948-7054%3AMaven-commons-collections%3Acommons-collections-3.2.1/vulnerabilityDetails)



Provide feedback

Saved searches

Use saved searches to filter your results more quickly

CX: Cx6a5f7948-7054 in Maven-commons-collections:commons-collections and 3.2.1 @ JavaVulnerableLab.refs/heads/master #42

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

CX: Cx6a5f7948-7054 in Maven-commons-collections:commons-collections and 3.2.1 @ JavaVulnerableLab.refs/heads/master #42

Description

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions