Akka Remoting Component Java Deserialization Vulnerability

Akka Remoting Component Java Deserialization Vulnerability

CVE-2017-1000034 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

Akka versions <=2.4.16 and 2.5-M1 are vulnerable to a java deserialization attack in its Remoting component resulting in remote code execution in the context of the ActorSystem.

Learn more about our Web Application Penetration Testing UK.