CVE-2018-6331



Buck parser-cache command loads/saves state using Java serialized object. If the state information is maliciously crafted, deserializing it could lead to code execution. This issue affects Buck versions prior to v2018.06.25.01.

Don't forget to share

You may also like...

Leave a Reply

Your email address will not be published. Required fields are marked *