Restlet Framework Deserialization of Untrusted Data Vulnerability - CVE-2013-4271 - Vulnerability Database

Restlet Framework Deserialization of Untrusted Data Vulnerability - CVE-2013-4271

High
Reference: CVE-2013-4271
Title: Restlet Framework Deserialization of Untrusted Data Vulnerability
Overview:

The default configuration of the ObjectRepresentation class in Restlet before 2.1.4 deserializes objects from untrusted sources which allows remote attackers to execute arbitrary Java code via a serialized object a different vulnerability than CVE-2013-4221.