CSOonline

Critical deserialization bugs in Adobe, Oracle software actively exploited, warns CISA

CISA is warning Adobe and Oracle customers about in-the-wild exploitation of critical vulnerabilities affecting the services of these leading enterprise software providers. The US cybersecurity ...
InfoWorld

Ensure proper version control for serialized objects

Java’s Serializable interface provides an easy-to-use programming interface for converting between a runtime object and a byte stream. Serialization involves mapping a runtime object or an object ...
CSO Online

SolarWinds fixes Web Help Desk patch bypass for actively exploited flaw — again

Third time’s the charm?’ asks a prominent security researcher after what appears to be the same critical Java deserialization ...