CVE-2021-33806
N/A
N/A
Summary
The BDew BdLib library before 1.16.1.7 for Minecraft allows remote code execution because it deserializes untrusted data in ObjectInputStream.readObject as part of its use of Java serialization.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- https://bdew.net
- https://www.curseforge.com/minecraft/mc-mods/bdlib/files/3331330
- https://vuln.ryotak.me/advisories/46
- https://github.com/bdew-minecraft/bdlib/commit/447210530ceec72fb3374efecb0930ed359d2297
References
- https://bdew.net
- https://www.curseforge.com/minecraft/mc-mods/bdlib/files/3331330
- https://vuln.ryotak.me/advisories/46
- https://github.com/bdew-minecraft/bdlib/commit/447210530ceec72fb3374efecb0930ed359d2297
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.