📦 Sofarpc
by Sofastack
🔍 What is Sofarpc?
Description coming soon...
🛡️ Security Overview
Click on a severity to filter vulnerabilities
⚠️ Known Vulnerabilities
CVE-2024-23636 is a critical deserialization vulnerability in SOFARPC that allows remote code execution by bypassing the SOFA Hessian protocol's blacklist protection. Attackers can exploit this using ...
SOFARPC versions before 5.11.0 are vulnerable to remote command execution through deserialization attacks. Attackers can bypass the incomplete blacklist filter to execute arbitrary system commands or ...