CVE-2014-9515: dozer: Potential remote code execution (RCE) via dozer's reflection-based type conversion

Severity: Critical

CVSS Score: 9.8

Dozer improperly uses a reflection-based approach to type conversion, which might allow remote attackers to execute arbitrary code via a crafted serialized object.