CVE-2016-7050: RESTEasy: SerializableProvider enabled by default and deserializes untrusted data

Severity: Critical

CVSS Score: 9.8

SerializableProvider in RESTEasy in Red Hat Enterprise Linux Desktop 7, Red Hat Enterprise Linux HPC Node 7, Red Hat Enterprise Linux Server 7, and Red Hat Enterprise Linux Workstation 7 allows remote attackers to execute arbitrary code.