CVE-2023-24162: Dromara Hutool Deserialization of Untrusted Data vulnerability

Severity: Critical

CVSS Score: 9.8

Deserialization vulnerability in Dromara Hutool v5.8.11 allows attacker to execute arbitrary code via the XmlUtil.readObjectFromXml parameter.