CVE-2023-31890: glazedlists: XML Deserialization permits code execution via BeanXMLByteCoder parameter

Severity: Critical

CVSS Score: 9.8

An XML Deserialization vulnerability in glazedlists v1.11.0 allows an attacker to execute arbitrary code via the BeanXMLByteCoder.decode() parameter.