Cwe-502 - Deserialization Of Untrusted Data - Cwe
Type: Cwe
Frequency: Mentioned 14 times
Threat intelligence on Cwe-502 - Deserialization Of Untrusted Data (Cwe). Found in 10 clusters.
Related Threat Clusters
- Sandworm Targets Critical Infrastructure with Aggressive OT Attacks (Threat Score: 76.5)
- Critical Vulnerabilities in Apache Fory Affecting Multiple Versions (Threat Score: 72.0)
- Critical RCE Vulnerability Discovered in Protobuf.js Library (Threat Score: 70.5)
- Critical RCE Vulnerability in KnowledgeDeliver LMS Exploited by Hackers (Threat Score: 69.9)
- Critical RCE and Path Traversal Vulnerabilities Found in SGLang Framework (Threat Score: 69.0)
- Shift in OT Cyberattacks: From Reconnaissance to Physical Control (Threat Score: 67.0)
- Remote Code Execution Vulnerabilities in Apache ActiveMQ and OFBiz Detected (Threat Score: 63.1)
- Congresswoman Lee Presses for Answers on NSO Group's Ties to Trump Administration (Threat Score: 58.0)
- TierOne Forum Launches $10,000 Contest on Vulnerability Exploitation (Threat Score: 36.9)
- Emergence of Agentic AI Raises Governance and Security Challenges (Threat Score: 35.2)
Recent Articles
- Rule Docs 1:66532 - Snort
- LLMs focused specifically on cyberattacks - blog.talosintelligence.com
- Active Exploitation of CVE-2026-5426 in KnowledgeDeliver LMS Enables Godzilla ... - Rescana
- Hackers Abuse KnowledgeDeliver LMS Flaw to Install BLUEBEAM Web Shell - Gbhackers
- Exploitation of KnowledgeDeliver via ViewState Deserialization Vulnerability - Mandiant
- Security - fory.apache.org
- CVE-2026-48207 Detail - Nvd.Nist
- Three Rces In Sglang - antiproof.ai
- VU#777338: SGLang contains two remote code execution and one path traversal vulnerability - Kb.Cert
- Sandworm uses pre-compromised OT environments instead of zero - Industrialcyber.Co