← back
CVE-2021-33806

CVE-2021-33806

EPSS 3.0%
The BDew BdLib library before 1.16.1.7 for Minecraft allows remote code execution because it deserializes untrusted data in ObjectInputStream.readObject as part of its use of Java serialization.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://bdew.nethttps://github.com/bdew-minecraft/bdlib/commit/447210530ceec72fb3374efecb0930ed359d2297https://vuln.ryotak.me/advisories/46https://www.curseforge.com/minecraft/mc-mods/bdlib/files/3331330