Weaknesses of type CWE-502
2,215 resultsCVE-2024-11394HIGHHugging Face Transformers Trax Model Deserialization of Untrusted Data Remote Code Execution VulnerabilityEPSS 2.4%CVE-2021-26558—Deserialization of Untrusted DataEPSS 2.4%CVE-2026-26114HIGHMicrosoft SharePoint Server Remote Code Execution VulnerabilityEPSS 2.4%CVE-2022-32224CRITICALA possible escalation to RCE vulnerability exists when using YAML serialized columns in Active Record < 7.0.3.1, <6.1.6.1, <6.0.5.1 and <5.2EPSS 2.4%CVE-2023-35182HIGHSolarWinds Access Rights Manager Deserialization of Untrusted Data Remote Code Execution VulnerabilityEPSS 2.4%CVE-2023-34212—Apache NiFi: Potential Deserialization of Untrusted Data with JNDI in JMS ComponentsEPSS 2.4%CVE-2022-39198CRITICALApache Dubbo Hession Deserialization Vulnerability Gadgets BypassEPSS 2.4%CVE-2023-6580HIGHD-Link DIR-846 QoS POST deserializationEPSS 2.3%CVE-2026-21531CRITICALAzure SDK for Python Remote Code Execution VulnerabilityEPSS 2.3%CVE-2021-43360HIGHSunnet eHRD - Insecure DeserializationEPSS 2.3%CVE-2025-50460CRITICALA remote code execution (RCE) vulnerability exists in the ms-swift project version 3.3.0 due to unsafe deserialization in tests/run.py usingEPSS 2.3%CVE-2024-52338CRITICALApache Arrow R package: Arbitrary code execution when loading a malicious data fileEPSS 2.3%CVE-2026-46725CRITICALRemote Code Execution in extension "Content Element Selector" (ceselector)EPSS 2.3%CVE-2024-36131HIGHAn insecure deserialization vulnerability in web component of EPMM prior to 12.1.0.1 allows an authenticated remote attacker to execute arbiEPSS 2.3%CVE-2022-37021—Apache Geode deserialization of untrusted data flaw when using JMX over RMI on Java 8.EPSS 2.3%CVE-2019-5069HIGHA code execution vulnerability exists in Epignosis eFront LMS v5.2.12. A specially crafted web request can cause unsafe deserialization poteEPSS 2.3%CVE-2018-15686HIGHsystemd: reexec state injection: fgets() on overlong lines leads to line splittingEPSS 2.3%CVE-2023-21779HIGHVisual Studio Code Remote Code Execution VulnerabilityEPSS 2.3%CVE-2025-59237HIGHMicrosoft SharePoint Remote Code Execution VulnerabilityEPSS 2.2%CVE-2021-23894CRITICALUnauthorized deserialization of untrusted data in McAfee DBSecEPSS 2.2%