NotCVE - vendor:"Akka" product:"Akka" version:" <= 2.4.16"

2 results (0.001 seconds)

CVSS: 6.0EPSS: 0%CPEs: 1EXPL: 0

CVE-2025-53393

https://notcve.org/view.php?id=CVE-2025-53393

28 Jun 2025 — In Akka through 2.10.6, akka-cluster-metrics uses Java serialization for cluster metrics. • https://github.com/akka/akka/pull/32748 • CWE-502: Deserialization of Untrusted Data •

CVSS: 9.3EPSS: 9%CPEs: 2EXPL: 0

CVE-2017-1000034

https://notcve.org/view.php?id=CVE-2017-1000034

13 Jul 2017 — Akka versions <=2.4.16 and 2.5-M1 are vulnerable to a java deserialization attack in its Remoting component resulting in remote code execution in the context of the ActorSystem. En Akka versiones anteriores e incluyendo a 2.4.16 y 2.5-M1, son vulnerables a un ataque de deserialización java en el componente Remoting, resultando en la ejecución de código remota en el contexto del ActorSystem. • http://doc.akka.io/docs/akka/2.4/security/2017-02-10-java-serialization.html • CWE-502: Deserialization of Untrusted Data •