Years-Old, Unpatched GWT Vuln Leaves Apps Open to Server-Side RCE
December 18, 2023 at 05:43PM An unpatched Java deserialization vulnerability in the Google Web Toolkit (GWT) open source application framework remains unresolved after over eight years. This flaw, which enables remote code execution, could potentially require significant framework fixes for vulnerable applications. According to research by Bishop Fox, addressing this issue may necessitate architectural changes … Read more