Details
-
Bug
-
Status: Closed (View Workflow)
-
Major
-
Resolution: Done
-
9.3.0.Final, 9.2.5.Final
-
None
-
This issue is security relevant
Description
The server deserializes binary payloads and json/xml payload without any checks. This happens when:
- Compatibility mode is on
- Remote listeners with filters
- Remote iteration with filters
- Remote tasks with parameters
- Server is configured with MediaType.APPLICATION_OBJECT
- Potentially with JSON and XML contents sent via REST
The remote endpoints affected are REST, Hot Rod and Memcached.
Attachments
Issue Links
- blocks
-
ISPN-9336 Error transcoding from JSON/XML to java objects with deployed entities
-
- Closed
-