{"schema_version": "1.6.1", "id": "CVE-2023-46279", "summary": "Bypass deny serialize list check in Apache Dubbo", "details": "Deserialization of Untrusted Data vulnerability in Apache Dubbo.This issue only affects Apache Dubbo 3.1.5.\n\nUsers are recommended to upgrade to the latest version, which fixes the issue.\n\n", "affected": [{"ranges": [{"type": "SEMVER", "events": [{"introduced": "3.1.5"}, {"last_affected": "3.1.5"}]}]}], "references": [{"type": "WEB", "url": "https://lists.apache.org/thread/zw53nxrkrfswmk9n3sfwxmcj7x030nmo"}]}