tags:javadeserializationenterprise_appmethodology original link: Relution Remote Code Execution via Java Deserialization Vulnerability newsletter link: exploits.club Weekly Newsletter 06
Exploits Club Summary:
 Praetorian released a post this week detailing CVE-2023-48178, a Java deserialization vulnerability in a Relution. The post is extremely detailed, and walks through the software architecture, the vulnerability, and the methodology for hunting deserialization gadget chains.