Critical Apache Dubbo CVE-2021-43297 Vulnerability: Risks and Fixes

On January 14, 2022, 360CERT reported a high‑severity CVE‑2021‑43297 deserialization flaw in Apache Dubbo’s hessian‑lite (up to version 3.2.11) that can lead to remote code execution, detailing its impact, affected versions, risk rating, and recommending immediate upgrades to safe releases.

Apache DubboCVE-2021-43297Remote Code Execution

0 likes · 4 min read

Critical Apache Dubbo CVE-2021-43297 Vulnerability: Risks and Fixes