Java Deserialization - Remote Code Execution. My security partner found a vulnerability in my software which enables RCE and suggested to go for library for deserialization. Is that a good way to prevent insecure Java deserialization bugs?

submitted by /u/MstrGiggles
[link] [comments]

from programming https://ift.tt/J52t64l