RSS   Vulnerabilities for 'LEAN'   RSS

2020-12-14
 
CVE-2020-20136

CWE-502
 

 
QuantConnect Lean versions from 2.3.0.0 to 2.4.0.1 are affected by an insecure deserialization vulnerability due to insecure configuration of TypeNameHandling property in Json.NET library.

 


Copyright 2024, cxsecurity.com

 

Back to Top