RSS   Podatności dla 'LEAN'   RSS

2020-12-14
 
CVE-2020-20136

CWE-502
 

 
QuantConnect Lean versions from 2.3.0.0 to 2.4.0.1 are affected by an insecure deserialization vulnerability due to insecure configuration of TypeNameHandling property in Json.NET library.

 


Copyright 2021, cxsecurity.com

 

Back to Top