You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Bleeding Pipe
Severity: Allows remote code execution on clients and servers (and therefore all connected clients on a server).
Affected: Servers running vulnerable mods and players connected to them.
Details: https://github.com/dogboy21/serializationisbad
Feel free to change the issue title if it doesn't correctly describe what is written here or misleading.
The text was updated successfully, but these errors were encountered:
I couldn't find any mention of fixing security vulnerabilities in this mod and thought I'd add them here as an idea to add.
Vulnerabilities:
Log4J CVE-2021-44228 ("Log4Shell")
Severity: Allows remote code execution.
Affected: Potentially anyone running a server or connecting to one, even in vanilla.
Details: https://nvd.nist.gov/vuln/detail/CVE-2021-44228
Bleeding Pipe
Severity: Allows remote code execution on clients and servers (and therefore all connected clients on a server).
Affected: Servers running vulnerable mods and players connected to them.
Details: https://github.com/dogboy21/serializationisbad
Feel free to change the issue title if it doesn't correctly describe what is written here or misleading.
The text was updated successfully, but these errors were encountered: