-
CVSS Score
-Basic Information
Technical Details
Vulnerability Intelligence
Miggo AI
Miggo AIMiggo AI| Package Name | Ecosystem | Vulnerable Versions | First Patched Version |
|---|---|---|---|
| Lucene.Net.Replicator | nuget | >= 4.8.0-beta00005, < 4.8.0-beta00017 | 4.8.0-beta00017 |
Miggo AIRoot Cause AnalysisThe vulnerability arises from insecure JSON deserialization using Newtonsoft.Json's TypeNameHandling.All. The key function is HttpClientBase.ThrowKnownError, which deserialized untrusted HTTP responses using ReplicationService.JSON_SERIALIZER_SETTINGS, enabling arbitrary type instantiation. The patch removed these settings and replaced the deserialization logic. ReplicationService.Perform's exception serialization also used the same insecure settings, but the primary attack vector was client-side deserialization. The high confidence for ThrowKnownError stems from its direct role in processing malicious responses, while Perform's role is secondary (medium confidence).
Ongoing coverage of React2Shell