Why Are Deserialization Vulnerabilities So Popular?

In 2017, around 60 remote code execution (RCE) deserialization vulnerabilities were reported, not including deserialization issues that only impact the availability of a system (Denial-of-Service), according to cvedetails.com. To date, in 2018, more than 80 such vulnerabilities have been reported. In the past, WebLogic, Oracle's Enterprise Java application server, has been extensively patched against deserialization issues. The latest October 2018 Oracle Critical Patch Update (CPU) fixes...

What feeling does this article give you?
Joy
Disgust
Fear
Anger
Sadness

#hashtags to follow:

RCE [+]    WebLogic [+]    Oracle [+]    Enterprise Java [+]    October 2018 [+]    Oracle Critical Patch Update [+]    CPU [+]   

More #news: