CWE-499 - Serializable Class Containing Sensitive Data

Description

The code contains a class with sensitive data, but the class does not explicitly deny serialization. The data can be accessed by serializing the class through another class.

Latest vulnerabilities for CWE-499

No vulnerabilities found using your search criteria

References

Description of CWE-499 on Mitre website