CVE-2024-52443

Name of the Vulnerable Software and Affected Versions Nerijus Masikonis Geolocator versions 1.1 and earlier

Description The issue is related to Deserialization of Untrusted Data, allowing Object Injection in Nerijus Masikonis Geolocator. This can potentially lead to further exploitation, such as SQL Injection.

Recommendations For versions 1.1 and earlier, update to a version that fixes the Deserialization of Untrusted Data vulnerability to prevent Object Injection. As a temporary workaround, consider restricting the deserialization of untrusted data until a patch is available. Avoid using the Geolocator with untrusted input data to minimize the risk of exploitation.