Glossary

Deserialization Attack

An attack that exploits the process of converting serialized data into objects to execute malicious code. Insecure deserialization can lead to remote code execution, privilege escalation, or denial of service. It is listed in the OWASP Top 10 and particularly affects Java, PHP, and Python applications.

Related Pages

rceowasp

Other Terms

2FA/MFA (Multi-Factor Authentication)

AES (Advanced Encryption Standard)

AI Agent

ANSSI (French National Cybersecurity Agency)

Back to glossary

Need an external review of your HR SaaS?

Share your product, stack, and client context. We will come back with the right review scope.

Discuss your audit