Loading
Serialized-object interfaces in certain IBM analytics, business solutions, cognitive, IT infrastructure, and mobile and social products allow remote attackers to execute arbitrary commands via a crafted serialized Java object, related to the InvokerTransformer class in the Apache Commons Collections library.
Use CWE-502, Ibm vendor hub and Sterling B2b Integrator product page to widen CVE-2015-7450 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2025-14031, CVE-2026-1264 and CVE-2025-36368 for nearby disclosures in the same product family.