1.准备:1.1复现环境漏洞环境：vulnhub靶场工具准备：jdk8，apache-maven-3.9.9，kali2024.1，MarshalSec1.2环境启动进入vulnhub目录下的fastjson目录，进入CVE-2017-18349目录cd/home/hbesljx/vulhub/fastjson/1.2.24-rcedocker-compoe启动漏洞环境docker-composeup-d访问靶机