Lucene search

CVE-2019-20330

🗓️ 03 Jan 2020 04:12:15Reported by mitreType

cve🔗 web.nvd.nist.gov📰️ 4 Media mentions👁 343 Views

FasterXML jackson-databind 2.x before 2.9.10.2 net.sf.ehcache blockin

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 77
Prion	Design/Logic Flaw	3 Jan 202004:15	–	prion
OSV	CVE-2019-20330	3 Jan 202004:15	–	osv
OSV	Deserialization of Untrusted Data in jackson-databind	4 Mar 202020:52	–	osv
OSV	jackson-databind - security update	20 Feb 202000:00	–	osv
OSV	Moderate: pki-core:10.6 and pki-deps:10.6 security, bug fix, and enhancement update	28 Apr 202009:00	–	osv
OSV	RHSA-2020:1644 Red Hat Security Advisory: pki-core:10.6 and pki-deps:10.6 security, bug fix, and enhancement update	13 Sep 202422:39	–	osv
OSV	Moderate: pki-core:10.6 and pki-deps:10.6 security, bug fix, and enhancement update	28 Apr 202009:00	–	osv
OSV	RHBA-2020:3255 Red Hat Bug Fix Advisory: Satellite 6.7.2 Async Bug Fix Update	13 Sep 202422:40	–	osv
OSV	RHBA-2020:1494 Red Hat Bug Fix Advisory: Satellite 6.6.3 Async Bug Fix Update	13 Sep 202422:39	–	osv
OSV	jackson-databind vulnerabilities	15 Mar 202121:47	–	osv

Nvd

Node

fasterxml jackson-databindRange2.0.0–2.7.9.7

fasterxml jackson-databindRange2.8.0–2.8.11.5

fasterxml jackson-databindRange2.9.0–2.9.10.2

Node

oracle banking_platformRange2.4.0–2.9.0

oracle communications_billing_and_revenue_managementMatch7.5.0.23.0

oracle communications_billing_and_revenue_managementMatch12.0.0.3.0

oracle communications_cloud_native_core_network_slice_selection_functionMatch1.2.1

oracle communications_contacts_serverMatch8.0.0.4.0

oracle communications_evolved_communications_application_serverMatch7.1

oracle communications_instant_messaging_serverMatch10.0.1.4.0

oracle communications_network_charging_and_controlRange12.0.0–12.0.3

oracle communications_network_charging_and_controlMatch6.0.1

oracle customer_management_and_segmentation_foundationMatch18.0

oracle enterprise_manager_base_platformMatch13.3.0.0

oracle enterprise_manager_base_platformMatch13.4.0.0

oracle global_lifecycle_management_opatchRange<11.2.0.3.23

oracle global_lifecycle_management_opatchRange12.2.0.1.0–12.2.0.1.19

oracle global_lifecycle_management_opatchRange13.9.4.0.0–13.9.4.2.1

oracle goldengate_application_adaptersMatch19.1.0.0.0

oracle goldengate_stream_analyticsRange<19.1.0.0.1

oracle jd_edwards_enterpriseone_orchestratorRange<9.2.4.2

oracle jd_edwards_enterpriseone_toolsRange<9.2.4.2

oracle primavera_unifierRange17.7–17.12

oracle primavera_unifierMatch16.1

oracle primavera_unifierMatch16.2

oracle primavera_unifierMatch18.8

oracle primavera_unifierMatch19.12

oracle retail_merchandising_systemMatch15.0.3

oracle retail_merchandising_systemMatch16.0.2

oracle retail_merchandising_systemMatch16.0.3

oracle retail_sales_auditMatch14.1

oracle retail_xstore_point_of_serviceMatch15.0

oracle retail_xstore_point_of_serviceMatch16.0

oracle retail_xstore_point_of_serviceMatch17.0

oracle retail_xstore_point_of_serviceMatch18.0

oracle retail_xstore_point_of_serviceMatch19.0

oracle siebel_engineering_-_installer_&_deploymentRange≤2.20.5

oracle siebel_ui_frameworkRange≤20.5

oracle trace_file_analyzerMatch12.2.0.1

oracle trace_file_analyzerMatch18c

oracle trace_file_analyzerMatch19c

oracle webcenter_portalMatch12.2.1.3.0

oracle webcenter_portalMatch12.2.1.4.0

oracle weblogic_serverMatch12.2.1.3.0

oracle weblogic_serverMatch12.2.1.4.0

Node

debian debian_linuxMatch8.0

Node

netapp active_iq_unified_managerRange7.3≥linux

netapp active_iq_unified_managerRange7.3≥windows

netapp active_iq_unified_managerRange9.5≥vmware_vsphere

netapp oncommand_api_servicesMatch-

netapp service_level_managerMatch-

netapp snapcenterMatch-

netapp steelstore_cloud_integrated_storageMatch-

Source	Link
lists	www.lists.apache.org/thread.html/r8831b7fa5ca87a1cf23ee08d6dedb7877a964c1d2bd869af24056a63%40%3Ccommits.zookeeper.apache.org%3E
lists	www.lists.apache.org/thread.html/rb532fed78d031fff477fd840b81946f6d1200f93a63698dae65aa528%40%3Ccommits.druid.apache.org%3E
lists	www.lists.apache.org/thread.html/r7a0821b44247a1e6c6fe5f2943b90ebc4f80a8d1fb0aa9a8b29a59a2%40%3Ccommits.zookeeper.apache.org%3E
lists	www.lists.apache.org/thread.html/rfa57d9c2a27d3af14c69607fb1a3da00e758b2092aa88eb6a51b6e99%40%3Cissues.zookeeper.apache.org%3E
github	www.github.com/FasterXML/jackson-databind/compare/jackson-databind-2.9.10.1...jackson-databind-2.9.10.2
lists	www.lists.debian.org/debian-lts-announce/2020/02/msg00020.html
lists	www.lists.apache.org/thread.html/r7fb123e7dad49af5886cfec7135c0fd5b74e4c67af029e1dc91ba744%40%3Ccommits.druid.apache.org%3E
oracle	www.oracle.com/security-alerts/cpuapr2020.html
lists	www.lists.apache.org/thread.html/ra8a80dbc7319916946397823aec0d893d24713cbf7b5aee0e957298c%40%3Cdev.zookeeper.apache.org%3E
github	www.github.com/FasterXML/jackson-databind/issues/2526

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

03 Jan 2020 04:15Current

9.2High risk

Vulners AI Score9.2

CVSS27.5

CVSS39.8

EPSS0.01997

CWE-502