Lucene search

CVE-2020-10650

🗓️ 26 Dec 2022 20:10:15Reported by mitreType

Deserialization flaw in jackson-databind allows code executio

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 35
Vulnrichment	CVE-2020-10650	26 Dec 202200:00	–	vulnrichment
Github Security Blog	jackson-databind vulnerable to unsafe deserialization	15 Jul 202219:41	–	github
Cvelist	CVE-2020-10650	26 Dec 202200:00	–	cvelist
IBM Security Bulletins	Security Bulletin: IBM Security Verify Governance is vulnerable to arbitrary code execution (CVE-2020-10650)	20 Apr 202310:33	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Security Guardium is affected by a remote code execution vulnerability (CVE-2020-10650)	1 Jun 202314:57	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple Security Vulnerabilities may affect IBM Robotic Process Automation for Cloud Pak.	6 Jan 202321:23	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerability in jackson-databind affects IBM watsonx.data	18 Sep 202419:32	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in jackson-databind affect IBM watsonx.data	18 Sep 202416:36	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Security Verify Governance is vulnerable to a denial of service caused by multiple vulnerabilities.	13 Apr 202310:31	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in Data-Binding for Jackson shipped with IBM Operations Analytics - Log Analysis	22 Nov 202208:08	–	ibm

Nvd

Node

fasterxml jackson-databindRange≤2.9.10.4

Node

oracle retail_merchandising_systemMatch15.0

oracle retail_sales_auditMatch14.1

Source	Link
lists	www.lists.debian.org/debian-lts-announce/2023/04/msg00032.html
oracle	www.oracle.com/security-alerts/cpujan2021.html
github	www.github.com/FasterXML/jackson-databind/issues/2658
medium	www.medium.com/%40cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062
security	www.security.netapp.com/advisory/ntap-20230818-0007/
oracle	www.oracle.com/security-alerts/cpuoct2022.html
github	www.github.com/FasterXML/jackson-databind/commit/a424c038ba0c0d65e579e22001dec925902ac0ef
github	www.github.com/advisories/GHSA-rpr3-cw39-3pxh

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

26 Dec 2022 20:15Current

8.1High risk

Vulners AI Score8.1

CVSS38.1

EPSS0.05253

SSVC

CWE-502