Flaw in jackson-databind allows arbitrary code execution
Reporter | Title | Published | Views | Family All 55 |
---|---|---|---|---|
CVE | CVE-2019-14892 | 2 Mar 202017:15 | – | cve |
OSV | CVE-2019-14892 | 2 Mar 202017:15 | – | osv |
OSV | Polymorphic deserialization of malicious object in jackson-databind | 15 May 202018:58 | – | osv |
OSV | Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.2.6 on RHEL 8 security update | 29 Sep 202417:25 | – | osv |
OSV | Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.2.6 on RHEL 7 security update | 29 Sep 202417:25 | – | osv |
OSV | Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.2.6 on RHEL 6 security update | 29 Sep 202417:24 | – | osv |
Prion | Deserialization of untrusted data | 2 Mar 202017:15 | – | prion |
NVD | CVE-2019-14892 | 2 Mar 202017:15 | – | nvd |
Veracode | Remote Code Execution | 21 Nov 201902:29 | – | veracode |
RedhatCVE | CVE-2019-14892 | 7 Apr 202017:14 | – | redhatcve |
[
{
"product": "jackson-databind",
"vendor": "Red Hat",
"versions": [
{
"status": "affected",
"version": "Versions before 2.9.10"
},
{
"status": "affected",
"version": "Versions before 2.8.11.5"
},
{
"status": "affected",
"version": "Versions before 2.6.7.3"
}
]
}
]
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo