Lucene search

K
cvelistMitreCVELIST:CVE-2020-9546
HistoryMar 02, 2020 - 3:59 a.m.

CVE-2020-9546

2020-03-0203:59:18
mitre
www.cve.org
7
fasterxml jackson-databind
serialization gadgets
typing
org.apache.hadoop.shaded.com.zaxxer.hikari.hikariconfig

AI Score

9.3

Confidence

High

EPSS

0.007

Percentile

79.6%

FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadgets and typing, related to org.apache.hadoop.shaded.com.zaxxer.hikari.HikariConfig (aka shaded hikari-config).

References