Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
fedoraFedoraFEDORA:9A45F6078C22
HistoryApr 01, 2018 - 12:46 a.m.

[SECURITY] Fedora 28 Update: jackson-databind-2.9.4-3.fc28

2018-04-0100:46:43
lists.fedoraproject.org
16

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

JSON

The general-purpose data-binding functionality and tree-model for Jackson D ata Processor. It builds on core streaming parser/generator package, and uses Jackson Annotations for configuration.

OSVersionArchitecturePackageVersionFilename
Fedora28anyjackson-databind< 2.9.4UNKNOWN

Related

nessus 13
ibm 23
osv 4
openvas 2
debian 2
redhatcve 2
veracode 1
freebsd 1
github 2
cve 2
ubuntucve 1
prion 2
redhat 14
debiancve 1
checkpoint_advisories 1
hp 1
oracle 8
nessus
nessus
Fedora 28 : jackson-databind (2018-633acf0ed6)
2019-01-03 00:00:00
FreeBSD : payara -- Default typing issue in Jackson Databind (93f8e0ff-f33d-11e8-be46-0019dbb15b3f)
2018-11-29 00:00:00
Debian DSA-4190-1 : jackson-databind - security update
2018-05-04 00:00:00
ibm
ibm
Security Bulletin: FasterXML Vulnerability in Jackson-Databind Affects IBM Sterling Connect:Direct File Agent (CVE-2018-7489)
2021-07-23 17:59:06
Security Bulletin: Multiple vulnerabilities has been identified in Jackson JSON library shipped with IBM Tivoli Netcool/OMNIbus Integrations Transport Module Common Integration Library (CVE-2017-17485, CVE-2018-5968, CVE-2018-7489)
2018-06-17 15:51:29
Security Bulletin: Multiple vulnerabilities within Jackson JSON library affect IBM Business Automation Workflow (CVE-2017-17485, CVE-2018-5968, CVE-2018-7489)
2023-01-03 15:55:34
osv
osv
jackson-databind - security update
2018-05-03 00:00:00
CVE-2018-7489
2018-02-26 15:29:00
FasterXML jackson-databind allows unauthenticated remote code execution
2018-10-16 17:45:18
openvas
openvas
Oracle Database Server 'Rapid Home Provisioning' Component Unspecified Vulnerability
2018-10-17 00:00:00
Debian: Security Advisory (DSA-4190-1)
2018-05-02 00:00:00
debian
debian
[SECURITY] [DSA 4190-1] jackson-databind security update
2018-05-03 13:56:38
[SECURITY] [DSA 4190-1] jackson-databind security update
2018-05-03 13:56:38
redhatcve
redhatcve
CVE-2018-7489
2020-12-06 11:49:47
CVE-2019-10202
2019-10-12 02:27:16
veracode
veracode
Remote Code Execution (RCE)
2018-02-27 02:43:42
freebsd
freebsd
payara -- Default typing issue in Jackson Databind
2018-02-26 00:00:00
github
github
FasterXML jackson-databind allows unauthenticated remote code execution
2018-10-16 17:45:18
Deserialization of Untrusted Data in org.codehaus.jackson:jackson-mapper-asl
2022-05-24 16:57:28
cve
cve
CVE-2018-7489
2018-02-26 15:29:00
CVE-2019-10202
2019-10-01 15:15:00
ubuntucve
ubuntucve
CVE-2018-7489
2018-02-26 00:00:00
prion
prion
Design/Logic Flaw
2018-02-26 15:29:00
Deserialization of untrusted data
2019-10-01 15:15:00
redhat
redhat
(RHSA-2018:1786) Moderate: Red Hat OpenShift Application Runtimes security and bug fix update
2018-06-04 11:15:04
(RHSA-2018:2090) Moderate: Red Hat JBoss Enterprise Application Platform security update
2018-06-27 14:46:20
(RHSA-2018:2089) Moderate: Red Hat JBoss Enterprise Application Platform security update
2018-06-27 14:46:17
debiancve
debiancve
CVE-2018-7489
2018-02-26 15:29:00
checkpoint_advisories
checkpoint_advisories
Apache Struts2 Jackson Library Remote Code Execution (CVE-2017-15095; CVE-2017-17485; CVE-2017-7525; CVE-2018-7489)
2017-12-05 00:00:00
hp
hp
HP Device Manager Security Updates
2023-10-20 00:00:00
oracle
oracle
Oracle Critical Patch Update - April 2018
2018-04-17 00:00:00
Oracle Critical Patch Update Advisory - January 2019
2019-01-15 00:00:00
Oracle Critical Patch Update Advisory - April 2019
2019-04-16 00:00:00

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

JSON
Related for FEDORA:9A45F6078C22
nessus13ibm23osv4openvas2debian2redhatcve2veracode1freebsd1github2cve2ubuntucve1prion2redhat14debiancve1checkpoint_advisories1hp1oracle8