Lucene search

GitHub Advisory DatabaseGHSA-QR7J-H6GG-JMGC

HistoryJul 16, 2019 - 5:42 p.m.

Deserialization of Untrusted Data in jackson-databind

2019-07-1617:42:21

CWE-502

GitHub Advisory Database

github.com

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.013 Low

EPSS

Percentile

85.6%

JSON

An issue was discovered in FasterXML jackson-databind 2.0.0 through 2.9.5. Use of Jackson default typing along with a gadget class from iBatis allows exfiltration of content. Fixed in 2.7.9.4, 2.8.11.2, and 2.9.6.

CPENameOperatorVersion
com.fasterxml.jackson.core:jackson-databindle2.8.11.1
com.fasterxml.jackson.core:jackson-databindle2.7.9.3
com.fasterxml.jackson.core:jackson-databindlt2.9.6

Name	Operator	Version
com.fasterxml.jackson.core:jackson-databind	le	2.8.11.1
com.fasterxml.jackson.core:jackson-databind	le	2.7.9.3
com.fasterxml.jackson.core:jackson-databind	lt	2.9.6

References

access.redhat.com/errata/RHSA-2019:0782

access.redhat.com/errata/RHSA-2019:1822

access.redhat.com/errata/RHSA-2019:1823

access.redhat.com/errata/RHSA-2019:2804

access.redhat.com/errata/RHSA-2019:2858

access.redhat.com/errata/RHSA-2019:3002

access.redhat.com/errata/RHSA-2019:3140

access.redhat.com/errata/RHSA-2019:3149

access.redhat.com/errata/RHSA-2019:3892

access.redhat.com/errata/RHSA-2019:4037

github.com/advisories/GHSA-qr7j-h6gg-jmgc

github.com/FasterXML/jackson-databind/commit/051bd5e447fbc9539e12a4fe90eb989dba0c656

github.com/FasterXML/jackson-databind/commit/27b4defc270454dea6842bd9279f17387eceb73

github.com/FasterXML/jackson-databind/commit/78e78738d69adcb59fdac9fc12d9053ce8809f3d

github.com/FasterXML/jackson-databind/issues/2032

lists.apache.org/thread.html/519eb0fd45642dcecd9ff74cb3e71c20a4753f7d82e2f07864b5108f@%3Cdev.drill.apache.org%3E

lists.apache.org/thread.html/7fcf88aff0d1deaa5c3c7be8d58c05ad7ad5da94b59065d8e7c50c5d@%3Cissues.lucene.apache.org%3E

lists.apache.org/thread.html/b0656d359c7d40ec9f39c8cc61bca66802ef9a2a12ee199f5b0c1442@%3Cdev.drill.apache.org%3E

lists.apache.org/thread.html/f9bc3e55f4e28d1dcd1a69aae6d53e609a758e34d2869b4d798e13cc@%3Cissues.drill.apache.org%3E

medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062

nvd.nist.gov/vuln/detail/CVE-2017-7525

nvd.nist.gov/vuln/detail/CVE-2018-11307

www.oracle.com/security-alerts/cpuapr2020.html

www.oracle.com/security-alerts/cpujan2020.html

www.oracle.com/security-alerts/cpuoct2020.html

www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.013 Low

EPSS

Percentile

85.6%

JSON

Related for GHSA-QR7J-H6GG-JMGC