Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

CVE-2017-7525

🗓️ 06 Feb 2018 15:00:29Reported by [email protected]Type 
nvd
 nvd🔗 web.nvd.nist.gov👁 27 Views

A deserialization flaw in jackson-databin

Show more

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Related
Detection
Refs
ReporterTitlePublishedViews
Family
Tenable Nessus		Debian DSA-4004-1 : jackson-databind - security update
23 Oct 201700:00
nessus
Tenable Nessus		Fedora 26 : jackson-databind (2017-6a75c816fa)
14 Aug 201700:00
nessus
Tenable Nessus		Linux Distros Unpatched Vulnerability : CVE-2017-7525
4 Mar 202500:00
nessus
Tenable Nessus		Fedora 24 : jackson-databind (2017-8df9efed5f)
11 Aug 201700:00
nessus
Tenable Nessus		Fedora 25 : jackson-databind (2017-f452765e1e)
14 Aug 201700:00
nessus
Tenable Nessus		Debian DSA-4037-1 : jackson-databind - security update
17 Nov 201700:00
nessus
Tenable Nessus		RHEL 7 : JBoss EAP (RHSA-2017:1835)
3 Aug 201700:00
nessus
Tenable Nessus		Linux Distros Unpatched Vulnerability : CVE-2017-15095
4 Mar 202500:00
nessus
Tenable Nessus		Linux Distros Unpatched Vulnerability : CVE-2017-17485
4 Mar 202500:00
nessus
Tenable Nessus		Apache Struts 2.5.x < 2.5.14.1 Json-lib JSON Parsing Unspecified DoS (S2-054) (S2-055)
4 Dec 201700:00
nessus
Rows per page
Nvd
Node
fasterxmljackson-databindRange<2.6.7.1
OR
fasterxmljackson-databindRange2.7.02.7.9.1
OR
fasterxmljackson-databindRange2.8.02.8.9
OR
fasterxmljackson-databindMatch2.9.0prerelease1
OR
fasterxmljackson-databindMatch2.9.0prerelease2
Node
debiandebian_linuxMatch8.0
OR
debiandebian_linuxMatch9.0
Node
netapponcommand_balanceMatch-
OR
netapponcommand_performance_managerMatch-linux
OR
netapponcommand_performance_managerMatch-vmware_vsphere
OR
netapponcommand_shiftMatch-
OR
netappsnapcenterMatch-
Node
redhatopenshift_container_platformMatch4.1
OR
redhatvirtualizationMatch4.0
OR
redhatvirtualization_hostMatch4.0
AND
redhatenterprise_linux_serverMatch7.0
Node
redhatjboss_enterprise_application_platformMatch6.0.0
OR
redhatjboss_enterprise_application_platformMatch6.4.0
OR
redhatjboss_enterprise_application_platformMatch7.0
OR
redhatjboss_enterprise_application_platformMatch7.1
AND
redhatenterprise_linux_serverMatch6.0
OR
redhatenterprise_linux_serverMatch7.0
Node
redhatjboss_enterprise_application_platformMatch6.0.0
OR
redhatjboss_enterprise_application_platformMatch6.4.0
AND
redhatenterprise_linux_serverMatch5.0
Node
redhatopenshift_container_platformMatch3.11
Node
oraclebanking_platformMatch2.5.0
OR
oraclebanking_platformMatch2.6.0
OR
oraclebanking_platformMatch2.6.1
OR
oraclebanking_platformMatch2.6.2
OR
oraclecommunications_billing_and_revenue_managementMatch7.5
OR
oraclecommunications_billing_and_revenue_managementMatch12.0
OR
oraclecommunications_communications_policy_managementRange12.012.5.2
OR
oraclecommunications_diameter_signaling_routeRange<8.3
OR
oraclecommunications_instant_messaging_serverMatch10.0.1
OR
oraclecommunications_instant_messaging_serverMatch10.0.1.2.0
OR
oracleenterprise_manager_for_virtualizationMatch13.2.2
OR
oracleenterprise_manager_for_virtualizationMatch13.2.3
OR
oracleenterprise_manager_for_virtualizationMatch13.3.1
OR
oraclefinancial_services_analytical_applications_infrastructureMatch8.0.2.0.0
OR
oraclefinancial_services_analytical_applications_infrastructureMatch8.0.3.0.0
OR
oraclefinancial_services_analytical_applications_infrastructureMatch8.0.4.0.0
OR
oraclefinancial_services_analytical_applications_infrastructureMatch8.0.5.0.0
OR
oraclefinancial_services_analytical_applications_infrastructureMatch8.0.6.0.0
OR
oraclefinancial_services_analytical_applications_infrastructureMatch8.0.7.0.0
OR
oracleglobal_lifecycle_management_opatchautoRange<12.2.0.1.14
OR
oracleprimavera_unifierRange17.117.12
OR
oracleprimavera_unifierMatch16.1
OR
oracleprimavera_unifierMatch16.2
OR
oracleprimavera_unifierMatch18.8
OR
oracleutilities_advanced_spatial_and_operational_analyticsMatch2.7.0.1
OR
oraclewebcenter_portalMatch12.2.1.3.0
SourceLink
accesswww.access.redhat.com/errata/RHSA-2017:2547
securitytrackerwww.securitytracker.com/id/1039947
listswww.lists.apache.org/thread.html/c10a2bf0fdc3d25faf17bd191d6ec46b29a353fa9c97bebd7c4e5913%40%3Cdev.lucene.apache.org%3E
githubwww.github.com/FasterXML/jackson-databind/issues/1599
accesswww.access.redhat.com/errata/RHSA-2017:2546
listswww.lists.apache.org/thread.html/5008bcbd45ee65ce39e4220b6ac53d28a24d6bc67d5804e9773a7399%40%3Csolr-user.lucene.apache.org%3E
accesswww.access.redhat.com/errata/RHSA-2017:2635
accesswww.access.redhat.com/errata/RHSA-2017:1836
listswww.lists.apache.org/thread.html/c2ed4c0126b43e324cf740012a0edd371fd36096fd777be7bfe7a2a6%40%3Cdev.lucene.apache.org%3E
listswww.lists.apache.org/thread.html/r68acf97f4526ba59a33cc6e592261ea4f85d890f99e79c82d57dd589%40%3Cissues.spark.apache.org%3E
Rows per page

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
06 Feb 2018 15:29Current
9.2High risk
Vulners AI Score9.2
CVSS27.5
CVSS39.8
EPSS0.77336
CWE-502CWE-184
deserialization flawjackson-databindcode executionunauthenticated usermaliciously crafted inputreadvalue method
27
.json
Report