Vulnerability in jackson-databind 2.x allowing XXE attacks by not blocking unspecified JDK classes from polymorphic deserialization
Reporter | Title | Published | Views | Family All 117 |
---|---|---|---|---|
Prion | Deserialization of untrusted data | 2 Jan 201918:29 | – | prion |
OSV | CVE-2018-14720 | 2 Jan 201918:29 | – | osv |
OSV | Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.2.1 on RHEL 6 security update | 13 Sep 202416:54 | – | osv |
OSV | Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.2.1 on RHEL 7 security update | 13 Sep 202416:54 | – | osv |
OSV | jackson-databind - security update | 4 Mar 201900:00 | – | osv |
OSV | Red Hat Security Advisory: rh-maven35-jackson-databind security update | 13 Sep 202416:54 | – | osv |
OSV | jackson-databind - security update | 24 May 201900:00 | – | osv |
OSV | jackson-databind vulnerabilities | 15 Mar 202121:47 | – | osv |
Debian CVE | CVE-2018-14720 | 2 Jan 201918:29 | – | debiancve |
Cvelist | CVE-2018-14720 | 2 Jan 201918:00 | – | cvelist |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo