Lucene search

K
redhatcveRedhat.comRH:CVE-2018-19360
HistoryApr 09, 2020 - 7:12 a.m.

CVE-2018-19360

2020-04-0907:12:14
redhat.com
access.redhat.com
21
flaw
jackson-databind
arbitrary code

EPSS

0.005

Percentile

76.7%

A flaw was discovered in jackson-databind, where it would permit polymorphic deserialization of a malicious object using the axis2-transport-jms class. An attacker could use this flaw to execute arbitrary code.