Lucene search
K

16 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/19 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2020-36179

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization gadgets and typing, related to...

8.8CVSS7.1AI score0.20929EPSS
Exploits2References2
Circl
Circl
added 2023/11/17 6:24 a.m.4 views

CVE-2020-36179

creationtimestamp| type| source ---|---|--- 2023-11-17 06:24:37+00:00| seen| https://t.me/arpsyndicate/221...

8.8CVSS7.6AI score0.20929EPSS
Exploits2References1
vulnersOsv
vulnersOsv
added 2021/12/09 7:15 p.m.4 views

ai.agnos:reactive-sparql_2.12 (>=0.3.0 <=0.3.1), ai.chronon:aggregator_2.11 (>=0.0.1 <=thread_contention-0.0.23-dev3) +25285 more potentially affected by CVE-2020-36179 via com.fasterxml.jackson.core:jackson-databind (>=2.7.0 <=2.9.10.7)

com.fasterxml.jackson.core:jackson-databind MAVEN version =2.7.0, =0.3.0, =0.0.1, =0.0.6, =0.0.1, =0.0.1, =thread-pool-0.0.24-dev, =local, =local, =0.0.6, =0.0.1, =0.42.1, =0.42.1, =0.40.2, =0.42.1, =0.80.6 and more Source cves: CVE-2020-36179 Source advisory: OSV:GHSA-9GPH-22XH-8X98...

8.8CVSS6.8AI score0.20929EPSS
Exploits2
RedHat Linux
RedHat Linux
added 2021/05/06 1:38 p.m.100 views

Important: Red Hat Security Advisory: Openshift Logging Bug Fix Release (5.0.3)

Openshift Logging Bug Fix Release 5.0.3 This release includes a security update. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

10CVSS7.4AI score0.20929EPSS
Exploits15References5
RedHat Linux
RedHat Linux
added 2021/04/27 8:55 a.m.111 views

Important: Red Hat Security Advisory: OpenShift Container Platform 4.6.26 security and extras update

Red Hat OpenShift Container Platform release 4.6.26 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.6. Red Hat Product Security has rated this update as having a...

10CVSS7.5AI score0.20929EPSS
Exploits15References28
Tenable Nessus
Tenable Nessus
added 2021/04/27 12:0 a.m.75 views

Debian DLA-2638-1 : jackson-databind security update

Multiple security vulnerabilities were found in Jackson Databind. CVE-2020-24616 FasterXML jackson-databind 2.x before 2.9.10.6 mishandles the interaction between serialization gadgets and typing, related to br.com.anteros.dbcp.AnterosDBCPDataSource aka Anteros-DBCP. CVE-2020-24750 FasterXML...

8.8CVSS7AI score0.20929EPSS
Exploits16References20
OpenVAS
OpenVAS
added 2021/04/25 12:0 a.m.42 views

Debian: Security Advisory (DLA-2638-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.9AI score0.20929EPSS
Exploits16References4
Debian
Debian
added 2021/04/24 8:50 p.m.108 views

[SECURITY] [DLA 2638-1] jackson-databind security update

----------------------------------------------------------------------- Debian LTS Advisory DLA-2638-1 [email protected] https://www.debian.org/lts/security/ Utkarsh Gupta April 25, 2021 https://wiki.debian.org/LTS -...

8.8CVSS8.9AI score0.20929EPSS
Exploits16
IBM Security Bulletins
IBM Security Bulletins
added 2021/02/09 9:58 a.m.52 views

Security Bulletin: Vulnerabilities in Node.js and FasterXML jackson-databind affect IBM Spectrum Protect Plus

Summary Multiple vulnerabilities in Node.js and FasterXML jackson-databind may affect IBM Spectrum Protect Plus. Vulnerability Details CVEID: CVE-2020-25649 DESCRIPTION: FasterXML Jackson Databind could provide weaker than expected security, caused by not having entity expansion secured properly....

8.8CVSS2AI score0.54164EPSS
Exploits13Affected Software1
Check Point Advisories
Check Point Advisories
added 2021/01/17 12:0 a.m.10 views

FasterXML jackson-databind Insecure Deserialization (CVE-2020-36179)

An Insecure Deserialization vulnerability exists in FasterXML jackson-databind. A remote attacker can exploit this vulnerability by sending a specially crafted serialized object. Successful exploitation can result in arbitrary code execution in the affected system...

6.8CVSS5AI score0.20929EPSS
Exploits2
GithubExploit
GithubExploit
added 2021/01/10 6:47 a.m.214 views

Exploit for Deserialization of Untrusted Data in Netapp Cloud_Backup

Description CVE-2020-36179: FasterXML jackson-databind 2.x be...

8.8CVSS8.2AI score0.20929EPSS
Exploits5
NVD
NVD
added 2021/01/07 12:15 a.m.34 views

CVE-2020-36179

FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization gadgets and typing, related to oadd.org.apache.commons.dbcp.cpdsadapter.DriverAdapterCPDS...

8.8CVSS8.7AI score0.20929EPSS
Exploits2References11
UbuntuCve
UbuntuCve
added 2021/01/07 12:15 a.m.34 views

CVE-2020-36179

FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization gadgets and typing, related to oadd.org.apache.commons.dbcp.cpdsadapter.DriverAdapterCPDS...

8.8CVSS6.9AI score0.20929EPSS
Exploits2References3
ATTACKERKB
ATTACKERKB
added 2021/01/07 12:15 a.m.5 views

CVE-2020-36179

FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization gadgets and typing, related to oadd.org.apache.commons.dbcp.cpdsadapter.DriverAdapterCPDS...

8.8CVSS8.8AI score0.20929EPSS
Exploits2References13
CVE
CVE
added 2021/01/06 10:30 p.m.296 views

CVE-2020-36179

CVE-2020-36179 affects FasterXML Jackson Databind (2.x) prior to 2.9.10.8, where the interaction between serialization gadgets and typing (notably involving DriverAdapterCPDS variants) is mishandled. Several connected advisories corroborate an insecure-deserialization pattern that can be triggere...

8.8CVSS7.7AI score0.20929EPSS
Exploits2References11Affected Software2
Debian CVE
Debian CVE
added 2021/01/06 10:30 p.m.29 views

CVE-2020-36179

FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization gadgets and typing, related to oadd.org.apache.commons.dbcp.cpdsadapter.DriverAdapterCPDS...

8.8CVSS8.1AI score0.20929EPSS
Exploits2
Rows per page
Query Builder