Lucene search
K

13 matches found

Debian
Debian
added 2026/06/08 11:55 a.m.12 views

[SECURITY] [DLA 4623-1] jackson-core security update

Debian LTS Advisory DLA-4623-1 [email protected] https://www.debian.org/lts/security/ Markus Koschany June 08, 2026 https://wiki.debian.org/LTS Package : jackson-core Version : 2.14.1-2deb11u1 CVE ID : CVE-2025-49128 CVE-2025-52999 Debian Bug : 1108367 Two security vulnerabilities have...

8.7CVSS6.6AI score0.00634EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/10/24 12:0 a.m.7 views

Oracle Enterprise Manager Cloud Control (October 2025 CPU)

The 13.5 and 24.1 versions of Enterprise Manager Base Platform installed on the remote host are affected by a vulnerability as referenced in the October 2025 CPU advisory. - Vulnerability in the Enterprise Manager Base Platform product of Oracle Enterprise Manager component: Security Framework...

4CVSS8.1AI score0.00314EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/08/20 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2025-49128

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Jackson-core contains core low-level incremental streaming parser and generator abstractions used by Jackson Data Processor. Starting in version 2.0.0 and prior...

4CVSS7.2AI score0.00314EPSS
Exploits0References3
Amazon
Amazon
added 2025/07/10 12:0 a.m.4 views

Medium: jackson-core

Issue Overview: Jackson-core contains core low-level incremental "streaming" parser and generator abstractions used by Jackson Data Processor. Starting in version 2.0.0 and prior to version 2.13.0, a flaw in jackson-core's JsonLocation.appendSourceDesc method allows up to 500 bytes of unintended...

4CVSS6.4AI score0.00314EPSS
Exploits0
Amazon
Amazon
added 2025/06/24 12:0 a.m.7 views

Medium: aws-kinesis-agent

Issue Overview: Jackson-core contains core low-level incremental "streaming" parser and generator abstractions used by Jackson Data Processor. Starting in version 2.0.0 and prior to version 2.13.0, a flaw in jackson-core's JsonLocation.appendSourceDesc method allows up to 500 bytes of unintended...

4CVSS6.4AI score0.00314EPSS
Exploits0
Amazon
Amazon
added 2025/06/24 12:0 a.m.6 views

Medium: aws-kinesis-agent

Issue Overview: Jackson-core contains core low-level incremental "streaming" parser and generator abstractions used by Jackson Data Processor. Starting in version 2.0.0 and prior to version 2.13.0, a flaw in jackson-core's JsonLocation.appendSourceDesc method allows up to 500 bytes of unintended...

4CVSS6.8AI score0.00314EPSS
Exploits0
Amazon
Amazon
added 2025/06/23 12:0 a.m.8 views

Medium: aws-kinesis-agent

Issue Overview: Jackson-core contains core low-level incremental "streaming" parser and generator abstractions used by Jackson Data Processor. Starting in version 2.0.0 and prior to version 2.13.0, a flaw in jackson-core's JsonLocation.appendSourceDesc method allows up to 500 bytes of unintended...

4CVSS6.8AI score0.00314EPSS
Exploits0
Wolfi
Wolfi
added 2025/06/07 1:46 p.m.14 views

CVE-2025-49128 vulnerabilities

Vulnerabilities for packages: scala, datadog-jmxfetch, druid, tez, spark...

4CVSS6.5AI score0.00314EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/06/06 10:43 p.m.14 views

CVE-2025-49128

A flaw was found in the Jackson-core JsonLocation.appendSourceDesc method. This vulnerability allows up to 500 bytes of unintended memory content to be included in exception messages. This issue may lead to unintended information disclosure. Mitigation If upgrading is not immediately possible,...

4CVSS4.1AI score0.00314EPSS
Exploits0References6
NVD
NVD
added 2025/06/06 10:15 p.m.16 views

CVE-2025-49128

Jackson-core contains core low-level incremental "streaming" parser and generator abstractions used by Jackson Data Processor. Starting in version 2.0.0 and prior to version 2.13.0, a flaw in jackson-core's JsonLocation.appendSourceDesc method allows up to 500 bytes of unintended memory content t...

4CVSS0.00314EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/06/06 9:18 p.m.21 views

CVE-2025-49128 Jackson-core Vulnerable to Memory Disclosure via Source Snippet in JsonLocation

Jackson-core contains core low-level incremental "streaming" parser and generator abstractions used by Jackson Data Processor. Starting in version 2.0.0 and prior to version 2.13.0, a flaw in jackson-core's JsonLocation.appendSourceDesc method allows up to 500 bytes of unintended memory content t...

4CVSS0.00314EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2025/06/06 9:18 p.m.8 views

CVE-2025-49128

Jackson-core contains core low-level incremental "streaming" parser and generator abstractions used by Jackson Data Processor. Starting in version 2.0.0 and prior to version 2.13.0, a flaw in jackson-core's JsonLocation.appendSourceDesc method allows up to 500 bytes of unintended memory content t...

4CVSS7.2AI score0.00314EPSS
Exploits0
OSV
OSV
added 2025/06/06 9:18 p.m.5 views

CVE-2025-49128 Jackson-core Vulnerable to Memory Disclosure via Source Snippet in JsonLocation

Jackson-core contains core low-level incremental "streaming" parser and generator abstractions used by Jackson Data Processor. Starting in version 2.0.0 and prior to version 2.13.0, a flaw in jackson-core's JsonLocation.appendSourceDesc method allows up to 500 bytes of unintended memory content t...

4CVSS7.9AI score0.00314EPSS
Exploits0References5
Rows per page
Query Builder