CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4 matches found

vulnersOsv•added 2022/02/10 11:3 p.m.•3 views

cc.akkaha:pea-dubbo_2.12 (>=0.1.5 <=0.2.0), cc.akkaha:pea_2.12 (>=0.1.0 <=0.2.0) +43 more potentially affected by CVE-2018-21234 via org.jodd:jodd-json (>=3.6.6 <=5.0.3)

org.jodd:jodd-json MAVEN version =3.6.6, =0.1.5, =0.1.0, =0.4.0, =1.0.3, =1.0.3, =1.0.3, =1.0.3, =1.0.3, =1.0.3, =1.0.3, =1.0.3, =1.2.1 and more Source cves: CVE-2018-21234 Source advisory: OSV:GHSA-JRG3-QQ99-35G7...

9.8CVSS7.2AI score0.25246EPSS

Exploits0

Circl•added 2020/05/22 2:55 a.m.•3 views

CVE-2018-21234

creationtimestamp| type| source ---|---|--- 2020-05-22 02:55:30+00:00| seen| https://t.me/cibsecurity/12240...

9.8CVSS8.7AI score0.25246EPSS

Exploits0References1

UbuntuCve•added 2020/05/21 11:15 p.m.•27 views

CVE-2018-21234

Jodd before 5.0.4 performs Deserialization of Untrusted JSON Data when setClassMetadataName is set...

9.8CVSS7.2AI score0.25246EPSS

Exploits0References4

CVE•added 2020/05/21 10:15 p.m.•101 views

CVE-2018-21234

Jodd before 5.0.4 is affected by CVE-2018-21234: Deserialization of Untrusted JSON Data when setClassMetadataName is set. The issue stems from how the library handles deserialization, enabling potentially untrusted data to be deserialized. Impact is indicated as high (NVD CVSS v3.1 base score 9.8...

9.8CVSS9.4AI score0.25246EPSS

Exploits0References14Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by