Lucene search
+L

18 matches found

OSV
OSV
added yesterday5 views

RHSA-2026:40895 Red Hat Security Advisory: jackson-annotations, jackson-core, jackson-databind, jackson-jaxrs-providers, and jackson-modules-base security update

Bulletin has no description...

8.1CVSS4.8AI score0.00695EPSS
Exploits1References20
Tenable Nessus
Tenable Nessus
added 2026/07/09 12:0 a.m.7 views

SUSE SLED15: jackson-annotations / jackson-core / jackson-databind / etc (SUSE-SU-2026:2801-1)

"The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:2801-1 advisory. This update for jackson-annotations, jackson-bom, jackson-core, jackson-databind, jackson-dataformats- binary...

8.1CVSS6.2AI score0.00695EPSS
Exploits1References14
SUSE Linux
SUSE Linux
added 2026/07/08 7:5 p.m.4 views

Security update for jackson-annotations, jackson-bom, jackson-core, jackson-databind, jackson-dataformats-binary, jackson-modules-base, jackson-parent

This update for jackson-annotations, jackson-bom, jackson-core, jackson-databind, jackson-dataformats-binary, jackson-modules-base, jackson-parent fixes the following issues CVE-2026-54512: jackson-databind has a PolymorphicTypeValidator bypass via generic type parameters that allows arbitrary...

8.1CVSS6.1AI score0.00695EPSS
Exploits1References18
Tenable Nessus
Tenable Nessus
added 2026/01/13 12:0 a.m.6 views

MiracleLinux 9 : jackson-annotations, jackson-core, jackson-databind, jackson-jaxrs-providers, and jackson-modules-base (AXSA:2025-10737:01)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-10737:01 advisory. com.fasterxml.jackson.core/jackson-core: jackson-core Potential StackoverflowError CVE-2025-52999 Tenable has extracted the preceding description block...

8.7CVSS7AI score0.00634EPSS
Exploits0References2
OSV
OSV
added 2025/10/18 8:6 a.m.6 views

RLSA-2025:12280 Important: jackson-annotations, jackson-core, jackson-databind, jackson-jaxrs-providers, and jackson-modules-base security update

Core part of Jackson that defines Streaming API as well as basic shared abstractions. Security Fixes: com.fasterxml.jackson.core/jackson-core: jackson-core Potential StackoverflowError CVE-2025-52999 For more details about the security issues, including the impact, a CVSS score, acknowledgments,...

7.5CVSS6.9AI score0.00634EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/10/18 12:0 a.m.4 views

RockyLinux 9 : jackson-annotations, jackson-core, jackson-databind, jackson-jaxrs-providers, and jackson-modules-base (RLSA-2025:12280)

The remote RockyLinux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2025:12280 advisory. com.fasterxml.jackson.core/jackson-core: jackson-core Potential StackoverflowError CVE-2025-52999 Tenable has extracted the preceding description block directly...

8.7CVSS7.1AI score0.00634EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/07/31 12:0 a.m.3 views

Oracle Linux 9 : jackson-annotations, / jackson-core, / jackson-databind, / jackson-jaxrs-providers, / and / jackson-modules-base (ELSA-2025-12280)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-12280 advisory. jackson-annotations 2.19.1-1 - Update to version 2.19.1 - Resolves: RHEL-100233 jackson-core 2.19.1-1 - Update to version 2.19.1 - Resolves: RHEL-103636...

8.7CVSS7.1AI score0.00634EPSS
Exploits0References2
Oracle linux
Oracle linux
added 2025/07/30 12:0 a.m.8 views

jackson-annotations, jackson-core, jackson-databind, jackson-jaxrs-providers, and jackson-modules-base security update

jackson-annotations 2.19.1-1 - Update to version 2.19.1 - Resolves: RHEL-100233 jackson-core 2.19.1-1 - Update to version 2.19.1 - Resolves: RHEL-103636 jackson-databind 2.19.1-1 - Update to version 2.19.1 - Resolves: RHEL-100233 jackson-jaxrs-providers 2.19.1-1 - Update to version 2.19.1 -...

8.7CVSS7.4AI score0.00634EPSS
Exploits0
AlmaLinux
AlmaLinux
added 2025/07/30 12:0 a.m.4 views

Important: jackson-annotations, jackson-core, jackson-databind, jackson-jaxrs-providers, and jackson-modules-base security update

Core part of Jackson that defines Streaming API as well as basic shared abstractions. Security Fixes: com.fasterxml.jackson.core/jackson-core: jackson-core Potential StackoverflowError CVE-2025-52999 For more details about the security issues, including the impact, a CVSS score, acknowledgments,...

8.7CVSS6.8AI score0.00634EPSS
Exploits0References4
OSV
OSV
added 2025/07/30 12:0 a.m.4 views

ALSA-2025:12280 Important: jackson-annotations, jackson-core, jackson-databind, jackson-jaxrs-providers, and jackson-modules-base security update

Core part of Jackson that defines Streaming API as well as basic shared abstractions. Security Fixes: com.fasterxml.jackson.core/jackson-core: jackson-core Potential StackoverflowError CVE-2025-52999 For more details about the security issues, including the impact, a CVSS score, acknowledgments,...

8.7CVSS7.1AI score0.00634EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2024/03/08 12:0 a.m.14 views

Fedora: Security Advisory for jackson-modules-base (FEDORA-2024-129d8ca6fc)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS9.2AI score0.02578EPSS
Exploits3References2
Oracle linux
Oracle linux
added 2023/05/15 12:0 a.m.62 views

jackson security update

jackson-annotations 2.14.1-1 - Update to version 2.14.1 - Resolves: 2070122 jackson-core 2.14.1-1 - Update to version 2.14.1 - Resolves: 2070122 jackson-databind 2.14.1-1 - Update to version 2.14.1 - Resolves: 2070122 jackson-jaxrs-providers 2.14.1-1 - Update to version 2.14.1 - Resolves: 2070122...

7.5CVSS7.1AI score0.0486EPSS
Exploits1
Rockylinux
Rockylinux
added 2022/05/17 5:56 a.m.13 views

new packages: jackson-modules-base

An update is available for jackson-modules-base. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Roc...

2AI score
Exploits0
RedhatCVE
RedhatCVE
added 2020/02/24 7:31 a.m.56 views

CVE-2018-1000873

Fasterxml Jackson version Before 2.9.8 contains a CWE-20: Improper Input Validation vulnerability in Jackson-Modules-Java8 that can result in Causes a denial-of-service DoS. This attack appear to be exploitable via The victim deserializes malicious input, specifically very large values in the...

6.5CVSS5.3AI score0.04758EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2019/05/07 12:0 a.m.95 views

Fedora Update for jackson-modules-base FEDORA-2019-df57551f6d

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

10CVSS8.7AI score0.12679EPSS
Exploits1References2
NVD
NVD
added 2018/12/20 5:29 p.m.31 views

CVE-2018-1000873

Fasterxml Jackson version Before 2.9.8 contains a CWE-20: Improper Input Validation vulnerability in Jackson-Modules-Java8 that can result in Causes a denial-of-service DoS. This attack appear to be exploitable via The victim deserializes malicious input, specifically very large values in the...

6.5CVSS7.1AI score0.04758EPSS
Exploits1References14
Prion
Prion
added 2018/12/20 5:29 p.m.31 views

Input validation

Fasterxml Jackson version Before 2.9.8 contains a CWE-20: Improper Input Validation vulnerability in Jackson-Modules-Java8 that can result in Causes a denial-of-service DoS. This attack appear to be exploitable via The victim deserializes malicious input, specifically very large values in the...

4.3CVSS7.8AI score0.04758EPSS
Exploits1References14Affected Software6
Cvelist
Cvelist
added 2018/12/20 5:0 p.m.28 views

CVE-2018-1000873

Fasterxml Jackson version Before 2.9.8 contains a CWE-20: Improper Input Validation vulnerability in Jackson-Modules-Java8 that can result in Causes a denial-of-service DoS. This attack appear to be exploitable via The victim deserializes malicious input, specifically very large values in the...

7.9AI score0.04758EPSS
Exploits1References14
Rows per page
Query Builder