CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4220 matches found

OSV•added 2020/03/02 4:15 a.m.•1 views

DEBIAN-CVE-2020-9547

FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadgets and typing, related to com.ibatis.sqlmap.engine.transaction.jta.JtaTransactionConfig aka ibatis-sqlmap...

9.8CVSS8.1AI score0.38262EPSS

Exploits0References1

OSV•added 2020/03/02 4:15 a.m.•35 views

CVE-2020-9548

FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadgets and typing, related to br.com.anteros.dbcp.AnterosDBCPConfig aka anteros-core...

9.8CVSS9.3AI score

Exploits0References16

NVD•added 2020/03/02 4:15 a.m.•23 views

CVE-2020-9547

9.8CVSS9.3AI score0.38262EPSS

Exploits0References23

OSV•added 2020/03/02 4:15 a.m.•31 views

CVE-2020-9547

9.8CVSS9.3AI score

Exploits0References23

NVD•added 2020/03/02 4:15 a.m.•30 views

CVE-2020-9548

FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadgets and typing, related to br.com.anteros.dbcp.AnterosDBCPConfig aka anteros-core...

9.8CVSS9.3AI score0.62015EPSS

Exploits0References16

OSV•added 2020/03/02 4:15 a.m.•1 views

DEBIAN-CVE-2020-9548

FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadgets and typing, related to br.com.anteros.dbcp.AnterosDBCPConfig aka anteros-core...

9.8CVSS8.1AI score0.62015EPSS

Exploits0References1

NVD•added 2020/03/02 4:15 a.m.•22 views

CVE-2020-9546

FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadgets and typing, related to org.apache.hadoop.shaded.com.zaxxer.hikari.HikariConfig aka shaded hikari-config...

9.8CVSS9.3AI score0.0239EPSS

Exploits0References17

OSV•added 2020/03/02 4:15 a.m.•2 views

DEBIAN-CVE-2020-9546

9.8CVSS8.1AI score0.0239EPSS

Exploits0References1

OSV•added 2020/03/02 4:15 a.m.•27 views

CVE-2020-9546

9.8CVSS9.3AI score

Exploits0References17

UbuntuCve•added 2020/03/02 4:15 a.m.•39 views

CVE-2020-9548

FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadgets and typing, related to br.com.anteros.dbcp.AnterosDBCPConfig aka anteros-core...

9.8CVSS7.1AI score0.62015EPSS

Exploits0References4

Prion•added 2020/03/02 4:15 a.m.•24 views

Design/Logic Flaw

6.8CVSS9.2AI score0.0239EPSS

Exploits0References17Affected Software31

Prion•added 2020/03/02 4:15 a.m.•25 views

Design/Logic Flaw

6.8CVSS9.2AI score0.38262EPSS

Exploits0References23Affected Software16

UbuntuCve•added 2020/03/02 4:15 a.m.•42 views

CVE-2020-9546

9.8CVSS7.1AI score0.0239EPSS

Exploits0References4

OSV•added 2020/03/02 4:15 a.m.•0 views

UBUNTU-CVE-2020-9546

9.8CVSS5.8AI score0.0239EPSS

Exploits0References5

UbuntuCve•added 2020/03/02 4:15 a.m.•44 views

CVE-2020-9547

9.8CVSS7.1AI score0.38262EPSS

Exploits0References4

Prion•added 2020/03/02 4:15 a.m.•26 views

Code injection

FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadgets and typing, related to br.com.anteros.dbcp.AnterosDBCPConfig aka anteros-core...

6.8CVSS9.2AI score0.62015EPSS

Exploits0References16Affected Software25

OSV•added 2020/03/02 4:15 a.m.•0 views

UBUNTU-CVE-2020-9547

9.8CVSS7.2AI score0.38262EPSS

Exploits0References5

CVE•added 2020/03/02 3:59 a.m.•552 views

CVE-2020-9546

CVE-2020-9546 affects FasterXML jackson-databind 2.x before 2.9.10.4, where serialization gadgets and typing interactions involving org.apache.hadoop.shaded.com.zaxxer.hikari.HikariConfig can lead to deserialization issues. The IBM/Cloudera bulletin references the same CVE and lists a high impact...

9.8CVSS9.2AI score0.0239EPSS

Exploits0References17Affected Software1