Lucene search
K

4 matches found

Veracode
Veracode
added 2020/03/27 9:1 a.m.38 views

Remote Code Execution (RCE)

FasterXML jackson-databind is vulnerable to deserialization of untrusted data. There is a polymorphic typing issue because there are more than one association gadget types related to org.aoju.bus.proxy.provider.remoting.RmiProvider aka bus-proxy implementation by default...

8.8CVSS4.2AI score0.03538EPSS
Exploits0References10Affected Software246
Veracode
Veracode
added 2019/10/08 2:7 a.m.33 views

Remote Code Execution

FasterXML jackson-databind is vulnerable to deserialization of untrusted data. There is a polymorphic typing issue because there are more than one association gadget types related to net.sf.ehcache.hibernate.EhcacheJtaTransactionManagerLookup...

9.8CVSS3.8AI score0.0459EPSS
Exploits0References27Affected Software3
Veracode
Veracode
added 2019/09/16 3:26 p.m.10 views

Deserialization Of Untrusted Data

FasterXML jackson-databind is vulnerable to deserialization of untrusted data. There is a polymorphic typing issue because there are more than one association gadget types related to CXF JAX-RS implementation by default...

3.4AI score
Exploits0
Veracode
Veracode
added 2019/09/16 7:25 a.m.41 views

Deserialization Of Untrusted Data

FasterXML jackson-databind is vulnerable to deserialization of untrusted data . The vulnerability exists because there is a polymorphic typing issue because there are more than one association gadget types related to com.zaxxer.hikari.HikariConfig by default which allows an attacker to perform...

9.8CVSS9.5AI score0.10676EPSS
Exploits1References52Affected Software3
Rows per page
Query Builder