Lucene search
K

24 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2019-0186

Malware in sbrugna...

9.8CVSS9.1AI score0.10599EPSS
Exploits0References56
SUSE CVE
SUSE CVE
added 2023/02/15 4:22 a.m.8 views

SUSE CVE-2018-19360

FasterXML jackson-databind 2.x before 2.9.8 might allow attackers to have unspecified impact by leveraging failure to block the axis2-transport-jms class from polymorphic deserialization...

9.8CVSS8.9AI score0.10599EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2020/06/15 4:18 p.m.5 views

jackson-databind: improper polymorphic deserialization in axis2-transport-jms class

A flaw was discovered in jackson-databind, where it would permit polymorphic deserialization of a malicious object using the axis2-transport-jms class. An attacker could use this flaw to execute arbitrary code...

9.8CVSS7.7AI score0.10599EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2019/12/02 4:24 p.m.3 views

jackson-databind: improper polymorphic deserialization in axis2-transport-jms class

A flaw was discovered in jackson-databind, where it would permit polymorphic deserialization of a malicious object using the axis2-transport-jms class. An attacker could use this flaw to execute arbitrary code...

9.8CVSS7.7AI score0.10599EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2019/11/14 9:17 p.m.4 views

jackson-databind: improper polymorphic deserialization in axis2-transport-jms class

A flaw was discovered in jackson-databind, where it would permit polymorphic deserialization of a malicious object using the axis2-transport-jms class. An attacker could use this flaw to execute arbitrary code...

9.8CVSS7.7AI score0.10599EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2019/10/17 2:54 p.m.5 views

jackson-databind: improper polymorphic deserialization in axis2-transport-jms class

A flaw was discovered in jackson-databind, where it would permit polymorphic deserialization of a malicious object using the axis2-transport-jms class. An attacker could use this flaw to execute arbitrary code...

9.8CVSS7.7AI score0.10599EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2019/10/10 12:49 p.m.3 views

jackson-databind: improper polymorphic deserialization in axis2-transport-jms class

A flaw was discovered in jackson-databind, where it would permit polymorphic deserialization of a malicious object using the axis2-transport-jms class. An attacker could use this flaw to execute arbitrary code...

9.8CVSS7.7AI score0.10599EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2019/09/17 1:45 p.m.0 views

jackson-databind: improper polymorphic deserialization in axis2-transport-jms class

A flaw was discovered in jackson-databind, where it would permit polymorphic deserialization of a malicious object using the axis2-transport-jms class. An attacker could use this flaw to execute arbitrary code...

9.8CVSS7.7AI score0.10599EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2019/07/22 2:53 p.m.1 views

jackson-databind: improper polymorphic deserialization in axis2-transport-jms class

A flaw was discovered in jackson-databind, where it would permit polymorphic deserialization of a malicious object using the axis2-transport-jms class. An attacker could use this flaw to execute arbitrary code...

9.8CVSS7.7AI score0.10599EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2019/07/22 2:53 p.m.2 views

jackson-databind: improper polymorphic deserialization in axis2-transport-jms class

A flaw was discovered in jackson-databind, where it would permit polymorphic deserialization of a malicious object using the axis2-transport-jms class. An attacker could use this flaw to execute arbitrary code...

9.8CVSS7.7AI score0.10599EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2019/07/16 4:21 p.m.3 views

jackson-databind: improper polymorphic deserialization in axis2-transport-jms class

A flaw was discovered in jackson-databind, where it would permit polymorphic deserialization of a malicious object using the axis2-transport-jms class. An attacker could use this flaw to execute arbitrary code...

9.8CVSS7.7AI score0.10599EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2019/07/15 7:18 p.m.1 views

jackson-databind: improper polymorphic deserialization in axis2-transport-jms class

A flaw was discovered in jackson-databind, where it would permit polymorphic deserialization of a malicious object using the axis2-transport-jms class. An attacker could use this flaw to execute arbitrary code...

9.8CVSS7.7AI score0.10599EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2019/04/24 6:46 p.m.1 views

jackson-databind: improper polymorphic deserialization in axis2-transport-jms class

A flaw was discovered in jackson-databind, where it would permit polymorphic deserialization of a malicious object using the axis2-transport-jms class. An attacker could use this flaw to execute arbitrary code...

9.8CVSS7.7AI score0.10599EPSS
Exploits0References4
OSV
OSV
added 2019/01/04 7:6 p.m.0 views

GHSA-F9HV-MG5H-XCW9 Deserialization of Untrusted Data in jackson-databind due to polymorphic deserialization

FasterXML jackson-databind 2.x before 2.9.8 might allow attackers to have unspecified impact by leveraging failure to block the axis2-transport-jms class from polymorphic deserialization...

9.8CVSS7.2AI score0.10599EPSS
Exploits0References39
Github Security Blog
Github Security Blog
added 2019/01/04 7:6 p.m.50 views

Deserialization of Untrusted Data in jackson-databind due to polymorphic deserialization

FasterXML jackson-databind 2.x before 2.9.8 might allow attackers to have unspecified impact by leveraging failure to block the axis2-transport-jms class from polymorphic deserialization...

9.8CVSS9.3AI score0.10599EPSS
Exploits0References39Affected Software1
Veracode
Veracode
added 2019/01/03 1:18 a.m.26 views

Deserialisation Of Untrusted Data

jackson-databind can deserialize untrusted data. The vulnerability exists as the SubtypeValidator blacklist did not deny the axis2-transport-jms class from polymorphic deserialization, allowing issues such as remote code execution RCE to exist...

9.8CVSS9.7AI score0.10599EPSS
Exploits0References46Affected Software4
Prion
Prion
added 2019/01/02 6:29 p.m.27 views

Deserialization of untrusted data

FasterXML jackson-databind 2.x before 2.9.8 might allow attackers to have unspecified impact by leveraging failure to block the axis2-transport-jms class from polymorphic deserialization...

7.5CVSS9.4AI score0.10599EPSS
Exploits0References37Affected Software12
UbuntuCve
UbuntuCve
added 2019/01/02 6:29 p.m.24 views

CVE-2018-19360

FasterXML jackson-databind 2.x before 2.9.8 might allow attackers to have unspecified impact by leveraging failure to block the axis2-transport-jms class from polymorphic deserialization...

9.8CVSS7.2AI score0.10599EPSS
Exploits0References6
OSV
OSV
added 2019/01/02 6:29 p.m.20 views

CVE-2018-19360

FasterXML jackson-databind 2.x before 2.9.8 might allow attackers to have unspecified impact by leveraging failure to block the axis2-transport-jms class from polymorphic deserialization...

9.8CVSS9.7AI score
Exploits0References37
OSV
OSV
added 2019/01/02 6:29 p.m.1 views

DEBIAN-CVE-2018-19360

FasterXML jackson-databind 2.x before 2.9.8 might allow attackers to have unspecified impact by leveraging failure to block the axis2-transport-jms class from polymorphic deserialization...

9.8CVSS7.2AI score0.10599EPSS
Exploits0References1
Rows per page
Query Builder