Lucene search
K

14 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/19 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2018-14719

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - FasterXML jackson-databind 2.x before 2.9.7 might allow remote attackers to execute arbitrary code by leveraging failure to block the blaze-ds-opt and...

9.8CVSS8.7AI score0.09682EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2020/06/15 4:18 p.m.4 views

jackson-databind: arbitrary code execution in blaze-ds-opt and blaze-ds-core classes

A flaw was discovered in jackson-databind, where it would permit polymorphic deserialization of a malicious object using blaze classes. An attacker could use this flaw to execute arbitrary code...

9.8CVSS7.7AI score0.09682EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2019/11/14 9:17 p.m.3 views

jackson-databind: arbitrary code execution in blaze-ds-opt and blaze-ds-core classes

A flaw was discovered in jackson-databind, where it would permit polymorphic deserialization of a malicious object using blaze classes. An attacker could use this flaw to execute arbitrary code...

9.8CVSS7.7AI score0.09682EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2019/10/10 12:49 p.m.4 views

jackson-databind: arbitrary code execution in blaze-ds-opt and blaze-ds-core classes

A flaw was discovered in jackson-databind, where it would permit polymorphic deserialization of a malicious object using blaze classes. An attacker could use this flaw to execute arbitrary code...

9.8CVSS7.7AI score0.09682EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2019/09/17 1:45 p.m.4 views

jackson-databind: arbitrary code execution in blaze-ds-opt and blaze-ds-core classes

A flaw was discovered in jackson-databind, where it would permit polymorphic deserialization of a malicious object using blaze classes. An attacker could use this flaw to execute arbitrary code...

9.8CVSS7.7AI score0.09682EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2019/07/22 2:53 p.m.4 views

jackson-databind: arbitrary code execution in blaze-ds-opt and blaze-ds-core classes

A flaw was discovered in jackson-databind, where it would permit polymorphic deserialization of a malicious object using blaze classes. An attacker could use this flaw to execute arbitrary code...

9.8CVSS7.7AI score0.09682EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2019/07/22 2:53 p.m.2 views

jackson-databind: arbitrary code execution in blaze-ds-opt and blaze-ds-core classes

A flaw was discovered in jackson-databind, where it would permit polymorphic deserialization of a malicious object using blaze classes. An attacker could use this flaw to execute arbitrary code...

9.8CVSS7.7AI score0.09682EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2019/07/16 4:21 p.m.2 views

jackson-databind: arbitrary code execution in blaze-ds-opt and blaze-ds-core classes

A flaw was discovered in jackson-databind, where it would permit polymorphic deserialization of a malicious object using blaze classes. An attacker could use this flaw to execute arbitrary code...

9.8CVSS7.7AI score0.09682EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2019/05/07 12:0 a.m.4 views

The vulnerability of the jackson-databind library, related to the restoration of unreliable data structures in memory, allows attackers to execute arbitrary code.

The vulnerability of the jackson-databind library arises from the lack of protection for the blaze-ds-opt and blaze-ds-core classes against polymorphic deserialization. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

10CVSS8.1AI score0.09682EPSS
Exploits0References3Affected Software3
RedHat Linux
RedHat Linux
added 2019/04/24 6:46 p.m.1 views

jackson-databind: arbitrary code execution in blaze-ds-opt and blaze-ds-core classes

A flaw was discovered in jackson-databind, where it would permit polymorphic deserialization of a malicious object using blaze classes. An attacker could use this flaw to execute arbitrary code...

9.8CVSS7.7AI score0.09682EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2019/04/17 9:3 p.m.5 views

jackson-databind: arbitrary code execution in blaze-ds-opt and blaze-ds-core classes

A flaw was discovered in jackson-databind, where it would permit polymorphic deserialization of a malicious object using blaze classes. An attacker could use this flaw to execute arbitrary code...

9.8CVSS7.7AI score0.09682EPSS
Exploits0References4
OSV
OSV
added 2019/01/02 6:29 p.m.1 views

DEBIAN-CVE-2018-14719

FasterXML jackson-databind 2.x before 2.9.7 might allow remote attackers to execute arbitrary code by leveraging failure to block the blaze-ds-opt and blaze-ds-core classes from polymorphic deserialization...

9.8CVSS8AI score0.09682EPSS
Exploits0References1
OSV
OSV
added 2019/01/02 6:29 p.m.2 views

UBUNTU-CVE-2018-14719

FasterXML jackson-databind 2.x before 2.9.7 might allow remote attackers to execute arbitrary code by leveraging failure to block the blaze-ds-opt and blaze-ds-core classes from polymorphic deserialization...

9.8CVSS7.7AI score0.09682EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2018/08/17 12:0 a.m.8 views

PT-2018-2765

Name of the Vulnerable Software and Affected Versions FasterXML jackson-databind versions 2.0.0 through 2.9.6 FasterXML jackson-databind versions 2.8.0 through 2.8.11.2 FasterXML jackson-databind versions 2.7.0 through 2.7.9.4 Description The issue is caused by the lack of protection of the...

10CVSS7.1AI score0.09682EPSS
Exploits0References106
Rows per page
Query Builder