Lucene search
K

21 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2024/09/18 4:36 p.m.25 views

Security Bulletin: Vulnerabilities in jackson-databind affect IBM watsonx.data

Summary FasterXML jackson-databind has multiple vulnerabilities including the possibility of remote attackers executing arbitrary code on the system. These can affect IBM watsonx.data. Vulnerability Details CVEID:CVE-2017-15095 DESCRIPTION: Jackson Library could allow a remote attacker to execute...

10CVSS9AI score0.49727EPSS
Exploits7Affected Software1
Tenable Nessus
Tenable Nessus
added 2023/10/20 12:0 a.m.55 views

Ubuntu 16.04 ESM : Jackson Databind vulnerabilities (USN-4813-1)

The remote Ubuntu 16.04 ESM host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-4813-1 advisory. It was discovered that Jackson Databind incorrectly handled deserialization. An attacker could possibly use this issue to obtain sensitive information...

10CVSS7.8AI score0.45205EPSS
Exploits10References40
IBM Security Bulletins
IBM Security Bulletins
added 2021/10/06 12:30 p.m.96 views

Security Bulletin: IBM Security Guardium Insights is affected by Components with known vulnerabilities

Summary IBM Security Guardium Insights has addressed the following vulnerabilities. Vulnerability Details CVEID: CVE-2017-15095 DESCRIPTION: Jackson Library could allow a remote attacker to execute arbitrary code on the system, caused by a deserialization flaw in the readValue method of the...

10CVSS1.3AI score0.49727EPSS
Exploits13Affected Software1
Ubuntu
Ubuntu
added 2021/03/15 9:47 p.m.80 views

USN-4813-1: Jackson Databind vulnerabilities

It was discovered that Jackson Databind incorrectly handled deserialization. An attacker could possibly use this issue to obtain sensitive information. CVE-2018-11307, CVE-2019-12086, CVE-2019-12814 It was discovered that Jackson Databind incorrectly handled deserialization. An attacker could...

10CVSS7.4AI score0.45205EPSS
Exploits10
RedHat Linux
RedHat Linux
added 2019/11/14 9:17 p.m.144 views

Important: Red Hat Security Advisory: Red Hat Fuse 7.5.0 security update

A minor version update from 7.4 to 7.5 is now available for Red Hat Fuse. The purpose of this text-only errata is to inform you about the security issues fixed in this release. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring...

10CVSS7.9AI score0.94774EPSS
Exploits20References30
RedHat Linux
RedHat Linux
added 2019/10/18 7:52 p.m.176 views

Important: Red Hat Security Advisory: OpenShift Container Platform logging-elasticsearch5-container security update

An update for logging-elasticsearch5-container is now available for Red Hat OpenShift Container Platform 3.11. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

10CVSS7.5AI score0.49727EPSS
Exploits10References21
RedHat Linux
RedHat Linux
added 2019/10/17 2:54 p.m.116 views

Important: Red Hat Security Advisory: Red Hat JBoss Data Virtualization 6.4.8 security update

An update is now available for Red Hat JBoss Data Virtualization. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CV...

9.8CVSS7.6AI score0.93972EPSS
Exploits10References16
RedHat Linux
RedHat Linux
added 2019/10/10 12:49 p.m.97 views

Important: Red Hat Security Advisory: Red Hat FIS 2.0 on Fuse 6.3.0 R13 security and bug fix update

An update is now available for Red Hat Fuse Integration Services. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CV...

9.8CVSS7.4AI score0.12679EPSS
Exploits0References10
RedHat Linux
RedHat Linux
added 2019/09/17 1:45 p.m.61 views

Important: Red Hat Security Advisory: Red Hat JBoss Fuse/A-MQ 6.3 R13 security and bug fix update

An update is now available for Red Hat JBoss Fuse 6.3 and Red Hat JBoss A-MQ 6.3. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

9.8CVSS7.4AI score0.12679EPSS
Exploits0References12
RedHat Linux
RedHat Linux
added 2019/07/22 2:53 p.m.154 views

Important: Red Hat Security Advisory: Red Hat Decision Manager 7.4.0 Security Update

An update is now available for Red Hat Decision Manager. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links i...

10CVSS7.6AI score0.94774EPSS
Exploits9References14
RedHat Linux
RedHat Linux
added 2019/07/22 2:53 p.m.109 views

Important: Red Hat Security Advisory: Red Hat Process Automation Manager 7.4.0 Security Update

An update is now available for Red Hat Process Automation Manager. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the C...

10CVSS7.6AI score0.94774EPSS
Exploits9References14
vulnersOsv
vulnersOsv
added 2019/07/16 5:42 p.m.4 views

ai.snips:play-mongo-bson_2.12 (>=0.5 <=0.5.1), al.bluecryst:bluecrystal (>=2.3.0 <=2.3.4) +5075 more potentially affected by CVE-2017-7525 +1 more via com.fasterxml.jackson.core:jackson-databind (>=2.8.0 <=2.8.11.1)

com.fasterxml.jackson.core:jackson-databind MAVEN version =2.8.0, =0.5, =2.3.0, =1.5.6, =4.2.1, =4.4.1, =1.0.0.RELEASE, =2.5.0-beta.0, =3.5.4-rc.0, =3.5.9, =3.5.9, =3.5.15, =3.5.15, =3.5.21 and more Source cves: CVE-2017-7525, CVE-2018-11307 Source advisory: OSV:GHSA-QR7J-H6GG-JMGC...

9.8CVSS6.8AI score0.37925EPSS
Exploits7
OSV
OSV
added 2019/07/09 4:15 p.m.33 views

CVE-2018-11307

An issue was discovered in FasterXML jackson-databind 2.0.0 through 2.9.5. Use of Jackson default typing along with a gadget class from iBatis allows exfiltration of content. Fixed in 2.7.9.4, 2.8.11.2, and 2.9.6...

9.8CVSS7AI score0.37925EPSS
Exploits7References21
Cvelist
Cvelist
added 2019/07/09 3:37 p.m.26 views

CVE-2018-11307

An issue was discovered in FasterXML jackson-databind 2.0.0 through 2.9.5. Use of Jackson default typing along with a gadget class from iBatis allows exfiltration of content. Fixed in 2.7.9.4, 2.8.11.2, and 2.9.6...

9.4AI score0.05683EPSS
Exploits0References21
Tenable Nessus
Tenable Nessus
added 2019/05/28 12:0 a.m.58 views

Debian DSA-4452-1 : jackson-databind - security update

Multiple security issues were found in jackson-databind, a Java library to parse JSON and other data formats which could result in information disclosure or the execution of arbitrary code. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from...

10CVSS7.6AI score0.21949EPSS
Exploits2References14
Debian
Debian
added 2019/05/24 9:4 p.m.288 views

[SECURITY] [DSA 4452-1] jackson-databind security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4452-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff May 24, 2019 https://www.debian.org/security/faq -...

10CVSS10AI score0.21949EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2019/05/13 12:0 a.m.39 views

RHEL 7 : Red Hat JBoss Enterprise Application Platform 7.2.1 on RHEL 7 (RHSA-2019:1108)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2019:1108 advisory. Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on JBoss Application Server 7. This release of Red...

10CVSS7.5AI score0.10458EPSS
Exploits0References57
RedHat Linux
RedHat Linux
added 2019/05/09 6:14 p.m.142 views

Important: Red Hat Security Advisory: Red Hat Single Sign-On 7.3.1 security update

A security update is now available for Red Hat Single Sign-On 7.3 from the Customer Portal. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

10CVSS6.9AI score0.10458EPSS
Exploits0References12
RedHat Linux
RedHat Linux
added 2019/05/08 12:12 p.m.132 views

Important: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.2.1 on RHEL 7 security update

An update is now available for Red Hat JBoss Enterprise Application Platform 7.2 for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, ...

10CVSS6.9AI score0.10458EPSS
Exploits0References48
RedHat Linux
RedHat Linux
added 2019/05/08 12:4 p.m.121 views

Important: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.2.1 security update

An update is now available for Red Hat JBoss Enterprise Application Platform 7.2 for Red Hat Enterprise Linux. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

10CVSS6.9AI score0.10458EPSS
Exploits0References46
Rows per page
Query Builder