Lucene search
K

18 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2023/09/05 1:34 p.m.54 views

Security Bulletin: Vulnerabilities found in jackson-mapper-asl which is shipped with IBM® Intelligent Operations Center(CVE-2019-10172, CVE-2019-10202)

Summary Multiple vulnerabilities have been identified in jackson-mapper-asl which is shipped with IBM® Intelligent Operations Center. Information about these vulnerabilities affecting IBM® Intelligent Operations Center have been published and addressed the applicable CVEs. Vulnerability Details...

9.8CVSS8.9AI score0.17044EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2023/09/05 12:38 p.m.54 views

Security Bulletin: Vulnerabilities found in jackson-mapper-asl-1.9.13.jar which is shipped with IBM® Intelligent Operations Center(CVE-2019-10202, CVE-2019-10172)

Summary Multiple vulnerabilities have been identified in jackson-mapper-asl-1.9.13.jar which is shipped with IBM® Intelligent Operations Center. Information about these vulnerabilities affecting IBM® Intelligent Operations Center have been published and addressed the applicable CVEs. Vulnerabilit...

9.8CVSS8.9AI score0.17044EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2023/07/12 9:22 p.m.38 views

Security Bulletin: IBM Match 360 is vulnerable to CVE-2019-10202 and CVE-2019-10172 for jackson-mapper-asl

Summary Match 360 is vulnerable to the following CVEs: CVE-CVE-2019-10202 and CVE-2019-10172 Vulnerability Details CVEID:CVE-2019-10202 DESCRIPTION: Red Hat JBoss Enterprise Application Platform EAP could allow a remote attacker to execute arbitrary code on the system, caused by improper...

9.8CVSS8.7AI score0.17044EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2023/07/12 10:11 a.m.50 views

Security Bulletin: Multiple Vulnerabilities of Apache HttpClient and Jackson-mapper have affected IBM Tivoli Monitoring for Virtual Environments Agent for Linux Kernel-based Virtual Machines

Summary IBM Tivoli Monitoring for Virtual Environments Agent for Linux Kernel-based Virtual Machines is vulnerable to Apache HttpClient and jackson-mapper as described in 220912, CVE-2020-13956, CVE-2019-10202, CVE-2019-10172. The fix includes upgrading required libraries to latest version...

9.8CVSS8.7AI score0.17044EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2023/06/13 10:59 a.m.132 views

Security Bulletin: Multiple Vulnerabilities of Jackson-Mapper-asl have affected APM Linux KVM Agent

Summary APM Linux KVM Agent is vulnerable to Jackson-mapper-asl vulnerabilities described in CVE-2019-10202 and CVE-2019-10172. The fix includes jackson-mapper-asl-1.9.13.jar upgraded to jackson-databind-2.14.0.jar Vulnerability Details CVEID:CVE-2019-10202 DESCRIPTION: Red Hat JBoss Enterprise...

9.8CVSS8.7AI score0.17044EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2023/02/01 9:46 p.m.85 views

Security Bulletin: Vulnerability in jackson-databind affects IBM Process Mining (Multiple CVEs)

Summary There is a vulnerability in jackson-databind that could allow a local attacker to launch a symlink attack. The code is used by IBM Process Mining. This bulletin identifies the security fixes to apply to address the vulnerability. Vulnerability Details CVEID:CVE-2020-36182 DESCRIPTION:...

10CVSS9.1AI score0.45205EPSS
Exploits26Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2021/12/18 3:42 p.m.52 views

Security Bulletin: IBM Cloud Pak for Multicloud Management Monitoring has patched several open source dependencies

Summary IBM Cloud Pak for Multicloud Management Monitoring has patched several open source dependencies that were inadvertently missed during previous scans. Vulnerability Details CVEID: CVE-2021-21409 DESCRIPTION: Netty is vulnerable to request smuggling, caused by improper validation of request...

9.8CVSS9.2AI score0.49727EPSS
Exploits21Affected Software1
RedHat Linux
RedHat Linux
added 2020/12/16 12:11 p.m.179 views

Important: Red Hat Security Advisory: Red Hat Fuse 7.8.0 release and security update

A minor version update from 7.7 to 7.8 is now available for Red Hat Fuse. The purpose of this text-only errata is to inform you about the security issues fixed in this release. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring...

9.8CVSS8AI score0.95586EPSS
Exploits12References39
RedhatCVE
RedhatCVE
added 2019/10/12 2:27 a.m.100 views

CVE-2019-10202

A series of deserialization vulnerabilities have been discovered in Codehaus 1.9.x implemented in EAP 7. This CVE fixes CVE-2017-17485, CVE-2017-7525, CVE-2017-15095, CVE-2018-5968, CVE-2018-7489, CVE-2018-1000873, CVE-2019-12086 reported for FasterXML jackson-databind by implementing a whitelist...

9.8CVSS2.7AI score0.49727EPSS
Exploits10References3
NVD
NVD
added 2019/10/01 3:15 p.m.41 views

CVE-2019-10202

A series of deserialization vulnerabilities have been discovered in Codehaus 1.9.x implemented in EAP 7. This CVE fixes CVE-2017-17485, CVE-2017-7525, CVE-2017-15095, CVE-2018-5968, CVE-2018-7489, CVE-2018-1000873, CVE-2019-12086 reported for FasterXML jackson-databind by implementing a whitelist...

9.8CVSS8.9AI score0.05175EPSS
Exploits0References9
Wolfi
Wolfi
added 2019/10/01 3:15 p.m.26 views

CVE-2019-10202 vulnerabilities

Vulnerabilities for packages: tez...

9.8CVSS7.2AI score0.05175EPSS
Exploits0
Chainguard
Chainguard
added 2019/10/01 3:15 p.m.46 views

CVE-2019-10202 vulnerabilities

Vulnerabilities for packages: hadoop-fips...

9.8CVSS7.3AI score0.05175EPSS
Exploits0
CVE
CVE
added 2019/10/01 2:22 p.m.498 views

CVE-2019-10202

Connected sources describe Jackson Databind deserialization flaws linked to CVEs around 2017–2019, notably CVE-2017-7525, CVE-2017-15095, CVE-2018-7489, CVE-2019-10172. The issues enable unauthenticated deserialization that can lead to remote code execution via ObjectMapper.readValue in affected ...

9.8CVSS8.9AI score0.05175EPSS
Exploits0References9Affected Software1
Cvelist
Cvelist
added 2019/10/01 2:22 p.m.35 views

CVE-2019-10202

A series of deserialization vulnerabilities have been discovered in Codehaus 1.9.x implemented in EAP 7. This CVE fixes CVE-2017-17485, CVE-2017-7525, CVE-2017-15095, CVE-2018-5968, CVE-2018-7489, CVE-2018-1000873, CVE-2019-12086 reported for FasterXML jackson-databind by implementing a whitelist...

8.1CVSS9.1AI score0.05175EPSS
Exploits0References9
RedHat Linux
RedHat Linux
added 2019/10/01 7:10 a.m.132 views

Important: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.2.4 on RHEL 7 security update

An update is now available for Red Hat JBoss Enterprise Application Platform 7.2 for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, ...

9.8CVSS7.5AI score0.45205EPSS
Exploits4References37
RedHat Linux
RedHat Linux
added 2019/10/01 7:10 a.m.126 views

Important: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.2.4 on RHEL 8 security update

An update is now available for Red Hat JBoss Enterprise Application Platform 7.2 for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, ...

9.8CVSS7.5AI score0.45205EPSS
Exploits4References37
RedHat Linux
RedHat Linux
added 2019/10/01 7:10 a.m.119 views

Important: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.2.4 on RHEL 6 Security update

An update is now available for Red Hat JBoss Enterprise Application Platform 7.2 for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, ...

9.8CVSS7.5AI score0.45205EPSS
Exploits4References37
RedHat Linux
RedHat Linux
added 2019/09/30 10:57 p.m.129 views

Important: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.2.4 security update

An update is now available for Red Hat JBoss Enterprise Application Platform 7.2 for Red Hat Enterprise Linux. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

9.8CVSS7.5AI score0.45205EPSS
Exploits4References37
Rows per page
Query Builder