Lucene search
K

20 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2019-14892

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was discovered in jackson-databind in versions before 2.9.10, 2.8.11.5 and 2.6.7.3, where it would permit polymorphic deserialization of a malicious obje...

9.8CVSS7.7AI score0.0544EPSS
Exploits0References2
Rosalinux
Rosalinux
added 2025/01/28 6:31 p.m.30 views

Advisory ROSA-SA-2025-2629

software: jackson-databind 2.9.9.3 OS: ROSA-CHROME packageevrstring: jackson-databind-2.9.9.9.3 CVE-ID: CVE-2019-14540 BDU-ID: 2019-04085 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the FasterXML com.zaxxer.hikari.HikariConfig function of the Java library for grammar parsing JSON files...

9.8CVSS9.1AI score0.10676EPSS
Exploits1
IBM Security Bulletins
IBM Security Bulletins
added 2020/08/04 7:14 p.m.35 views

Security Bulletin: jackson-databind (Publicly disclosed vulnerability) found in Network Performance Insight (CVE-2019-14892, CVE-2019-14893)

Summary jackson-databind Publicly disclosed vulnerability found in Network Performance Insight CVE-2019-14892, CVE-2019-14893 Vulnerability Details CVEID: CVE-2019-14892 DESCRIPTION: FasterXML jackson-databind could allow a remote attacker to execute arbitrary code on the system, caused by an...

9.8CVSS1.3AI score0.0544EPSS
Exploits0Affected Software1
RedHat Linux
RedHat Linux
added 2020/07/28 3:54 p.m.117 views

Important: Red Hat Security Advisory: Red Hat Fuse 7.7.0 release and security update

A minor version update from 7.6 to 7.7 is now available for Red Hat Fuse. The purpose of this text-only errata is to inform you about the security issues fixed in this release. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring...

10CVSS7.2AI score0.58373EPSS
Exploits16References50
IBM Security Bulletins
IBM Security Bulletins
added 2020/07/24 5:7 p.m.30 views

Security Bulletin: Multiple Security Vulnerabilities in Jackson-databind Affect B2B API of IBM Sterling B2B Integrator

Summary IBM Sterling B2B Integrator has addressed multiple security vulnerabilities in jackson-databind Vulnerability Details CVEID: CVE-2019-14892 DESCRIPTION: FasterXML jackson-databind could allow a remote attacker to execute arbitrary code on the system, caused by an unsafe deserialization wh...

9.8CVSS2.5AI score0.0544EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2020/07/24 5:7 p.m.40 views

Security Bulletin: Multiple security vulnerabilities have been identified In Jackson Databind library shipped with IBM Global Mailbox (CVE-2019-14892, CVE-2019-14893)

Summary Multiple security vulnerabilities have been identified In Jackson Databind library shipped with IBM Global Mailbox CVE-2019-14892, CVE-2019-14893 Vulnerability Details CVEID: CVE-2019-14892 DESCRIPTION: FasterXML jackson-databind could allow a remote attacker to execute arbitrary code on...

9.8CVSS1.4AI score0.0544EPSS
Exploits0Affected Software1
RedHat Linux
RedHat Linux
added 2020/05/28 3:58 p.m.310 views

Important: Red Hat Security Advisory: EAP Continuous Delivery Technical Preview Release 19 security update

This is a security update for JBoss EAP Continuous Delivery 19. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...

9.8CVSS7.3AI score0.28839EPSS
Exploits7References45
vulnersOsv
vulnersOsv
added 2020/05/15 6:58 p.m.5 views

ai.genauth:genauth-java-sdk (=3.1.11), am.ik.github:reactive-github-client (>=0.0.1 <=0.0.4) +3045 more potentially affected by CVE-2019-14892 via com.fasterxml.jackson.core:jackson-databind (>=2.9.0 <=2.9.1)

com.fasterxml.jackson.core:jackson-databind MAVEN version =2.9.0, =0.0.1, =0.1.0, =0.0.1, =0.2.0, =0.1.0, =0.1.0, =0.2.0, =0.2.0, =0.2.0, =1.0.0, =1.0.11 and more Source cves: CVE-2019-14892 Source advisory: OSV:GHSA-CF6R-3WGC-H863...

9.8CVSS7AI score0.0544EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2020/05/15 6:58 p.m.4 views

ai.agnos:reactive-sparql_2.12 (>=0.3.0 <=0.3.1), ai.databand:dbnd-agent (>=0.42.1 <=0.80.6) +11468 more potentially affected by CVE-2019-14892 via com.fasterxml.jackson.core:jackson-databind (>=2.7.0 <=2.8.11.4)

com.fasterxml.jackson.core:jackson-databind MAVEN version =2.7.0, =0.3.0, =0.42.1, =0.42.1, =0.40.2, =0.42.1, =0.1.8, =0.2, =0.5, =0.8.0, =2.3.0, =1.5.6, =4.2.1, =4.4.1, =3.3.3, =3.3.8 and more Source cves: CVE-2019-14892 Source advisory: OSV:GHSA-CF6R-3WGC-H863...

9.8CVSS7.2AI score0.0544EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2020/04/07 5:14 p.m.50 views

CVE-2019-14892

A flaw was discovered in jackson-databind in versions before 2.9.10, 2.8.11.5 and 2.6.7.3, where it would permit polymorphic deserialization of a malicious object using commons-configuration 1 and 2 JNDI classes. An attacker could use this flaw to execute arbitrary code...

9.8CVSS5.8AI score0.0544EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2020/03/18 5:36 p.m.332 views

Important: Red Hat Security Advisory: Red Hat Decision Manager 7.7.0 Security Update

An update is now available for Red Hat Decision Manager. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in...

9.8CVSS7AI score0.28839EPSS
Exploits2References14
RedHat Linux
RedHat Linux
added 2020/03/18 2:51 p.m.89 views

Moderate: Red Hat Security Advisory: Red Hat Process Automation Manager 7.7.0 Security Update

An update is now available for Red Hat Process Automation Manager. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CV...

9.8CVSS7.1AI score0.10676EPSS
Exploits1References13
RedHat Linux
RedHat Linux
added 2020/03/05 1:12 p.m.108 views

Important: Red Hat Security Advisory: Red Hat Data Grid 7.3.5 security update

An update for Red Hat Data Grid is now available. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in the...

9.8CVSS7.1AI score0.29726EPSS
Exploits2References8
CVE
CVE
added 2020/03/02 4:28 p.m.248 views

CVE-2019-14892

CVE-2019-14892 — In jackson-databind, polymorphic deserialization can be exploited via JNDI gadgets (commons-configuration 1/2) to achieve remote code execution. Affected: jackson-databind versions before 2.9.10, 2.8.11.5, and 2.6.7.3. Remediation: upgrade to a fixed jackson-databind release (e.g...

9.8CVSS9.4AI score0.0544EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2020/03/02 4:28 p.m.20 views

CVE-2019-14892

A flaw was discovered in jackson-databind in versions before 2.9.10, 2.8.11.5 and 2.6.7.3, where it would permit polymorphic deserialization of a malicious object using commons-configuration 1 and 2 JNDI classes. An attacker could use this flaw to execute arbitrary code...

7.5CVSS9.6AI score0.0544EPSS
Exploits0References6
Debian CVE
Debian CVE
added 2020/03/02 4:28 p.m.34 views

CVE-2019-14892

A flaw was discovered in jackson-databind in versions before 2.9.10, 2.8.11.5 and 2.6.7.3, where it would permit polymorphic deserialization of a malicious object using commons-configuration 1 and 2 JNDI classes. An attacker could use this flaw to execute arbitrary code...

9.8CVSS8.5AI score0.0544EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2020/01/22 12:0 a.m.55 views

RHEL 8 : Red Hat JBoss Enterprise Application Platform 7.2.6 on RHEL 8 (RHSA-2020:0161)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:0161 advisory. Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime. This release o...

9.8CVSS7.1AI score0.10676EPSS
Exploits2References47
Tenable Nessus
Tenable Nessus
added 2020/01/22 12:0 a.m.58 views

RHEL 6 : Red Hat JBoss Enterprise Application Platform 7.2.6 on RHEL 6 (RHSA-2020:0159)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:0159 advisory. Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime. This release o...

9.8CVSS7.1AI score0.10676EPSS
Exploits2References49
Tenable Nessus
Tenable Nessus
added 2020/01/22 12:0 a.m.55 views

RHEL 7 : Red Hat JBoss Enterprise Application Platform 7.2.6 on RHEL 7 (RHSA-2020:0160)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:0160 advisory. Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime. This release o...

9.8CVSS7.1AI score0.10676EPSS
Exploits2References49
RedHat Linux
RedHat Linux
added 2020/01/21 3:22 a.m.87 views

Important: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.2.6 on RHEL 8 security update

An update is now available for Red Hat JBoss Enterprise Application Platform 7.2 for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, ...

9.8CVSS7.1AI score0.10676EPSS
Exploits2References34
Rows per page
Query Builder