20 matches found
ROOT-APP-MAVEN-CVE-2019-14893 CVE-2019-14893 in io.root.com.fasterxml.jackson.core:jackson-databind - Patched by Root
Root has patched CVE-2019-14893 in the io.root.com.fasterxml.jackson.core:jackson-databind package for Root:Maven. Multiple fixed versions available...
Linux Distros Unpatched Vulnerability : CVE-2019-14893
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was discovered in FasterXML jackson-databind in all versions before 2.9.10 and 2.10.0, where it would permit polymorphic deserialization of malicious...
Advisory ROSA-SA-2025-2629
software: jackson-databind 2.9.9.3 OS: ROSA-CHROME packageevrstring: jackson-databind-2.9.9.9.3 CVE-ID: CVE-2019-14540 BDU-ID: 2019-04085 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the FasterXML com.zaxxer.hikari.HikariConfig function of the Java library for grammar parsing JSON files...
Security Bulletin: IBM Cloud Pak for Multicloud Management Monitoring has patched several open source dependencies
Summary IBM Cloud Pak for Multicloud Management Monitoring has patched several open source dependencies that were inadvertently missed during previous scans. Vulnerability Details CVEID: CVE-2021-21409 DESCRIPTION: Netty is vulnerable to request smuggling, caused by improper validation of request...
Security Bulletin: jackson-databind (Publicly disclosed vulnerability) found in Network Performance Insight (CVE-2019-14892, CVE-2019-14893)
Summary jackson-databind Publicly disclosed vulnerability found in Network Performance Insight CVE-2019-14892, CVE-2019-14893 Vulnerability Details CVEID: CVE-2019-14892 DESCRIPTION: FasterXML jackson-databind could allow a remote attacker to execute arbitrary code on the system, caused by an...
Important: Red Hat Security Advisory: Red Hat Fuse 7.7.0 release and security update
A minor version update from 7.6 to 7.7 is now available for Red Hat Fuse. The purpose of this text-only errata is to inform you about the security issues fixed in this release. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring...
Security Bulletin: Multiple Security Vulnerabilities in Jackson-databind Affect B2B API of IBM Sterling B2B Integrator
Summary IBM Sterling B2B Integrator has addressed multiple security vulnerabilities in jackson-databind Vulnerability Details CVEID: CVE-2019-14892 DESCRIPTION: FasterXML jackson-databind could allow a remote attacker to execute arbitrary code on the system, caused by an unsafe deserialization wh...
Security Bulletin: Multiple security vulnerabilities have been identified In Jackson Databind library shipped with IBM Global Mailbox (CVE-2019-14892, CVE-2019-14893)
Summary Multiple security vulnerabilities have been identified In Jackson Databind library shipped with IBM Global Mailbox CVE-2019-14892, CVE-2019-14893 Vulnerability Details CVEID: CVE-2019-14892 DESCRIPTION: FasterXML jackson-databind could allow a remote attacker to execute arbitrary code on...
Important: Red Hat Security Advisory: EAP Continuous Delivery Technical Preview Release 19 security update
This is a security update for JBoss EAP Continuous Delivery 19. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...
ai.genauth:genauth-java-sdk (=3.1.11), am.ik.github:reactive-github-client (>=0.0.1 <=0.0.4) +3045 more potentially affected by CVE-2019-14893 via com.fasterxml.jackson.core:jackson-databind (>=2.9.0 <=2.9.1)
com.fasterxml.jackson.core:jackson-databind MAVEN version =2.9.0, =0.0.1, =0.1.0, =0.0.1, =0.2.0, =0.1.0, =0.1.0, =0.2.0, =0.2.0, =0.2.0, =1.0.0, =1.0.11 and more Source cves: CVE-2019-14893 Source advisory: OSV:GHSA-QMQC-X3R4-6V39...
Important: Red Hat Security Advisory: Red Hat Decision Manager 7.7.0 Security Update
An update is now available for Red Hat Decision Manager. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in...
Moderate: Red Hat Security Advisory: Red Hat Process Automation Manager 7.7.0 Security Update
An update is now available for Red Hat Process Automation Manager. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CV...
Important: Red Hat Security Advisory: Red Hat Data Grid 7.3.5 security update
An update for Red Hat Data Grid is now available. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in the...
CVE-2019-14893 vulnerabilities
Vulnerabilities for packages: hive...
CVE-2019-14893
CVE-2019-14893 affects FasterXML jackson-databind up to versions before 2.9.10 and 2.10.0, enabling unsafe polymorphic deserialization via enableDefaultTyping or JsonTypeInfo Id.CLASS/Id.MINIMAL_CLASS, potentially leading to remote code execution when deserializing from unsafe sources. Root cause...
CVE-2019-14893
A flaw was discovered in FasterXML jackson-databind in all versions before 2.9.10 and 2.10.0, where it would permit polymorphic deserialization of malicious objects using the xalan JNDI gadget when used in conjunction with polymorphic type handling methods such as enableDefaultTyping or when...
RHEL 7 : Red Hat JBoss Enterprise Application Platform 7.2.6 on RHEL 7 (RHSA-2020:0160)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:0160 advisory. Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime. This release o...
RHEL 6 : Red Hat JBoss Enterprise Application Platform 7.2.6 on RHEL 6 (RHSA-2020:0159)
The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:0159 advisory. Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime. This release o...
RHEL 8 : Red Hat JBoss Enterprise Application Platform 7.2.6 on RHEL 8 (RHSA-2020:0161)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:0161 advisory. Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime. This release o...
Important: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.2.6 on RHEL 8 security update
An update is now available for Red Hat JBoss Enterprise Application Platform 7.2 for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, ...