Lucene search
K

38 matches found

RedhatCVE
RedhatCVE
added 2022/05/14 11:39 a.m.47 views

CVE-2020-9547

A flaw was found in jackson-databind 2.x. FasterXML jackson-databind 2.x mishandles the interaction between serialization gadgets and typing. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...

9.8CVSS2.3AI score0.18671EPSS
Exploits0References3
NVD
NVD
added 2021/01/06 11:15 p.m.29 views

CVE-2020-36186

FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp.datasources.PerUserPoolDataSource...

8.1CVSS8.7AI score0.05218EPSS
Exploits1References10
OSV
OSV
added 2021/01/06 11:15 p.m.28 views

CVE-2020-36186

FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp.datasources.PerUserPoolDataSource...

8.1CVSS7.1AI score
Exploits0References10
OSV
OSV
added 2021/01/06 11:15 p.m.25 views

CVE-2020-36189

FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization gadgets and typing, related to com.newrelic.agent.deps.ch.qos.logback.core.db.DriverManagerConnectionSource...

8.1CVSS7.1AI score
Exploits0References10
OSV
OSV
added 2021/01/06 11:15 p.m.25 views

CVE-2020-36187

FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp.datasources.SharedPoolDataSource...

8.1CVSS7.1AI score
Exploits0References10
UbuntuCve
UbuntuCve
added 2021/01/06 11:15 p.m.35 views

CVE-2020-36185

FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.datasources.SharedPoolDataSource...

8.1CVSS6.9AI score0.05218EPSS
Exploits1References3
Prion
Prion
added 2021/01/06 11:15 p.m.21 views

Design/Logic Flaw

FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp.datasources.SharedPoolDataSource...

6.8CVSS8.6AI score0.05195EPSS
Exploits1References10Affected Software43
Vulnrichment
Vulnrichment
added 2021/01/06 10:30 p.m.23 views

CVE-2020-36182

FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.cpdsadapter.DriverAdapterCPDS...

6.7AI score0.05018EPSS
Exploits2References10
Debian CVE
Debian CVE
added 2021/01/06 10:30 p.m.26 views

CVE-2020-36183

FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization gadgets and typing, related to org.docx4j.org.apache.xalan.lib.sql.JNDIConnectionPool...

8.1CVSS8.1AI score0.0489EPSS
Exploits1
Cvelist
Cvelist
added 2021/01/06 10:29 p.m.32 views

CVE-2020-36185

FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.datasources.SharedPoolDataSource...

8.7AI score0.05218EPSS
Exploits1References10
Cvelist
Cvelist
added 2021/01/06 10:29 p.m.31 views

CVE-2020-36187

FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp.datasources.SharedPoolDataSource...

8.7AI score0.05195EPSS
Exploits1References10
OSV
OSV
added 2020/12/17 7:15 p.m.39 views

CVE-2020-35490

FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.dbcp2.datasources.PerUserPoolDataSource...

8.1CVSS6.6AI score
Exploits0References10
UbuntuCve
UbuntuCve
added 2020/12/17 7:15 p.m.37 views

CVE-2020-35491

FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.dbcp2.datasources.SharedPoolDataSource...

8.1CVSS6.9AI score0.09477EPSS
Exploits1References4
Cvelist
Cvelist
added 2020/12/17 6:43 p.m.33 views

CVE-2020-35491

FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.dbcp2.datasources.SharedPoolDataSource...

8.7AI score0.09477EPSS
Exploits1References10
OSV
OSV
added 2020/09/17 7:15 p.m.35 views

CVE-2020-24750

FasterXML jackson-databind 2.x before 2.9.10.6 mishandles the interaction between serialization gadgets and typing, related to com.pastdev.httpcomponents.configuration.JndiConfiguration...

8.1CVSS6.5AI score
Exploits0References10
Debian CVE
Debian CVE
added 2020/09/17 6:39 p.m.31 views

CVE-2020-24750

FasterXML jackson-databind 2.x before 2.9.10.6 mishandles the interaction between serialization gadgets and typing, related to com.pastdev.httpcomponents.configuration.JndiConfiguration...

8.1CVSS8.7AI score0.07268EPSS
Exploits1
OSV
OSV
added 2020/06/16 4:15 p.m.29 views

CVE-2020-14195

FasterXML jackson-databind 2.x before 2.9.10.5 mishandles the interaction between serialization gadgets and typing, related to org.jsecurity.realm.jndi.JndiRealmFactory aka org.jsecurity...

8.1CVSS6.5AI score
Exploits0References8
NVD
NVD
added 2020/06/14 8:15 p.m.19 views

CVE-2020-14062

FasterXML jackson-databind 2.x before 2.9.10.5 mishandles the interaction between serialization gadgets and typing, related to com.sun.org.apache.xalan.internal.lib.sql.JNDIConnectionPool aka xalan2...

8.1CVSS0.08072EPSS
Exploits0References9
NVD
NVD
added 2020/03/31 5:15 a.m.24 views

CVE-2020-11112

FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.proxy.provider.remoting.RmiProvider aka apache/commons-proxy...

8.8CVSS9AI score0.03583EPSS
Exploits0References8
Cvelist
Cvelist
added 2020/03/31 4:37 a.m.32 views

CVE-2020-11113

FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadgets and typing, related to org.apache.openjpa.ee.WASRegistryManagedRuntime aka openjpa...

9AI score0.06278EPSS
Exploits0References8
Rows per page
Query Builder